Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/BLmIg8eCGuezow5SzG3KB2tinik.roa
File: BLmIg8eCGuezow5SzG3KB2tinik.roa (raw, json)
Hash identifier: IN3WtVllbZ+RZiyZmAsPOf8OzxEEFO89jKo+Fq0M0OA=
Subject key identifier: 04:B9:88:83:C7:82:1A:E7:B3:A3:0E:52:CC:6D:CA:07:6B:62:9E:29
Certificate issuer: /CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Certificate serial: 018ACADB7FE293D5208F52ACD18FCD749C3C
Authority key identifier: F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/BLmIg8eCGuezow5SzG3KB2tinik.roa
Signing time: Mon 25 Sep 2023 05:41:37 +0000
ROA not before: Mon 25 Sep 2023 05:41:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202685
IP address blocks: 89.42.81.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 16 Oct 2023 06:21:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:ca:db:7f:e2:93:d5:20:8f:52:ac:d1:8f:cd:74:9c:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Validity
Not Before: Sep 25 05:41:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=04b98883c7821ae7b3a30e52cc6dca076b629e29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:1e:14:66:dc:ce:d2:35:a5:9d:81:ae:eb:69:
ed:c8:36:95:89:92:f8:e0:e1:0a:d0:51:73:db:67:
86:3a:74:f2:d9:e3:d9:d8:28:e2:e0:9c:88:94:45:
0f:f6:c2:f8:5f:29:26:1b:c2:37:9a:c9:91:a2:0c:
b5:51:da:09:d2:0e:82:56:b0:9d:a7:0e:23:c1:35:
11:17:bc:f5:95:52:d7:f7:29:71:1c:b2:5d:b6:2e:
10:76:f6:ed:18:d4:4f:a4:68:bb:11:ec:54:42:d7:
e9:2c:b9:38:ce:13:c9:d4:05:e0:61:8e:be:0f:d4:
50:c3:f8:ea:35:56:ce:40:36:11:1a:31:78:62:2c:
89:35:af:41:a0:7e:1f:21:32:c5:58:e3:14:39:f6:
99:da:13:06:46:79:db:a6:ab:43:a7:6e:b2:ac:4a:
29:45:ff:e0:30:bd:85:d1:85:2f:f5:15:99:52:d7:
95:71:a8:c4:34:df:c5:cb:53:e1:ee:35:5f:17:7e:
d3:99:84:9a:5b:10:20:06:e7:1f:ed:33:a3:43:26:
b9:b6:dc:9b:b3:70:01:08:5f:10:a6:ff:7c:d5:93:
92:81:ad:37:c6:58:2c:ef:19:0d:86:26:f8:00:2a:
82:77:a7:cf:43:bb:4f:f1:c8:ce:19:39:58:4a:a6:
7f:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:B9:88:83:C7:82:1A:E7:B3:A3:0E:52:CC:6D:CA:07:6B:62:9E:29
X509v3 Authority Key Identifier:
keyid:F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/BLmIg8eCGuezow5SzG3KB2tinik.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.42.81.0/24
Signature Algorithm: sha256WithRSAEncryption
19:87:68:7b:de:2b:fa:60:28:d6:ab:37:ad:d8:7f:13:72:f6:
6e:63:1b:5d:62:06:bc:cc:37:04:90:79:a9:95:f7:4a:d9:69:
f8:a1:1b:df:32:e0:9a:df:a8:46:98:c7:6f:42:30:04:3e:8c:
24:6c:ff:70:73:ea:9b:05:d2:9c:9d:06:18:90:55:71:9b:18:
5f:a5:87:9e:e0:6f:8c:f9:74:7e:e8:26:96:6c:c9:af:8c:2b:
a4:d9:dc:d5:93:30:e0:9a:25:9d:2e:f5:74:a5:cd:14:fa:9e:
53:02:4c:57:66:6d:e1:ce:e0:06:18:da:58:d3:c1:a6:36:52:
8d:48:46:ce:74:fe:e1:90:32:97:05:76:10:ea:dd:1b:3b:2a:
f8:e0:1c:a1:21:22:4a:07:24:59:7b:b2:c1:d6:37:72:c9:f2:
59:14:c6:e8:9f:8d:16:c4:2d:44:37:d7:89:ed:69:52:99:a8:
cd:64:79:00:76:f4:02:11:40:59:bf:e9:b0:0f:a3:04:bb:34:
fd:e3:5a:e4:89:26:cd:ea:5c:b7:fc:88:89:70:e5:8c:73:66:
b0:ce:40:15:12:4b:21:e2:be:c2:95:27:3e:c7:2b:1a:2c:03:
76:51:dc:e8:f6:b6:49:49:b1:f3:4f:f8:17:c0:b5:3d:dd:df:
1f:ac:88:da
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYrK23/ik9Ugj1Ks0Y/NdJw8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYxZDQ2ZTBlM2U4Y2FhYWVkNGE1MjliZDdkNzMwOGJkMWVm
MDFjMWQwHhcNMjMwOTI1MDU0MTM3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNGI5ODg4M2M3ODIxYWU3YjNhMzBlNTJjYzZkY2EwNzZiNjI5ZTI5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqB4UZtzO0jWlnYGu62ntyDaViZL4
4OEK0FFz22eGOnTy2ePZ2Cji4JyIlEUP9sL4XykmG8I3msmRogy1UdoJ0g6CVrCd
pw4jwTURF7z1lVLX9ylxHLJdti4QdvbtGNRPpGi7EexUQtfpLLk4zhPJ1AXgYY6+
D9RQw/jqNVbOQDYRGjF4YiyJNa9BoH4fITLFWOMUOfaZ2hMGRnnbpqtDp26yrEop
Rf/gML2F0YUv9RWZUteVcajENN/Fy1Ph7jVfF37TmYSaWxAgBucf7TOjQya5ttyb
s3ABCF8Qpv981ZOSga03xlgs7xkNhib4ACqCd6fPQ7tP8cjOGTlYSqZ/MwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAS5iIPHghrns6MOUsxtygdrYp4pMB8GA1UdIwQY
MBaAFPHUbg4+jKqu1KUpvX1zCL0e8BwdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOGRSdURqNk1xcTdVcFNtOWZYTUl2Ujd3SEIwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYi84NGViNDQtYmJkZi00NmMxLWIwNDMt
YjQyZjIzZDgyOGMzLzEvQkxtSWc4ZUNHdWV6b3c1U3pHM0tCMnRpbmlrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYi84NGViNDQtYmJkZi00NmMxLWIwNDMtYjQyZjIzZDgyOGMz
LzEvOGRSdURqNk1xcTdVcFNtOWZYTUl2Ujd3SEIwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWSpRMA0G
CSqGSIb3DQEBCwUAA4IBAQAZh2h73iv6YCjWqzet2H8TcvZuYxtdYga8zDcEkHmp
lfdK2Wn4oRvfMuCa36hGmMdvQjAEPowkbP9wc+qbBdKcnQYYkFVxmxhfpYee4G+M
+XR+6CaWbMmvjCuk2dzVkzDgmiWdLvV0pc0U+p5TAkxXZm3hzuAGGNpY08GmNlKN
SEbOdP7hkDKXBXYQ6t0bOyr44ByhISJKByRZe7LB1jdyyfJZFMbon40WxC1EN9eJ
7WlSmajNZHkAdvQCEUBZv+mwD6MEuzT941rkiSbN6ly3/IiJcOWMc2awzkAVEksh
4r7ClSc+xysaLAN2Udzo9rZJSbHzT/gXwLU93d8frIja
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:18 2024 by rpki-client on console-fra.rpki-client.org