Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/Dtd0zKTbfGZgr7552G_DomHOy78.roa
File: Dtd0zKTbfGZgr7552G_DomHOy78.roa (raw, json)
Hash identifier: jnWXVPpne+jE22vPwbj+mMOMfNKZN+PzVX3KthJ4aAI=
Subject key identifier: 0E:D7:74:CC:A4:DB:7C:66:60:AF:BE:79:D8:6F:C3:A2:61:CE:CB:BF
Certificate issuer: /CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Certificate serial: 018CC26D2D98D448B7EDEBE0589AF4C12E6D
Authority key identifier: F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/Dtd0zKTbfGZgr7552G_DomHOy78.roa
Signing time: Mon 01 Jan 2024 00:29:44 +0000
ROA not before: Mon 01 Jan 2024 00:29:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 209018
IP address blocks: 89.34.230.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 07 Jan 2024 08:18:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6d:2d:98:d4:48:b7:ed:eb:e0:58:9a:f4:c1:2e:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Validity
Not Before: Jan 1 00:29:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0ed774cca4db7c6660afbe79d86fc3a261cecbbf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:5b:ae:53:a3:50:7e:77:f8:e8:c9:e7:a4:f7:
ee:5c:4b:4a:6e:1f:49:65:32:81:26:70:6e:5c:96:
f8:3c:fa:99:0c:f3:51:e4:de:d5:4e:78:bc:4c:e6:
31:0c:86:60:0b:9e:cb:0b:5b:a7:f4:3a:5e:c7:f8:
a0:24:00:b2:a2:26:a9:c6:4f:5f:8c:49:bb:d1:e7:
b4:43:e8:4d:76:66:d7:04:43:af:aa:b9:b0:0b:ec:
69:df:09:b3:b4:cb:59:66:9b:95:b8:d5:c1:fa:af:
6f:dd:57:96:50:06:cf:bf:13:45:21:64:2a:20:05:
8d:95:f9:3a:15:49:2a:f0:08:ad:74:e2:61:a2:f2:
10:95:7e:dc:7c:f7:3b:80:ac:5f:e0:b2:1d:b9:6e:
e4:a4:7b:06:51:29:cb:f4:07:22:9a:73:6d:84:87:
61:d1:c8:94:3e:ff:6c:ef:af:0a:cc:09:ed:47:9b:
09:a0:59:44:2c:f4:3b:d0:85:cf:56:36:10:c3:09:
95:9a:fa:e4:42:02:50:fa:74:c5:da:01:26:7f:65:
fe:56:b7:14:b3:2f:9d:7f:af:62:8d:7f:88:13:cd:
4f:a4:86:04:67:3b:24:11:30:8f:17:e0:a2:27:79:
71:2f:56:a5:78:26:61:58:56:43:04:bd:05:25:2b:
56:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:D7:74:CC:A4:DB:7C:66:60:AF:BE:79:D8:6F:C3:A2:61:CE:CB:BF
X509v3 Authority Key Identifier:
keyid:F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/Dtd0zKTbfGZgr7552G_DomHOy78.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.34.230.0/24
Signature Algorithm: sha256WithRSAEncryption
38:c2:f8:82:53:71:3f:e6:a9:29:63:ef:7b:09:79:ef:83:b3:
e3:ae:47:53:ce:57:5e:6d:63:fa:25:91:a4:2c:f7:ab:76:8e:
42:e6:4b:bb:04:ca:58:23:26:20:0f:be:f3:d4:70:35:12:0c:
09:f0:37:ad:00:08:35:8b:85:d8:4d:44:a5:fa:b7:e8:e5:cf:
4d:2f:ae:94:8c:0a:d2:f0:7f:25:b6:cb:cd:8a:d5:b9:16:a3:
45:d3:60:18:eb:3d:ba:21:c6:e6:a3:79:72:45:6a:66:4d:b8:
6a:52:c6:ae:a5:91:e5:e6:28:3c:d2:16:5e:8f:0d:ac:8d:21:
6e:2d:50:e4:62:dd:8c:ab:ca:fe:49:44:88:df:70:43:b4:ee:
eb:4f:47:01:22:82:31:bb:1e:ea:9c:25:59:51:a0:a9:7a:91:
a4:e3:f8:4f:36:fd:fe:1e:0e:8b:9c:19:93:dd:9c:dd:49:1d:
92:3b:4e:20:01:00:8a:32:71:ee:64:ed:6a:a2:c4:54:2e:b9:
41:a4:c8:69:58:bc:2c:83:39:fc:23:ba:f4:01:8b:58:79:64:
46:55:53:89:a6:98:3a:7d:df:21:2e:af:25:38:fe:42:a2:fb:
47:30:36:6b:60:d6:ed:30:a1:30:2b:fd:57:f9:46:f3:74:74:
c2:1c:be:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jan 7 11:20:38 2024 by rpki-client on console-ams.rpki-client.org