Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/fDc5vgzWOo3zxD_U_zXM-p9DVcs.roa
File: fDc5vgzWOo3zxD_U_zXM-p9DVcs.roa (raw, json)
Hash identifier: TstHKneWdmqvu+AqR5ZMwzGPW0TM78AVw7izEsDEgSM=
Subject key identifier: 7C:37:39:BE:0C:D6:3A:8D:F3:C4:3F:D4:FF:35:CC:FA:9F:43:55:CB
Certificate issuer: /CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Certificate serial: 018CC26D1BCB0F797806B8D90EE2855E0EFE
Authority key identifier: F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/fDc5vgzWOo3zxD_U_zXM-p9DVcs.roa
Signing time: Mon 01 Jan 2024 00:29:39 +0000
ROA not before: Mon 01 Jan 2024 00:29:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 5065
IP address blocks: 89.34.229.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 08 Jan 2024 12:43:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6d:1b:cb:0f:79:78:06:b8:d9:0e:e2:85:5e:0e:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Validity
Not Before: Jan 1 00:29:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7c3739be0cd63a8df3c43fd4ff35ccfa9f4355cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:44:1d:c4:43:e3:50:01:85:d4:56:fc:3c:9b:
9f:25:6b:c4:95:ce:fe:3e:15:2d:90:67:bc:c1:9e:
de:ee:a9:bb:6c:1e:7c:77:c5:56:c2:37:57:4c:b7:
0b:11:e0:c4:c6:a8:68:35:ab:64:87:e8:50:c0:6a:
a3:5f:cf:54:47:4c:7d:bc:7d:ef:45:39:80:d6:f8:
08:f9:18:1a:d8:15:49:31:f7:67:b4:af:0f:d5:80:
72:64:c0:0b:d5:58:45:d5:0a:f8:e0:2b:9b:24:4f:
81:80:18:05:5a:91:6b:dc:ec:92:fd:b1:0f:fd:a8:
3e:f0:7e:76:c6:35:87:8c:3c:4e:ff:23:77:e4:df:
de:3d:c0:7a:ae:7d:98:00:67:4c:30:3f:3d:dc:0a:
a7:80:32:2a:d6:c8:54:be:50:ec:24:59:b5:58:a3:
d3:ae:b5:38:61:16:5c:d0:d6:25:12:24:7b:3c:ab:
2b:25:0c:61:8e:54:f6:18:9a:f5:a0:d2:ee:ce:39:
5b:8a:b2:7f:8b:cb:8f:6e:d0:e5:a2:b0:c5:3c:41:
9d:42:fb:2c:09:ea:31:5a:00:35:4e:ad:b1:0e:37:
76:cc:a0:2f:7a:27:47:65:74:e1:99:3c:db:46:e0:
d7:88:24:d2:4a:f1:72:31:29:21:67:c8:25:b6:bf:
56:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:37:39:BE:0C:D6:3A:8D:F3:C4:3F:D4:FF:35:CC:FA:9F:43:55:CB
X509v3 Authority Key Identifier:
keyid:F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/fDc5vgzWOo3zxD_U_zXM-p9DVcs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.34.229.0/24
Signature Algorithm: sha256WithRSAEncryption
31:18:37:80:a3:4c:e3:b2:5f:fc:06:9e:01:00:23:b3:a7:08:
80:0e:c9:89:a9:4e:29:ed:d2:0b:15:ed:e5:b3:bf:e9:9a:6b:
03:be:a8:2e:39:8f:0e:49:11:00:fb:44:26:74:02:5f:4b:db:
7e:d0:09:47:04:65:35:f9:12:5e:b8:cc:69:eb:c7:9e:e7:59:
2f:f2:11:16:44:6f:57:47:5c:12:bc:18:f9:2d:bd:91:e9:a8:
74:4d:80:57:95:9d:97:20:52:c7:09:84:1c:76:3b:15:ab:1c:
7d:78:54:83:c7:1b:b0:4f:d8:2f:6c:82:1d:45:d8:e4:d6:fc:
83:26:66:5f:2f:c9:e5:79:7d:f4:b6:c8:31:1f:3e:6d:ba:ef:
8e:9a:fd:3b:3c:da:94:2d:d7:9c:ef:1f:b9:cc:1d:42:cc:96:
a5:6a:40:bb:cd:25:87:b2:9a:3c:84:0f:d2:32:3e:16:2d:2c:
8c:78:72:3a:7d:99:79:81:57:25:c3:63:f6:6a:3b:6f:cb:4d:
d0:d1:a6:dc:db:5d:88:9e:5b:75:5e:86:c6:27:56:27:00:a8:
3a:e5:7f:87:7e:f0:a8:65:1f:54:a4:47:a8:be:3c:55:f2:79:
59:fd:1d:4b:cd:97:d4:31:e1:c7:ec:0a:4b:00:42:e6:83:37:
6f:6c:c3:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:19 2024 by rpki-client on console-fra.rpki-client.org