Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/XL9JnWM3yimUVL5sBsGPGIM_Vlo.roa
File: XL9JnWM3yimUVL5sBsGPGIM_Vlo.roa (raw, json)
Hash identifier: yBUZDIQaCYSRmoJnFxyBE0K7izGdJBL3fxRVir5jn/Y=
Subject key identifier: 5C:BF:49:9D:63:37:CA:29:94:54:BE:6C:06:C1:8F:18:83:3F:56:5A
Certificate issuer: /CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Certificate serial: 01897C99C116ABEE4650F562A23DFAD4579E
Authority key identifier: F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/XL9JnWM3yimUVL5sBsGPGIM_Vlo.roa
Signing time: Sat 22 Jul 2023 07:56:38 +0000
ROA not before: Sat 22 Jul 2023 07:56:38 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 89.46.0.0/23 maxlen: 23
89.46.2.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 22 Jul 2023 09:26:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:7c:99:c1:16:ab:ee:46:50:f5:62:a2:3d:fa:d4:57:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Validity
Not Before: Jul 22 07:56:38 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5cbf499d6337ca299454be6c06c18f18833f565a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:c7:db:d7:de:14:a8:dc:c9:f7:8d:da:02:91:
cf:1f:b6:a1:ca:b9:97:b7:9c:16:a9:71:53:20:04:
95:3e:09:b1:34:55:eb:95:0e:75:1a:57:04:f0:41:
b0:4e:08:f2:eb:09:14:6a:53:0d:4b:40:b5:a1:de:
36:18:73:12:7f:6f:97:f7:63:d0:90:b6:c9:84:78:
66:11:f8:1d:02:4f:40:15:d5:91:af:ec:82:ce:9a:
05:b3:32:e3:8b:11:b1:a5:da:92:96:a1:b6:69:cb:
1b:37:8a:95:c0:74:19:40:65:d8:9f:aa:f8:3b:59:
c4:e4:5f:9e:c7:11:54:60:62:5e:5a:44:88:a5:67:
db:d4:ed:e4:48:4e:a0:c7:10:55:cb:5b:ab:61:a3:
8d:8e:4c:39:3a:fa:03:ec:ca:e5:99:20:db:f6:8c:
58:d2:56:dd:38:cf:c9:0a:86:07:f5:71:09:da:ae:
99:58:e0:aa:33:fa:4e:f0:13:ea:9d:89:25:de:d9:
8a:58:90:ad:c4:48:c0:5e:c6:bc:2f:91:94:89:0d:
e9:2b:fa:c1:b5:cc:45:f0:ff:58:04:fa:20:a9:ed:
56:a7:e1:b9:6d:f0:9a:07:10:4d:a7:d7:e0:71:5e:
f3:f3:c6:ae:8f:ba:2d:66:5c:b3:9a:46:b0:69:8a:
88:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:BF:49:9D:63:37:CA:29:94:54:BE:6C:06:C1:8F:18:83:3F:56:5A
X509v3 Authority Key Identifier:
keyid:F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/XL9JnWM3yimUVL5sBsGPGIM_Vlo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.46.0.0-89.46.2.255
Signature Algorithm: sha256WithRSAEncryption
09:a1:79:0e:72:08:54:f4:d7:b3:8e:4a:98:be:37:20:d1:9d:
87:3e:1c:0e:db:37:ae:c8:5a:d2:21:8a:b7:c7:3b:e4:58:ec:
d3:80:f4:39:e6:83:52:f8:1e:f5:74:40:d9:d9:3e:7b:5f:91:
28:29:01:a4:d7:c2:3b:f8:86:87:87:3d:d7:33:4a:11:f5:56:
6f:96:2a:06:a7:a3:a8:69:6e:3d:82:aa:b4:d3:0f:bd:85:d1:
8d:5f:b5:8c:4b:2d:24:85:8d:c5:4b:bc:72:d0:64:b6:26:8b:
ea:30:99:9c:9a:d7:04:34:70:f8:8c:fa:f2:ab:c8:ba:65:21:
e2:e4:81:3e:ef:11:15:c3:e9:cd:b5:d4:da:e8:1b:b7:e6:39:
32:ba:88:c9:ab:52:e8:15:79:38:69:6e:9c:09:d3:9f:75:41:
c1:96:c6:55:12:9f:1d:58:6d:29:f3:ff:4e:2c:80:02:26:75:
80:49:7f:f6:6b:3e:b5:89:3b:ca:51:8e:12:f7:1b:e3:4e:37:
28:c0:a1:8c:52:15:7d:87:4d:69:af:cd:41:57:55:8b:fb:00:
76:55:0b:ae:17:62:8c:ee:f8:b8:a3:97:a5:48:94:4c:b6:6e:
01:0c:fe:8e:1c:ca:a0:8c:14:b6:5d:de:d7:3b:7c:ef:1c:0d:
71:a1:8f:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:50 2024 by rpki-client on console-ams.rpki-client.org