Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/RqrienzOlFGPSexSYvsFORu0AWA.roa
File: RqrienzOlFGPSexSYvsFORu0AWA.roa (raw, json)
Hash identifier: Xoe+ab46Js2hSoyWPOt4VUh1yyZTl9PbaYoRJeNiV+8=
Subject key identifier: 46:AA:E2:7A:7C:CE:94:51:8F:49:EC:52:62:FB:05:39:1B:B4:01:60
Certificate issuer: /CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Certificate serial: 018BAF5F41DA7D248392E6387EB633BDD066
Authority key identifier: F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/RqrienzOlFGPSexSYvsFORu0AWA.roa
Signing time: Wed 08 Nov 2023 14:38:57 +0000
ROA not before: Wed 08 Nov 2023 14:38:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 400866
IP address blocks: 89.34.231.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:af:5f:41:da:7d:24:83:92:e6:38:7e:b6:33:bd:d0:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Validity
Not Before: Nov 8 14:38:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=46aae27a7cce94518f49ec5262fb05391bb40160
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:8e:d0:d8:92:94:4d:08:6c:3a:7b:1b:51:d8:
4e:56:80:64:08:31:4d:a8:d3:ec:98:83:be:a8:dd:
34:42:df:6e:7d:81:96:65:f9:94:c0:09:eb:b3:62:
b0:ce:7a:44:99:4d:22:93:78:f6:4f:88:a3:19:62:
6f:3b:0e:20:0f:50:f6:9b:07:a7:14:b4:be:14:63:
e4:e3:4c:83:b2:aa:22:b9:ae:6b:2d:49:2f:17:56:
76:49:5e:66:ab:35:a0:66:88:c6:0d:11:31:26:d5:
ab:bd:4a:2d:da:1d:ee:da:df:ed:03:08:38:af:1a:
29:87:2f:e4:3f:3c:9f:65:7c:e1:04:b0:0c:d2:41:
51:96:f3:0e:a9:6f:2f:85:57:64:93:b6:e4:a1:99:
6b:4c:8f:06:e4:0a:4e:74:75:11:a1:cd:40:f6:bb:
7a:c5:dd:23:04:ca:d3:c4:38:56:8a:9a:22:b0:f4:
1c:20:14:a0:70:f4:4c:26:98:14:06:8f:d2:2d:1b:
e4:a2:83:32:4b:85:d9:c3:7d:72:d9:8a:bb:a8:61:
1f:84:23:31:42:b0:fb:c1:31:1a:22:bb:52:02:a1:
cc:ad:2d:51:d3:f1:98:f0:f0:32:45:5e:ea:87:67:
ee:7a:c0:04:a6:c8:71:fd:3d:28:32:d5:26:be:fe:
13:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:AA:E2:7A:7C:CE:94:51:8F:49:EC:52:62:FB:05:39:1B:B4:01:60
X509v3 Authority Key Identifier:
keyid:F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/RqrienzOlFGPSexSYvsFORu0AWA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.34.231.0/24
Signature Algorithm: sha256WithRSAEncryption
25:5d:95:6c:55:77:f0:a9:4a:27:d5:e5:dd:2c:8b:a2:0b:c7:
f9:8a:97:65:b7:6c:79:84:1a:2c:57:6b:ea:0b:e6:c0:57:8f:
fc:04:dc:df:50:e1:64:ba:f3:35:5b:40:77:49:96:4b:b3:2c:
5c:7f:43:e5:02:f2:8e:d6:8c:bb:3e:32:be:23:de:53:32:72:
85:bd:d1:5c:7f:44:7d:3a:8d:24:a9:92:c1:f4:d2:7d:37:10:
09:e2:fc:23:67:5a:a4:fb:97:07:29:55:2d:f6:ed:2e:56:2b:
46:b6:fd:c2:97:ac:5a:71:b6:08:3b:9c:46:86:fe:c0:bb:2f:
bc:58:c9:fa:a6:cf:3b:96:19:01:f4:4b:f7:55:86:65:ea:d1:
99:91:7a:11:7a:83:ef:01:6d:28:e1:e3:3c:fa:a7:71:0a:6a:
13:6b:aa:01:bb:7b:86:23:bf:55:e1:d6:7e:cd:ff:ae:e0:62:
f0:b6:9a:f8:34:a8:0e:67:7d:ba:a8:d1:74:e0:ca:5b:c5:12:
55:59:e4:38:45:a3:b3:82:6b:fd:3b:98:bb:97:d4:31:e9:1f:
22:f9:59:e1:56:42:46:3e:75:2e:78:77:b0:95:be:d7:c7:39:
88:20:13:c6:bd:15:15:4f:bb:62:fb:5b:52:47:66:0a:73:31:
56:f3:e0:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 15 09:33:51 2023 by rpki-client on console-ams.rpki-client.org