Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/GY7Ni8b9VFnw0cyoymog_ouPK40.roa
File: GY7Ni8b9VFnw0cyoymog_ouPK40.roa (raw, json)
Hash identifier: PsMGQHVIJdwDRNiKwTMoOrgv43gVbEpyheS/ttHqipI=
Subject key identifier: 19:8E:CD:8B:C6:FD:54:59:F0:D1:CC:A8:CA:6A:20:FE:8B:8F:2B:8D
Certificate issuer: /CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Certificate serial: 018B3E46C2CE86441E74A7B1E225E422AEFF
Authority key identifier: F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/GY7Ni8b9VFnw0cyoymog_ouPK40.roa
Signing time: Tue 17 Oct 2023 15:35:06 +0000
ROA not before: Tue 17 Oct 2023 15:35:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216159
IP address blocks: 89.33.194.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:3e:46:c2:ce:86:44:1e:74:a7:b1:e2:25:e4:22:ae:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Validity
Not Before: Oct 17 15:35:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=198ecd8bc6fd5459f0d1cca8ca6a20fe8b8f2b8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:36:db:11:d4:4b:86:f4:f2:af:95:f0:35:b3:
f1:0f:63:fb:f8:b5:49:03:2a:e1:81:1b:73:82:9b:
9c:38:25:51:14:68:2a:63:34:f4:34:19:13:a4:4f:
b6:93:a6:24:4b:b5:5b:23:5e:21:12:b4:2e:3e:a7:
d4:15:f2:04:a4:32:d8:44:ee:77:d2:e7:bb:d1:b6:
75:20:13:81:0e:e5:c8:ab:7f:3e:d5:47:18:ef:31:
46:5a:fe:ab:eb:99:e5:90:de:5e:1d:2e:77:73:01:
a0:b8:99:e2:73:26:86:05:9d:e7:41:ab:df:0f:0a:
22:bf:1e:32:4c:83:60:bc:19:43:bf:b7:b8:02:36:
38:33:02:94:57:7f:ea:4c:58:68:f1:bd:a4:93:16:
d3:fb:6a:84:19:49:fe:8c:59:9f:bd:ba:a7:af:a6:
0d:9f:7b:c1:1c:22:ee:fd:24:f7:f9:cb:90:a0:fe:
05:33:bb:6a:a9:a7:c8:b3:cc:0b:69:c2:60:65:24:
53:3f:33:8f:d0:10:2a:5f:7e:08:01:b3:2f:3a:da:
da:d0:dc:8a:b4:25:d5:42:1b:e7:d2:4c:f4:c7:ea:
d7:f4:13:78:06:b8:c0:62:33:c3:23:c3:96:f8:98:
ca:e5:5e:1c:c3:b2:d9:9a:cb:07:54:e7:4a:23:72:
b9:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:8E:CD:8B:C6:FD:54:59:F0:D1:CC:A8:CA:6A:20:FE:8B:8F:2B:8D
X509v3 Authority Key Identifier:
keyid:F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/GY7Ni8b9VFnw0cyoymog_ouPK40.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.33.194.0/24
Signature Algorithm: sha256WithRSAEncryption
55:a2:c3:7d:67:28:14:12:73:4e:7f:4e:a8:92:ad:cb:99:13:
23:85:43:af:e1:2b:25:21:c4:87:51:f1:3a:ce:e2:fe:a2:06:
d1:b7:e1:9e:7e:22:78:d0:55:12:89:bb:41:98:ea:7d:d5:7c:
15:78:d7:87:28:1c:09:4d:d3:89:54:86:f4:21:f5:da:d9:f9:
75:38:e4:8f:99:15:3e:87:67:3f:db:1a:f2:b1:85:98:91:cb:
13:83:4c:8d:cf:d0:0d:9b:14:6e:3e:e2:71:70:78:26:9c:e3:
91:dd:ee:15:1c:dc:81:0a:f1:33:08:7d:f0:66:05:8c:0e:6a:
cc:8c:ad:09:c4:51:13:cf:f2:72:89:b5:9d:86:88:e7:0d:ef:
70:e3:95:b8:4b:96:46:19:f9:2c:9f:0b:d9:0c:c6:33:c4:f0:
97:f9:36:fa:92:77:2b:1a:fa:35:56:de:a0:a5:50:77:2a:c5:
87:05:44:24:a3:4a:c0:5b:7d:47:17:8b:28:97:1c:8a:28:de:
db:0b:6c:e0:7c:76:48:f4:d3:84:4c:d9:d8:1d:35:ec:81:1f:
ca:2e:bf:a0:7a:1c:9c:7d:6f:75:53:b2:7b:53:90:96:c7:a0:
1d:6c:5b:43:a8:62:ba:45:28:b8:80:01:33:24:6f:11:2b:6b:
e0:1e:84:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:49 2024 by rpki-client on console-ams.rpki-client.org