Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/lO9e8EIiHMdV2U5WBpV8SQYG89k.roa
File: lO9e8EIiHMdV2U5WBpV8SQYG89k.roa (raw, json)
Hash identifier: WQwJbXTtfa3C0Xy0XX2TffpytvvWkWFPfGHWdSZYXEw=
Subject key identifier: 94:EF:5E:F0:42:22:1C:C7:55:D9:4E:56:06:95:7C:49:06:06:F3:D9
Certificate issuer: /CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Certificate serial: 018B47187391BD525F9F659FA511DB0EBAFE
Authority key identifier: F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/lO9e8EIiHMdV2U5WBpV8SQYG89k.roa
Signing time: Thu 19 Oct 2023 08:41:06 +0000
ROA not before: Thu 19 Oct 2023 08:41:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59426
IP address blocks: 89.46.0.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:47:18:73:91:bd:52:5f:9f:65:9f:a5:11:db:0e:ba:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Validity
Not Before: Oct 19 08:41:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=94ef5ef042221cc755d94e5606957c490606f3d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:c7:98:ac:bb:23:9a:d9:1b:65:c1:e8:f5:ce:
14:7d:2c:ca:e2:1e:51:f5:36:02:7e:6f:e1:32:8d:
75:c8:79:3e:e5:d5:46:8d:10:ea:a6:f2:89:8a:f2:
dd:21:19:c5:50:d1:74:4c:a1:c6:13:9d:c4:a9:2c:
99:ab:45:86:f6:ad:c6:b1:4f:b0:48:59:07:4e:c8:
a3:ad:16:61:56:4d:fe:bd:ca:48:5d:85:6b:a2:2b:
6d:02:e3:e3:a8:4c:fe:60:10:53:d5:6b:a4:cc:a1:
50:be:43:13:77:4a:54:1e:ce:da:51:da:d1:9b:5c:
dc:b9:48:f0:33:37:ec:11:01:44:00:8a:2d:5f:37:
d4:6a:e5:ad:5d:fa:08:7e:a6:88:73:18:b4:59:dd:
cb:4d:e9:b9:d1:52:3f:6c:43:86:2d:58:e4:04:16:
2f:28:76:d3:ac:a1:bb:0d:f1:9b:22:ae:b6:13:85:
89:57:e0:cb:18:25:f9:8a:72:3f:a4:f5:81:e0:87:
fb:85:55:52:97:94:75:1d:ec:a1:03:28:34:e9:93:
a5:41:69:88:12:bc:9a:fc:ec:67:2e:c9:1b:5a:13:
3a:50:77:8d:03:30:b6:39:c7:75:eb:da:0a:e9:9b:
16:43:29:eb:c2:14:fc:5e:a3:bc:0f:d0:9a:6b:6e:
95:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:EF:5E:F0:42:22:1C:C7:55:D9:4E:56:06:95:7C:49:06:06:F3:D9
X509v3 Authority Key Identifier:
keyid:F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/lO9e8EIiHMdV2U5WBpV8SQYG89k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.46.0.0/24
Signature Algorithm: sha256WithRSAEncryption
22:8a:7b:42:d7:10:7f:8e:3d:dd:50:21:65:d4:17:56:9f:7b:
97:cd:f6:fb:b8:58:c3:18:c5:fe:be:76:b7:f8:86:80:e8:30:
02:af:10:61:76:4d:55:d3:cc:aa:d0:88:6f:54:64:f5:e5:fe:
