Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/kiuRroYkxkG4I1b5beyarawAiZM.roa
File: kiuRroYkxkG4I1b5beyarawAiZM.roa (raw, json)
Hash identifier: BzPJm/mexYtgRgQyPwJBCdeB6NexwD1fQhpuI9X2ILM=
Subject key identifier: 92:2B:91:AE:86:24:C6:41:B8:23:56:F9:6D:EC:9A:AD:AC:00:89:93
Certificate issuer: /CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Certificate serial: 018C16C819CE565D0D29E9D5371EF62FE837
Authority key identifier: F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/kiuRroYkxkG4I1b5beyarawAiZM.roa
Signing time: Tue 28 Nov 2023 16:34:21 +0000
ROA not before: Tue 28 Nov 2023 16:34:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216032
IP address blocks: 89.42.82.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:16:c8:19:ce:56:5d:0d:29:e9:d5:37:1e:f6:2f:e8:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Validity
Not Before: Nov 28 16:34:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=922b91ae8624c641b82356f96dec9aadac008993
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:00:ea:e0:ec:be:76:db:e2:e0:e1:1c:8a:81:
2b:7d:3d:c4:37:a2:1f:51:f5:85:e9:03:07:34:c3:
01:d1:42:d1:c4:fa:84:40:65:a7:1d:e1:70:df:36:
4a:99:9a:aa:ef:a9:b6:76:51:f7:9e:60:25:6d:73:
f8:c8:c3:1c:82:90:a0:13:b6:a4:27:3c:95:35:76:
1e:9a:df:12:df:a2:e1:22:de:92:2c:a0:a8:70:2e:
3a:0f:93:c2:a3:84:d1:27:e4:3f:12:a2:fa:fb:9d:
06:80:1c:28:9e:9e:3d:da:9b:46:67:0f:69:c0:c3:
da:2e:2b:c6:24:7e:b6:7a:bf:45:c4:8e:0e:42:f1:
14:a8:23:94:15:8c:13:0e:fa:ea:31:a3:10:a0:34:
6d:96:20:a9:fe:e3:73:df:c8:b4:b6:e7:31:c0:0b:
7d:8c:be:19:8d:e0:89:66:9a:61:37:d6:4b:8d:9e:
28:42:c0:70:d2:af:68:f2:4b:a2:63:4e:ee:a1:34:
ca:87:1e:17:a1:0d:35:8f:36:96:d8:51:41:c6:58:
55:e1:1c:09:f8:b3:0c:d8:4c:0d:60:83:23:9f:48:
9a:b8:3b:09:10:c4:d6:7f:d2:eb:8d:b5:dd:9b:34:
41:a2:62:34:e5:4f:9d:46:1d:51:d4:19:96:a4:2f:
d8:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:2B:91:AE:86:24:C6:41:B8:23:56:F9:6D:EC:9A:AD:AC:00:89:93
X509v3 Authority Key Identifier:
keyid:F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/kiuRroYkxkG4I1b5beyarawAiZM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.42.82.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:38:74:18:70:41:4e:06:bf:d3:84:f7:ec:e4:9b:fc:31:67:
f6:db:a9:84:ac:09:21:45:cd:27:27:c5:e4:f0:d7:07:ec:e1:
95:88:30:1b:7f:be:34:74:ef:fe:24:55:ce:65:a0:74:51:3a:
a0:1b:b6:22:2b:84:72:c9:cf:a9:72:2f:cd:d7:f4:66:85:b1:
d8:d5:e2:64:bb:47:f3:d5:92:78:e4:65:92:22:ad:8d:4a:fc:
c3:9b:7b:a2:6d:c7:ab:5a:03:0d:9c:46:93:bc:9b:b3:4d:26:
3f:29:de:3e:0e:88:50:5b:eb:4b:55:b7:44:99:6f:e1:41:ba:
ff:a1:37:9f:c1:3d:b2:1f:98:cf:d8:69:30:3a:76:85:80:fb:
a6:de:c7:58:56:bc:06:f2:fa:1b:14:9e:c9:8d:fa:10:20:13:
f6:eb:a4:d7:bb:22:a6:1e:e7:76:24:1a:b8:15:30:99:21:ba:
9d:4e:07:5b:95:78:91:4c:d7:72:4d:c8:d4:10:62:10:2c:e0:
d5:e6:ac:5a:61:f3:89:79:4c:03:1b:64:e6:c5:b3:e8:19:8a:
b8:03:7b:f1:76:0a:5b:8d:85:99:7a:f3:58:1b:53:67:8f:63:
b6:52:8e:cf:1c:85:2c:f2:f8:5e:80:3a:9e:d0:09:31:e3:de:
c6:fb:49:da
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYwWyBnOVl0NKenVNx72L+g3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYxZDQ2ZTBlM2U4Y2FhYWVkNGE1MjliZDdkNzMwOGJkMWVm
MDFjMWQwHhcNMjMxMTI4MTYzNDIxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5MjJiOTFhZTg2MjRjNjQxYjgyMzU2Zjk2ZGVjOWFhZGFjMDA4OTkzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAowDq4Oy+dtvi4OEcioErfT3EN6If
UfWF6QMHNMMB0ULRxPqEQGWnHeFw3zZKmZqq76m2dlH3nmAlbXP4yMMcgpCgE7ak
JzyVNXYemt8S36LhIt6SLKCocC46D5PCo4TRJ+Q/EqL6+50GgBwonp492ptGZw9p
wMPaLivGJH62er9FxI4OQvEUqCOUFYwTDvrqMaMQoDRtliCp/uNz38i0tucxwAt9
jL4ZjeCJZpphN9ZLjZ4oQsBw0q9o8kuiY07uoTTKhx4XoQ01jzaW2FFBxlhV4RwJ
+LMM2EwNYIMjn0iauDsJEMTWf9LrjbXdmzRBomI05U+dRh1R1BmWpC/YMwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJIrka6GJMZBuCNW+W3smq2sAImTMB8GA1UdIwQY
MBaAFPHUbg4+jKqu1KUpvX1zCL0e8BwdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOGRSdURqNk1xcTdVcFNtOWZYTUl2Ujd3SEIwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYi84NGViNDQtYmJkZi00NmMxLWIwNDMt
YjQyZjIzZDgyOGMzLzEva2l1UnJvWWt4a0c0STFiNWJleWFyYXdBaVpNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYi84NGViNDQtYmJkZi00NmMxLWIwNDMtYjQyZjIzZDgyOGMz
LzEvOGRSdURqNk1xcTdVcFNtOWZYTUl2Ujd3SEIwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWSpSMA0G
CSqGSIb3DQEBCwUAA4IBAQA9OHQYcEFOBr/ThPfs5Jv8MWf226mErAkhRc0nJ8Xk
8NcH7OGViDAbf740dO/+JFXOZaB0UTqgG7YiK4Ryyc+pci/N1/RmhbHY1eJku0fz
1ZJ45GWSIq2NSvzDm3uibcerWgMNnEaTvJuzTSY/Kd4+DohQW+tLVbdEmW/hQbr/
oTefwT2yH5jP2GkwOnaFgPum3sdYVrwG8vobFJ7JjfoQIBP266TXuyKmHud2JBq4
FTCZIbqdTgdblXiRTNdyTcjUEGIQLODV5qxaYfOJeUwDG2TmxbPoGYq4A3vxdgpb
jYWZevNYG1Nnj2O2Uo7PHIUs8vhegDqe0Akx497G+0na
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:50 2024 by rpki-client on console-ams.rpki-client.org