Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/jkU6vtYrlb7wPc8JeohWnan7XwY.roa
File: jkU6vtYrlb7wPc8JeohWnan7XwY.roa (raw, json)
Hash identifier: pm4ZLtpyFrMp5DsmI+v3jeha8RgzwZwQwKtE1TigG6I=
Subject key identifier: 8E:45:3A:BE:D6:2B:95:BE:F0:3D:CF:09:7A:88:56:9D:A9:FB:5F:06
Certificate issuer: /CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Certificate serial: 018987AECE472A32C22886BC435586C26B8E
Authority key identifier: F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/jkU6vtYrlb7wPc8JeohWnan7XwY.roa
Signing time: Mon 24 Jul 2023 11:35:27 +0000
ROA not before: Mon 24 Jul 2023 11:35:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199414
IP address blocks: 89.33.12.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:87:ae:ce:47:2a:32:c2:28:86:bc:43:55:86:c2:6b:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Validity
Not Before: Jul 24 11:35:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8e453abed62b95bef03dcf097a88569da9fb5f06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:2c:c1:6a:79:f8:4b:9f:6a:7f:0d:8d:c7:fb:
01:62:88:aa:f5:81:f4:ee:00:4a:40:99:92:8c:72:
9b:32:8c:4f:c7:df:3a:9f:bd:75:45:9f:56:98:b1:
e0:f4:41:2e:7d:e3:a1:a2:b1:67:b4:91:eb:49:f9:
93:bf:bd:80:cf:a4:9c:a0:1f:79:f0:e4:8f:43:1d:
8d:73:d6:be:1c:96:a4:07:0a:a6:1a:22:ce:83:62:
81:1b:0f:1f:ca:12:e1:cc:d8:d0:65:f5:78:cb:31:
ec:47:50:0f:47:cb:32:e0:33:3d:27:1c:88:1c:b2:
1e:10:e5:1c:72:bd:9e:49:83:8d:78:38:19:47:65:
ef:b6:b8:7e:92:23:3d:d9:d2:78:54:cf:98:5b:aa:
9b:c0:a2:c0:ab:cd:98:0a:fc:b4:d8:dd:ff:35:a4:
92:77:30:70:53:bc:08:a9:7f:db:1e:bb:b3:45:7f:
19:ab:85:16:85:67:a4:55:58:8b:c0:96:96:f2:03:
c6:0f:81:5c:b2:3c:63:43:eb:60:02:b6:45:54:5e:
0f:35:e2:4b:89:c1:c7:69:1d:8a:74:6d:bc:ac:a7:
62:48:0e:61:3f:87:65:01:63:eb:f1:a4:16:68:4f:
ac:3a:0f:40:1a:c5:a9:2b:6d:3e:d7:2f:27:99:9d:
49:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:45:3A:BE:D6:2B:95:BE:F0:3D:CF:09:7A:88:56:9D:A9:FB:5F:06
X509v3 Authority Key Identifier:
keyid:F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/jkU6vtYrlb7wPc8JeohWnan7XwY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.33.12.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:12:17:37:1c:ab:24:0b:cc:3a:81:71:27:4f:05:9f:04:26:
55:01:41:ce:74:04:c0:7b:ca:d9:b7:19:9e:c7:03:4c:34:7e:
bb:e1:df:19:36:60:d5:c0:8f:5c:74:76:b8:d4:66:1a:6f:35:
35:53:9d:8b:bf:37:c3:0a:32:f5:11:91:72:e2:1b:e4:34:30:
c7:8e:8d:31:86:58:f4:e7:94:09:7a:d9:14:45:04:cc:62:ef:
4c:85:39:ba:67:45:e3:58:bf:b9:b6:f4:f7:e4:d5:b7:8e:86:
e3:dd:28:5e:25:6f:ce:68:1e:a7:66:d4:04:f1:a3:10:3b:21:
0d:1d:bd:bd:89:d0:57:c9:78:a8:9c:20:71:6c:7a:da:c6:5a:
cc:6d:c7:f2:67:0e:61:a6:80:d1:21:e9:e0:a2:56:ac:ad:4d:
78:78:4b:7d:80:1e:82:f2:19:f3:b3:1d:87:d8:a3:f3:bd:b5:
14:3a:b3:a5:32:a8:d3:8c:4f:c3:a3:04:a7:fd:6e:53:7e:d8:
8d:34:9b:11:fb:cf:8f:9d:09:80:55:b2:56:9b:4d:47:7f:ac:
6e:f4:1f:16:eb:50:42:b8:b8:1e:73:25:2b:6a:98:56:0a:98:
b7:69:d0:b1:ac:a0:4d:7b:fd:de:e0:c3:8d:86:c9:2d:a2:aa:
56:30:30:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 23 12:58:38 2023 by rpki-client on console-ams.rpki-client.org