Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/NbQ7p8edAcuUlwVyUHfE1R7s-j4.roa
File: NbQ7p8edAcuUlwVyUHfE1R7s-j4.roa (raw, json)
Hash identifier: TcgRbvFW+7cJqxZzWQsc6mcVc/ljw1t9nbPpialJlMU=
Subject key identifier: 35:B4:3B:A7:C7:9D:01:CB:94:97:05:72:50:77:C4:D5:1E:EC:FA:3E
Certificate issuer: /CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Certificate serial: 0189504B7C779BCD68DF30BC02B3E600AE3B
Authority key identifier: F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/NbQ7p8edAcuUlwVyUHfE1R7s-j4.roa
Signing time: Thu 13 Jul 2023 17:27:51 +0000
ROA not before: Thu 13 Jul 2023 17:27:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8708
IP address blocks: 89.33.193.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:50:4b:7c:77:9b:cd:68:df:30:bc:02:b3:e6:00:ae:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Validity
Not Before: Jul 13 17:27:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=35b43ba7c79d01cb949705725077c4d51eecfa3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:d8:4d:19:2b:70:97:c1:92:79:f0:32:58:8b:
5f:b7:22:b5:4c:0e:57:32:a7:62:b4:85:06:b4:ed:
74:74:61:1d:67:59:ea:5d:9a:b9:b0:75:7f:36:45:
dd:38:05:4d:10:47:17:84:67:43:9c:a1:65:58:12:
38:49:3f:70:60:98:83:09:18:f2:d0:69:57:df:13:
8e:2f:46:d9:e0:81:69:c0:08:56:9f:c9:c2:25:73:
ae:4a:bf:ce:0f:f1:3c:da:96:7b:c8:91:04:64:e3:
e7:0f:99:48:9e:f3:06:63:27:c1:e9:45:82:f7:ac:
05:56:ee:6d:ee:3c:e1:e0:b3:b0:66:d6:b1:31:bf:
e2:60:67:db:8c:84:c6:68:cf:68:6b:68:e9:45:8c:
91:16:5f:00:07:3f:5e:39:38:e1:94:22:01:a8:c4:
75:59:1c:5d:c4:58:7b:3b:6d:da:ad:c1:0b:16:da:
b6:51:c1:cc:67:d6:36:48:bd:2f:53:96:9c:fe:a2:
d0:cc:47:86:84:22:3a:f7:cd:18:ea:c3:72:22:dc:
d0:75:a4:08:f7:08:75:bf:4a:66:06:d2:62:ed:e9:
03:dd:18:5b:d8:03:5b:84:cf:9d:0c:d1:d7:46:c5:
ba:fe:4a:c0:89:e6:dc:3b:77:59:56:41:6c:39:11:
48:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:B4:3B:A7:C7:9D:01:CB:94:97:05:72:50:77:C4:D5:1E:EC:FA:3E
X509v3 Authority Key Identifier:
keyid:F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/NbQ7p8edAcuUlwVyUHfE1R7s-j4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.33.193.0/24
Signature Algorithm: sha256WithRSAEncryption
56:4a:13:ae:2b:0e:97:0e:3d:f1:9b:83:6a:a0:9b:15:bb:91:
09:21:59:96:82:2b:2a:ec:bd:e4:22:43:56:57:7e:15:3d:f9:
5a:6e:10:41:86:d3:df:58:41:fb:8c:92:94:b4:03:4b:39:72:
d6:c7:9b:94:09:cc:16:4d:09:d3:01:54:fb:b6:cb:15:96:a2:
77:09:84:d1:ef:a9:78:c8:67:34:c5:8b:e6:c7:87:af:35:ea:
a6:fb:06:2a:34:aa:53:d4:cc:62:18:cd:91:0a:7b:8b:81:57:
04:4b:dc:0e:f2:97:01:c9:cf:f3:8b:4a:78:ce:16:b7:46:6b:
19:4c:63:c6:13:4d:7b:7f:d0:b0:90:da:61:06:50:41:ad:82:
c7:f5:e4:57:7b:0e:54:11:89:c8:f9:8c:03:42:9b:9d:22:d1:
8f:f3:de:03:19:e2:05:f3:ed:2a:ca:3d:b6:f6:bb:da:43:55:
f2:f2:3f:1d:b5:7c:61:4e:09:68:0f:6b:88:c9:db:85:88:af:
d6:90:b4:04:ad:f2:f2:ca:b5:fe:d4:8c:f7:bd:e7:18:4a:76:
bf:bc:47:49:03:0f:ff:b5:77:69:2f:cc:49:59:66:3a:11:d7:
e4:91:32:56:7d:04:4a:95:39:78:52:25:e8:cf:05:c0:1f:78:
32:e7:85:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:19 2024 by rpki-client on console-fra.rpki-client.org