Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/Q1lR8O0LsRFg7VKmFmrRff0-uP4.roa
File: Q1lR8O0LsRFg7VKmFmrRff0-uP4.roa (raw, json)
Hash identifier: tg3je/MjIA5fdk8cYtPebbAJYQGUzJZGOK1eqsVAnj4=
Subject key identifier: 43:59:51:F0:ED:0B:B1:11:60:ED:52:A6:16:6A:D1:7D:FD:3E:B8:FE
Certificate issuer: /CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Certificate serial: 018AA20C9D23CC633B3750338A14DAA2239D
Authority key identifier: F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/Q1lR8O0LsRFg7VKmFmrRff0-uP4.roa
Signing time: Sun 17 Sep 2023 07:30:50 +0000
ROA not before: Sun 17 Sep 2023 07:30:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8100
IP address blocks: 89.37.197.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:a2:0c:9d:23:cc:63:3b:37:50:33:8a:14:da:a2:23:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Validity
Not Before: Sep 17 07:30:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=435951f0ed0bb11160ed52a6166ad17dfd3eb8fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:15:8e:b9:74:e5:c7:79:c7:20:a3:16:50:1a:
ad:05:84:5d:8d:9a:b8:95:38:c6:5f:7d:63:04:21:
2b:69:8e:67:90:3a:08:6c:9e:0a:da:07:e6:2e:48:
47:0e:38:0e:a8:8c:2c:c2:d9:27:07:05:31:7c:5b:
24:24:52:4a:b3:cb:d7:b9:08:d1:4d:9e:c9:4d:62:
7d:d9:f4:e7:a1:e3:57:13:2e:df:e2:86:ad:73:76:
89:3a:2c:07:5e:9f:3a:1e:0e:fc:3e:42:43:39:27:
f4:81:2f:08:88:bd:bb:21:6e:d6:25:eb:6b:1f:e5:
23:27:f0:54:b3:c4:a8:a6:86:b6:d2:84:77:29:55:
49:90:7f:9d:b5:4e:c4:ad:f3:d3:68:69:33:b7:f4:
f8:fa:a5:62:62:9a:91:0e:64:d9:d0:0d:3e:1c:47:
81:9e:a1:6f:39:a1:f4:39:42:aa:23:2c:86:5f:f4:
b9:05:c8:6a:0a:51:fc:4c:6d:33:63:8f:a5:88:ed:
62:21:dd:5b:28:c7:e5:26:aa:d0:61:00:88:4d:3a:
d7:68:7c:1a:e9:94:2d:cc:81:75:36:7f:ad:08:2f:
e0:f9:29:d6:fd:ef:2e:36:40:60:86:89:f6:ed:59:
22:b0:83:27:fc:f0:82:e4:a7:8f:ec:19:6b:f3:57:
f5:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:59:51:F0:ED:0B:B1:11:60:ED:52:A6:16:6A:D1:7D:FD:3E:B8:FE
X509v3 Authority Key Identifier:
keyid:F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/Q1lR8O0LsRFg7VKmFmrRff0-uP4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.37.197.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:68:ac:64:f0:48:b2:16:e8:41:86:01:e9:24:c5:f1:3a:1b:
e7:81:50:20:94:01:53:5f:67:f1:18:88:7e:c8:68:2f:cd:de:
9a:0e:f8:28:39:fb:7e:16:34:5d:5b:0b:ac:8d:9d:81:a8:75:
25:d3:1a:33:15:9e:f3:e7:a4:b3:68:8c:73:3c:4f:d2:07:1e:
d9:a8:08:cb:96:6b:ac:2d:04:c3:03:45:6c:b7:5a:c4:ca:16:
f9:9d:05:2f:19:4f:0c:16:ee:b1:60:14:e1:14:2e:c3:89:76:
7c:ba:e6:70:52:ba:5c:ba:9c:c8:43:57:ce:15:06:f7:72:80:
07:5c:14:93:9e:58:02:be:c1:4d:c6:bc:fc:ed:3a:76:85:66:
c1:4b:0b:24:16:6f:d5:59:1d:de:99:6c:bd:7b:a5:3b:02:96:
2a:ab:c8:da:86:52:f5:58:92:be:f7:bd:ef:1c:6b:35:37:5c:
f0:22:f9:63:6b:e9:4e:9e:f3:ee:b5:9e:06:37:e0:6f:c2:0f:
ce:f1:e8:f9:74:39:b6:ca:f0:d8:1a:f4:4c:85:5d:13:59:91:
e0:cb:08:b7:7f:7e:8c:e4:d0:a1:db:31:47:f3:83:80:42:0f:
dc:01:15:2c:bd:b7:8a:67:8c:66:ce:4e:a8:79:b6:88:17:4a:
3f:28:a8:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:19 2024 by rpki-client on console-fra.rpki-client.org