d4:a0:34:dc:cc:fa:80:a7:ef:9a:60:72:14:85:25:25:25:a3:
81:a3:10:2c:52:59:4f:bf:a2:5d:ec:32:92:fe:0c:d2:31:33:
7a:f3:d7:7f:b8:2c:6b:5b:bf:14:6c:43:09:d6:e4:a8:5c:ca:
1e:fc:1e:2f:d3:a2:e6:f3:06:c3:5a:0c:2a:d7:ed:12:49:7e:
13:d5:78:8c:1f:db:cd:94:31:db:f2:81:a4:f3:24:01:99:96:
4c:8d:d8:ee:32:54:35:71:31:22:55:92:be:32:4d:3a:b4:1c:
ce:10:93:e3:b5:79:21:99:c3:f5:c4:55:7e:12:e1:a8:38:0e:
61:e4:cc:69:8d:c5:72:9d:d0:ea:65:a1:38:da:9a:49:5c:d6:
46:3d:94:50:94:f5:f8:0e:81:dd:04:e7:84:5a:d8:34:d5:55:
06:2e:49:31:da:0c:4f:75:69:b8:cd:f6:55:6f:ed:38:cd:79:
e7:79:b9:71:e1:a0:1e:8e:f9:34:f7:26:fe:cd:27:2a:2a:79:
77:35:de:67
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYtHGHORvVJfn2WfpRHbDrr+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYxZDQ2ZTBlM2U4Y2FhYWVkNGE1MjliZDdkNzMwOGJkMWVm
MDFjMWQwHhcNMjMxMDE5MDg0MTA2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5NGVmNWVmMDQyMjIxY2M3NTVkOTRlNTYwNjk1N2M0OTA2MDZmM2Q5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3seYrLsjmtkbZcHo9c4UfSzK4h5R
9TYCfm/hMo11yHk+5dVGjRDqpvKJivLdIRnFUNF0TKHGE53EqSyZq0WG9q3GsU+w
SFkHTsijrRZhVk3+vcpIXYVroittAuPjqEz+YBBT1WukzKFQvkMTd0pUHs7aUdrR
m1zcuUjwMzfsEQFEAIotXzfUauWtXfoIfqaIcxi0Wd3LTem50VI/bEOGLVjkBBYv
KHbTrKG7DfGbIq62E4WJV+DLGCX5inI/pPWB4If7hVVSl5R1HeyhAyg06ZOlQWmI
Erya/OxnLskbWhM6UHeNAzC2Ocd169oK6ZsWQynrwhT8XqO8D9Caa26V5QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJTvXvBCIhzHVdlOVgaVfEkGBvPZMB8GA1UdIwQY
MBaAFPHUbg4+jKqu1KUpvX1zCL0e8BwdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOGRSdURqNk1xcTdVcFNtOWZYTUl2Ujd3SEIwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYi84NGViNDQtYmJkZi00NmMxLWIwNDMt
YjQyZjIzZDgyOGMzLzEvbE85ZThFSWlITWRWMlU1V0JwVjhTUVlHODlrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYi84NGViNDQtYmJkZi00NmMxLWIwNDMtYjQyZjIzZDgyOGMz
LzEvOGRSdURqNk1xcTdVcFNtOWZYTUl2Ujd3SEIwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWS4AMA0G
CSqGSIb3DQEBCwUAA4IBAQAiintC1xB/jj3dUCFl1BdWn3uXzfb7uFjDGMX+vna3
+IaA6DACrxBhdk1V08yq0IhvVGT15f7UoDTczPqAp++aYHIUhSUlJaOBoxAsUllP
v6Jd7DKS/gzSMTN689d/uCxrW78UbEMJ1uSoXMoe/B4v06Lm8wbDWgwq1+0SSX4T
1XiMH9vNlDHb8oGk8yQBmZZMjdjuMlQ1cTEiVZK+Mk06tBzOEJPjtXkhmcP1xFV+
EuGoOA5h5MxpjcVyndDqZaE42ppJXNZGPZRQlPX4DoHdBOeEWtg01VUGLkkx2gxP
dWm4zfZVb+04zXnneblx4aAejvk09yb+zScqKnl3Nd5n
-----END CERTIFICATE-----
Generated at Tue Dec 19 13:46:51 2023 by rpki-client on console-ams.rpki-client.org