Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/gBl_fouzPXBhioOmstayYiX5OcU.roa
File: gBl_fouzPXBhioOmstayYiX5OcU.roa (raw, json)
Hash identifier: C/NNXBqpkIayRFprQbEQO7wPJdJnjNczph/wIoZQsIQ=
Subject key identifier: 80:19:7F:7E:8B:B3:3D:70:61:8A:83:A6:B2:D6:B2:62:25:F9:39:C5
Certificate issuer: /CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Certificate serial: 018B5C77C9DB1E414B62DAA0EBAED994ECE1
Authority key identifier: F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/gBl_fouzPXBhioOmstayYiX5OcU.roa
Signing time: Mon 23 Oct 2023 12:17:16 +0000
ROA not before: Mon 23 Oct 2023 12:17:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199414
IP address blocks: 89.33.12.0/24 maxlen: 24
89.46.1.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:5c:77:c9:db:1e:41:4b:62:da:a0:eb:ae:d9:94:ec:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Validity
Not Before: Oct 23 12:17:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=80197f7e8bb33d70618a83a6b2d6b26225f939c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:41:2c:36:5f:52:1d:04:28:b9:5f:59:8e:a2:
ed:d1:40:44:2b:73:8d:fd:34:b2:ed:34:ee:f9:26:
a3:b4:7a:40:cd:22:85:18:6d:e3:57:52:ed:95:24:
72:df:45:70:13:c0:c1:81:12:3d:65:d9:a2:fe:73:
94:f7:90:91:3d:71:f9:8e:44:1d:a7:ff:27:19:5c:
f9:1a:10:21:90:52:d1:23:35:c0:7e:e1:97:d4:c2:
4b:f7:3b:69:d4:0f:86:45:c0:f8:8f:95:e5:a8:f0:
d1:2c:44:1f:e0:28:9f:c6:8b:ef:1f:c6:92:14:2e:
70:43:1c:43:5e:a2:68:b9:dd:ac:0b:64:7f:49:14:
fc:09:60:41:5d:e6:50:0f:17:0c:4f:c4:7d:d5:41:
94:48:31:4d:e1:3c:63:a4:ea:b2:a5:13:7d:b7:c4:
b7:7c:21:f0:e0:48:17:a8:75:31:31:05:06:4b:8e:
1f:f6:67:a3:d7:c7:36:ba:90:79:e5:5d:57:a9:d0:
ab:ea:20:c2:9b:04:e6:d4:50:9f:5b:67:c7:81:c8:
ae:c9:2b:f3:0c:98:e9:20:78:26:ce:f5:01:bc:ff:
72:fa:ab:b1:1f:07:d1:8f:fd:77:64:0d:3f:b4:e4:
29:73:21:45:2c:fd:8c:66:ee:39:15:fa:a2:b3:2d:
40:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:19:7F:7E:8B:B3:3D:70:61:8A:83:A6:B2:D6:B2:62:25:F9:39:C5
X509v3 Authority Key Identifier:
keyid:F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/gBl_fouzPXBhioOmstayYiX5OcU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.33.12.0/24
89.46.1.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:9b:7a:db:04:ad:f7:87:71:68:1f:71:4c:df:30:bc:68:f0:
9d:b5:54:20:a0:4b:cf:15:87:b8:e4:38:f9:76:8c:26:07:ce:
0c:a6:df:14:96:85:ff:ff:7a:c8:03:ce:a1:f8:d6:93:c7:fc:
d4:b8:19:43:f3:5b:8b:ee:ad:0a:d4:cb:07:ab:00:25:47:ee:
4b:be:cf:d2:2d:2d:b9:f6:c7:11:99:f8:0b:7f:a8:06:88:f9:
a4:18:41:90:86:ce:5f:2f:b8:f8:3a:f4:64:9a:42:e5:65:07:
92:bc:ff:01:3c:d7:81:3b:52:8d:15:c9:2c:c9:e4:f7:ad:33:
4f:9a:ac:ae:c5:b9:d9:31:73:56:fb:cf:76:08:87:c9:0a:4b:
2d:3d:68:75:d5:b7:68:af:14:42:66:44:80:6b:d9:bc:3f:84:
66:3a:19:9f:e8:6c:e6:58:b4:09:74:df:43:c0:b7:04:f5:0d:
b0:58:98:16:b0:cf:22:37:79:1e:60:ab:72:76:e1:14:0e:57:
73:64:ea:1a:97:45:02:39:b6:90:81:85:43:e7:40:c5:f2:b5:
01:68:aa:98:26:9e:2a:95:36:d0:52:56:13:d3:df:d7:ee:ff:
56:8d:09:37:dc:b1:3d:ed:b3:ee:ef:9c:e7:1d:bb:b6:0f:93:
87:05:3f:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:19 2024 by rpki-client on console-fra.rpki-client.org