Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/Pryr8pmGN5iQ_y1BP_4CkVkzD7A.roa
File: Pryr8pmGN5iQ_y1BP_4CkVkzD7A.roa (raw, json)
Hash identifier: ik3sE4FEeum1Yv6QXF/w4qpe65PZmhUaRQP8IlSKrhQ=
Subject key identifier: 3E:BC:AB:F2:99:86:37:98:90:FF:2D:41:3F:FE:02:91:59:33:0F:B0
Certificate issuer: /CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Certificate serial: 018A4364A9673631A94F19999B43640861BA
Authority key identifier: F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/Pryr8pmGN5iQ_y1BP_4CkVkzD7A.roa
Signing time: Tue 29 Aug 2023 22:23:04 +0000
ROA not before: Tue 29 Aug 2023 22:23:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3356
IP address blocks: 89.34.227.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 16 Nov 2023 05:46:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:43:64:a9:67:36:31:a9:4f:19:99:9b:43:64:08:61:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Validity
Not Before: Aug 29 22:23:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3ebcabf29986379890ff2d413ffe029159330fb0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:b3:c7:d2:02:fc:37:4d:3e:10:e7:e1:bb:5a:
d9:45:e5:8d:65:50:5a:f6:2b:40:b1:71:c3:bc:86:
a1:76:5c:21:78:a9:af:ba:e2:0c:76:83:b5:f6:95:
46:88:ee:6c:29:00:4e:fe:1d:d5:2d:96:4b:d2:3c:
18:fa:2a:65:8a:95:7c:e1:eb:17:24:c3:15:12:ba:
cf:36:ac:44:c9:ec:2c:c8:6a:01:9a:57:ba:28:2f:
f8:1c:9b:cc:79:1f:74:50:a9:b2:68:9f:6b:ea:c7:
3e:fd:f5:c6:4a:33:09:71:72:ac:71:5d:ea:55:c8:
76:86:61:64:c6:07:20:c3:39:d4:f5:43:90:d6:5e:
25:e3:ec:48:48:e7:69:66:c9:f1:f9:36:ee:b2:e5:
e2:1f:f7:b1:e4:a7:7f:4c:56:17:cd:54:ff:7d:52:
a5:0b:cc:b0:bc:6d:ab:a0:34:aa:ef:c0:c4:db:77:
cb:fc:4c:f2:50:04:dc:a0:29:45:f9:d3:91:eb:dc:
64:65:38:70:a1:2b:17:92:b5:5c:5f:80:06:61:ec:
96:08:01:b5:6e:d6:31:72:76:5d:50:f9:4e:b7:6b:
00:02:9a:c5:72:79:30:87:8b:d8:65:b8:a7:3a:6e:
60:ab:03:7f:9c:01:9f:32:11:67:3c:8a:e8:9b:89:
ef:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:BC:AB:F2:99:86:37:98:90:FF:2D:41:3F:FE:02:91:59:33:0F:B0
X509v3 Authority Key Identifier:
keyid:F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/Pryr8pmGN5iQ_y1BP_4CkVkzD7A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.34.227.0/24
Signature Algorithm: sha256WithRSAEncryption
02:35:81:2a:3f:ba:01:9d:99:52:d9:7d:6f:c7:34:c8:27:e1:
d9:17:eb:bf:a2:cd:3d:af:b4:ff:2e:f2:b0:ce:98:f9:c1:8c:
29:87:ae:ca:c8:59:e1:8b:32:f2:98:5c:6e:2d:81:21:b5:d8:
ba:fd:9e:48:01:9d:af:fb:43:42:10:6d:6b:42:80:b2:39:41:
27:6e:a3:b7:11:59:47:ac:03:f5:2b:4f:30:ec:dd:ce:94:86:
4c:94:74:33:33:cb:3e:da:af:99:03:0f:4d:d2:09:5d:5e:ee:
54:aa:b4:29:ff:12:89:b3:58:81:ae:3d:b4:1b:37:85:c7:8b:
56:4e:d4:74:05:d4:4c:32:c6:b8:dd:89:a8:45:c9:e1:5e:0b:
66:ad:e7:c0:28:77:fc:5f:b7:90:8f:d9:00:33:84:d3:29:b5:
3a:68:9b:4f:66:bc:ab:03:dd:2a:78:f0:71:46:64:22:b5:4d:
9d:29:00:fe:57:66:da:94:d2:47:6a:8d:6a:86:40:15:ae:ac:
a4:6a:68:70:f0:5a:49:0c:1a:09:e6:c1:fc:e1:c4:5f:27:e2:
b4:53:51:68:b0:df:41:d7:df:4e:b5:62:4c:ee:70:6b:83:30:
f7:a5:77:78:db:d9:9d:33:7a:96:9d:86:a7:b0:78:b5:5d:00:
96:b9:c9:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:19 2024 by rpki-client on console-fra.rpki-client.org