Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/9ihmX1MIk9-9YmRGYW3uB3inPY4.roa
File: 9ihmX1MIk9-9YmRGYW3uB3inPY4.roa (raw, json)
Hash identifier: iJp6TBbBWJj0pUAizrQ2uzGwzur1Mm7YXy2Mdu7ftug=
Subject key identifier: F6:28:66:5F:53:08:93:DF:BD:62:64:46:61:6D:EE:07:78:A7:3D:8E
Certificate issuer: /CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Certificate serial: 01886603CB0C7CFBCA979D5386F81D2F60A7
Authority key identifier: F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/9ihmX1MIk9-9YmRGYW3uB3inPY4.roa
Signing time: Mon 29 May 2023 05:38:24 +0000
ROA not before: Mon 29 May 2023 05:38:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199106
IP address blocks: 89.37.118.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:66:03:cb:0c:7c:fb:ca:97:9d:53:86:f8:1d:2f:60:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Validity
Not Before: May 29 05:38:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f628665f530893dfbd626446616dee0778a73d8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:6c:c6:fa:ef:e6:b2:71:f4:02:ae:c2:0a:8c:
f6:eb:01:04:e9:f2:b8:2d:14:bf:59:06:33:99:13:
70:49:ca:20:ea:02:d8:54:f6:af:9e:37:9d:22:8f:
b8:78:d4:3b:80:50:7b:55:e7:f9:8f:81:15:53:f6:
30:32:fc:7e:60:9b:80:63:40:51:5a:fe:f3:e4:13:
25:1e:be:77:4b:53:3d:ad:8c:da:46:f3:b1:c0:ba:
38:28:aa:51:7a:73:f8:5a:dd:30:7d:46:2f:2d:ff:
91:00:75:6f:64:55:d4:40:7f:47:9b:70:e1:96:2a:
f5:53:3a:67:02:ec:e8:f5:de:23:6c:0a:e3:e4:01:
75:61:e3:02:c4:1c:a0:92:33:c4:5c:3f:36:92:c5:
bf:9a:74:87:bb:c7:f3:31:c5:de:a3:25:e7:af:0a:
f4:60:92:2c:c6:a2:29:92:29:bf:63:ae:ae:7e:40:
4a:7d:5d:95:a3:e1:a4:22:35:10:28:07:fc:85:bc:
64:d8:71:07:57:7b:de:26:76:f8:58:e0:c4:fd:cf:
11:a9:b8:f2:12:19:e7:a3:e5:b0:60:d6:03:3a:f5:
64:6f:15:63:33:22:66:2d:26:4e:a9:06:7f:1a:77:
a7:2f:bc:d0:10:e4:29:ef:41:6b:3e:5f:8e:5f:19:
07:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:28:66:5F:53:08:93:DF:BD:62:64:46:61:6D:EE:07:78:A7:3D:8E
X509v3 Authority Key Identifier:
keyid:F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/9ihmX1MIk9-9YmRGYW3uB3inPY4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.37.118.0/24
Signature Algorithm: sha256WithRSAEncryption
29:e2:bb:49:74:5f:33:99:ac:6b:6e:96:44:29:45:ab:d0:35:
8d:85:68:04:a6:3b:0b:37:7f:ae:53:43:1c:db:d9:a0:6c:53:
4d:77:0a:3a:fc:fb:da:ae:23:a9:5c:01:a2:21:60:bb:ab:3e:
4f:fe:84:66:3a:1f:29:4a:d2:a9:3a:f2:73:45:e0:e5:36:0d:
f8:30:5b:3e:78:39:2b:d3:e4:ea:c4:a9:da:0b:ab:b1:c2:7d:
55:fe:09:88:21:df:61:41:ec:1b:a2:2d:e5:e0:a4:52:a8:79:
7f:08:11:72:13:ad:4c:5b:95:50:f1:55:15:50:b7:8c:e5:cf:
95:20:33:d8:c8:0c:72:1f:53:e4:31:de:55:e2:d0:33:d0:33:
d4:4a:46:bd:1f:2f:89:7d:e4:af:7c:e1:19:22:b7:3f:17:18:
02:f5:95:1a:7f:b7:0a:23:37:fc:c3:58:d1:f7:30:6f:db:27:
72:ee:cb:ac:d9:90:5d:81:4e:49:07:4f:64:c1:0e:4e:1a:b9:
87:83:11:34:21:c9:ca:4d:a0:ec:ca:95:cc:b8:96:92:42:7e:
8c:35:82:1d:4b:79:9a:83:31:da:0c:62:fd:2e:5f:84:a8:89:
fe:30:3a:8e:a2:be:ef:8d:f8:c6:05:d8:6d:ff:d3:7c:ee:4a:
f3:b6:84:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:18 2024 by rpki-client on console-fra.rpki-client.org