Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/Ay0NfCfMosqPjuv0UAH_G1p3Xwg.roa
File: Ay0NfCfMosqPjuv0UAH_G1p3Xwg.roa (raw, json)
Hash identifier: 7qXzxzx4CjRTlXAiM/Vb6a//alVVIWU6pQQuqrCCqsw=
Subject key identifier: 03:2D:0D:7C:27:CC:A2:CA:8F:8E:EB:F4:50:01:FF:1B:5A:77:5F:08
Certificate issuer: /CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Certificate serial: 018D315C57CAB1A2D757F0D4B0E887248F48
Authority key identifier: F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/Ay0NfCfMosqPjuv0UAH_G1p3Xwg.roa
Signing time: Mon 22 Jan 2024 13:29:11 +0000
ROA not before: Mon 22 Jan 2024 13:29:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 14618
IP address blocks: 89.37.196.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 27 Mar 2024 07:56:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:31:5c:57:ca:b1:a2:d7:57:f0:d4:b0:e8:87:24:8f:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Validity
Not Before: Jan 22 13:29:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=032d0d7c27cca2ca8f8eebf45001ff1b5a775f08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:89:31:e5:1c:52:66:66:68:41:f4:69:ea:8a:
9d:26:13:22:43:08:27:47:14:ed:03:66:c4:24:51:
1e:f3:b5:f4:c1:5b:c9:aa:59:6b:89:02:10:bb:4e:
b0:5a:2c:fd:fc:1d:80:77:4d:e0:7e:27:7e:eb:26:
d2:36:56:0f:f3:8c:5d:ce:30:94:00:9b:4a:62:8b:
bd:e3:ce:71:10:af:fa:4e:d5:1b:ff:13:93:4e:78:
e0:8f:e3:59:10:3b:af:f2:5f:9e:60:03:68:1a:26:
a2:f2:56:5b:89:9d:7f:49:a1:d6:b4:3e:da:3e:fc:
8d:ac:59:ea:cc:c8:97:69:06:8b:03:34:bf:6a:99:
b4:fc:45:8d:38:e0:25:82:2a:13:a9:94:f9:f0:f5:
00:cb:78:9c:47:e0:ce:b2:41:2a:b5:2a:c3:3b:97:
1e:ee:ee:95:c5:d2:40:53:68:8f:45:bc:62:d4:1a:
56:41:dc:74:9b:00:33:36:30:34:7e:9b:e2:24:75:
c5:b8:8b:9e:d6:d6:08:67:c8:55:0f:0a:b6:fb:77:
86:7a:07:bf:60:da:aa:b3:b9:63:22:21:84:ae:67:
b6:d6:17:f3:f0:19:a7:ba:5f:00:48:34:11:e8:41:
98:82:81:9e:17:9d:aa:10:af:7c:84:b4:3b:ea:a2:
2e:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:2D:0D:7C:27:CC:A2:CA:8F:8E:EB:F4:50:01:FF:1B:5A:77:5F:08
X509v3 Authority Key Identifier:
keyid:F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/Ay0NfCfMosqPjuv0UAH_G1p3Xwg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.37.196.0/24
Signature Algorithm: sha256WithRSAEncryption
60:3a:72:2e:49:3e:ad:33:e3:f1:43:f1:a9:27:79:f0:f7:55:
2f:05:77:6a:08:c4:3d:35:77:82:59:60:9d:10:cf:58:7f:36:
5c:c7:9b:16:fa:88:79:09:9e:04:a4:a5:2f:63:3d:5e:a2:b9:
7c:3a:e6:ab:12:44:26:5e:9d:26:d9:89:c2:d1:d1:2c:e7:9b:
3a:30:de:9d:d7:72:23:7e:af:52:2b:4a:f3:35:f1:00:e6:90:
b5:c7:74:c2:8a:67:5c:8f:a2:be:bf:2a:91:3f:f6:ac:8e:60:
34:ff:ff:5e:e1:a2:79:41:42:30:b4:75:e9:26:c9:17:c2:21:
21:8a:db:81:09:3e:b5:f6:e5:f0:9c:a4:67:d5:6e:e9:4c:96:
be:87:c4:78:07:5f:91:35:ba:3a:a2:bc:fd:60:20:c3:83:58:
df:55:74:13:51:5d:da:67:65:89:d5:43:53:f0:ff:9a:a0:e1:
f0:29:b3:ef:fd:68:23:03:86:e7:23:d1:0d:1b:ce:33:bc:c8:
aa:fd:1a:29:ae:b6:3e:18:70:ae:c4:80:01:07:52:b7:5e:ae:
9a:c6:4c:f3:59:44:63:68:7a:9e:6d:91:da:aa:98:6c:b5:1f:
6c:32:b3:16:83:17:0a:8b:93:f1:4f:dd:c7:7c:ef:2d:59:60:
f3:91:9e:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 27 12:24:11 2024 by rpki-client on console-ams.rpki-client.org