Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/cTr3J53Qt8rYI3uf1jYd9kdmobg.roa
File: cTr3J53Qt8rYI3uf1jYd9kdmobg.roa (raw, json)
Hash identifier: FeFXkAFMZ7vcPQXVbtrfoFzDb4Xi0tt3NzreAIMvJ7M=
Subject key identifier: 71:3A:F7:27:9D:D0:B7:CA:D8:23:7B:9F:D6:36:1D:F6:47:66:A1:B8
Certificate issuer: /CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Certificate serial: 01897CEBFD3D2BA2D1FCE1C71F1171E5E3CF
Authority key identifier: F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/cTr3J53Qt8rYI3uf1jYd9kdmobg.roa
Signing time: Sat 22 Jul 2023 09:26:27 +0000
ROA not before: Sat 22 Jul 2023 09:26:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 89.46.0.0/23 maxlen: 23
Validation: Failed, certificate revoked on Sun 23 Jul 2023 16:51:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:7c:eb:fd:3d:2b:a2:d1:fc:e1:c7:1f:11:71:e5:e3:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Validity
Not Before: Jul 22 09:26:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=713af7279dd0b7cad8237b9fd6361df64766a1b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:11:a1:4f:fb:94:b1:de:03:b0:86:74:6c:d5:
18:43:79:e4:cf:40:4e:ab:b9:36:c7:4e:2d:60:c9:
2f:0e:33:c9:48:01:99:8e:03:27:14:f7:18:d2:96:
bd:e8:dc:c8:28:75:3c:fb:30:50:01:6e:b5:dd:23:
5c:44:c5:54:bc:5d:3c:d3:90:2a:43:c3:cc:68:30:
cc:ee:d0:e2:29:e6:9c:79:3f:c6:60:b4:88:6d:90:
b7:e9:aa:c1:9b:5d:26:6d:0c:22:e6:1b:44:82:ea:
71:2e:a6:5b:7d:59:75:ff:7c:90:48:9b:0d:0e:ac:
59:ba:4f:f9:be:28:2c:3c:6f:f8:81:fa:b1:86:ac:
26:c8:82:15:33:7f:ea:7b:a5:a4:69:a4:39:47:e9:
eb:ec:9f:aa:64:67:e2:40:64:68:20:0f:64:a7:32:
5e:f7:98:e9:97:16:21:1b:35:a5:1b:c9:4b:5a:85:
72:97:ae:ed:5e:e3:64:e1:20:b0:5a:45:8f:43:07:
10:3b:a7:8e:70:c6:4b:ce:69:39:4d:71:9f:11:e9:
3c:1a:8e:19:58:b2:b9:34:7e:10:cd:1e:6c:20:32:
82:b8:9c:e4:a5:45:55:ad:7b:2c:02:9b:c5:a8:85:
64:8e:ab:35:8b:42:ab:15:44:aa:d6:0c:5b:f5:16:
50:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:3A:F7:27:9D:D0:B7:CA:D8:23:7B:9F:D6:36:1D:F6:47:66:A1:B8
X509v3 Authority Key Identifier:
keyid:F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/cTr3J53Qt8rYI3uf1jYd9kdmobg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.46.0.0/23
Signature Algorithm: sha256WithRSAEncryption
59:ab:4a:64:87:82:4f:d3:3a:e9:96:92:96:d7:eb:e4:c5:a8:
a0:3d:3f:4c:a2:75:8f:40:40:29:ab:fb:6b:11:50:c2:01:2c:
d3:0a:c3:ba:ce:87:21:b3:f0:a8:7f:80:e5:dc:a3:ee:4c:d8:
c3:62:43:65:76:7b:4f:e7:f9:6a:9a:75:1a:72:1d:d9:10:85:
a2:de:69:a7:e1:d3:6f:10:1a:7b:c3:c1:84:9f:8f:8a:d5:57:
bd:df:ea:2b:c5:02:21:d2:92:30:1a:cf:33:51:75:a7:d2:9c:
64:1c:4c:4e:68:c6:45:14:81:3e:42:31:a5:20:7a:b1:db:3b:
db:31:64:4c:01:a0:c9:75:f8:12:09:8b:f5:64:f6:1d:6c:08:
c6:5e:f8:fb:54:8a:9f:46:09:e8:80:a4:8c:5d:bd:a6:27:bd:
38:5b:94:c7:0d:26:90:78:22:24:5c:ec:d2:20:e5:65:09:78:
1d:8a:56:7d:f8:d7:e5:eb:bc:f7:25:5e:c3:cf:5a:09:65:3d:
35:f9:ee:30:3d:0c:23:38:a3:dd:c4:6c:b2:89:13:b6:70:66:
18:fc:e0:24:2e:90:c4:90:d5:19:0b:e4:93:c4:6a:40:4e:3a:
80:fc:91:3e:e0:ed:74:f4:8f:d7:77:22:93:cb:e9:cd:7b:55:
7f:8e:9c:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:19 2024 by rpki-client on console-fra.rpki-client.org