Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/b1d4EOSp_UJlSb6UTvuT1557PrE.roa
File: b1d4EOSp_UJlSb6UTvuT1557PrE.roa (raw, json)
Hash identifier: E08Hb41AOcDoZHl0ZMtCoAePeZhbx4mDJgrkkWg4CpI=
Subject key identifier: 6F:57:78:10:E4:A9:FD:42:65:49:BE:94:4E:FB:93:D7:9E:7B:3E:B1
Certificate issuer: /CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Certificate serial: 018CC26D3140259E72EAF781C77FE41DDA54
Authority key identifier: F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/b1d4EOSp_UJlSb6UTvuT1557PrE.roa
Signing time: Mon 01 Jan 2024 00:29:44 +0000
ROA not before: Mon 01 Jan 2024 00:29:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216159
IP address blocks: 89.33.194.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 14 Jan 2024 16:51:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6d:31:40:25:9e:72:ea:f7:81:c7:7f:e4:1d:da:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Validity
Not Before: Jan 1 00:29:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6f577810e4a9fd426549be944efb93d79e7b3eb1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:3d:d8:4e:24:b2:f1:eb:9e:0d:b3:d8:0a:f3:
cc:2a:3f:96:1a:93:f1:3b:c6:e9:72:aa:b5:df:cc:
d2:a3:b0:47:23:1b:b0:86:c7:80:63:2c:27:3a:58:
3d:f6:d0:2b:7f:45:e6:ea:52:9c:ae:ef:fc:17:c8:
9a:73:27:88:11:0d:97:63:a7:b3:95:07:37:45:dd:
6e:70:6d:3c:a6:55:ef:79:da:2e:cf:92:72:b0:56:
32:d9:1c:8c:13:06:19:2c:b8:cc:0f:89:5c:61:07:
7a:9d:13:0f:f3:32:63:31:d2:0f:1b:a5:9e:3a:75:
c8:8c:19:e2:68:5c:b9:e6:ec:ea:b5:23:83:4d:8d:
44:4c:63:01:34:4e:3f:45:25:8b:0a:ad:59:63:e3:
f6:f7:ae:a2:b8:b4:69:d0:d9:47:96:9f:ce:09:bf:
e1:87:29:06:43:0d:59:f3:ab:34:48:7e:0c:a3:37:
64:b9:5f:d5:52:e7:8c:89:3d:df:09:61:51:76:c9:
1d:7d:37:a6:34:3a:4f:c9:24:c8:61:db:31:b2:57:
81:fa:d4:30:05:97:fb:a9:c1:61:c6:15:41:e9:91:
27:fc:f2:6d:77:fe:3d:29:c6:9f:96:35:d7:b2:a0:
11:b1:f8:bc:47:e5:db:6d:ab:78:cb:5a:21:a1:1a:
82:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:57:78:10:E4:A9:FD:42:65:49:BE:94:4E:FB:93:D7:9E:7B:3E:B1
X509v3 Authority Key Identifier:
keyid:F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/b1d4EOSp_UJlSb6UTvuT1557PrE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.33.194.0/24
Signature Algorithm: sha256WithRSAEncryption
04:66:00:45:ba:c9:42:ca:38:e9:7e:d6:d6:4c:d7:30:3f:d3:
a3:d0:90:06:d4:69:07:88:ef:97:0e:fb:79:42:8c:2c:59:13:
b9:7c:79:ad:0b:1a:d7:94:81:68:96:b2:a5:5a:82:df:f9:98:
a8:91:1e:13:2e:b9:f0:b4:47:01:db:26:5f:4a:25:d6:b5:1c:
0a:4d:3c:36:e6:a2:94:a1:36:ec:bc:38:5a:e8:4d:0c:36:6f:
d7:e7:2e:de:1a:e4:95:bf:56:04:10:5f:0b:a7:2d:03:43:c4:
86:5a:27:ee:dd:93:9a:05:16:21:73:a6:f4:9a:03:58:18:1c:
fe:46:69:32:e2:d2:58:0e:dd:f1:74:cf:43:ad:3b:f5:b4:da:
ae:8a:01:02:57:af:83:c6:9b:65:69:84:2e:e3:75:4a:1b:52:
36:da:f9:fd:c5:16:6f:5f:ec:37:e5:20:55:94:e7:3c:1f:54:
bb:73:21:b0:9c:e7:5f:0a:bd:3c:08:27:2c:58:c0:fb:d3:ac:
2b:05:34:cc:06:0e:24:97:ce:0a:10:70:68:4c:c2:d3:72:84:
ec:2b:0b:70:e4:bc:a1:1b:57:a1:e3:4e:9f:c1:71:93:b5:2b:
68:74:b1:61:08:28:d4:10:d3:db:b5:6c:32:6c:46:ef:77:cc:
82:ed:ad:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jan 14 17:31:01 2024 by rpki-client on console-fra.rpki-client.org