Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/lq2OsDRy6Pqvpm0Tbywa01YiV7A.roa
File: lq2OsDRy6Pqvpm0Tbywa01YiV7A.roa (raw, json)
Hash identifier: vjNa4mGlXM6nb3sI96aoWPI2ilax0PSWAQb/KusnvYc=
Subject key identifier: 96:AD:8E:B0:34:72:E8:FA:AF:A6:6D:13:6F:2C:1A:D3:56:22:57:B0
Certificate issuer: /CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Certificate serial: 0189FA704512FF73E6EA9C87E176EC0DDBAF
Authority key identifier: F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/lq2OsDRy6Pqvpm0Tbywa01YiV7A.roa
Signing time: Tue 15 Aug 2023 18:23:29 +0000
ROA not before: Tue 15 Aug 2023 18:23:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211011
IP address blocks: 89.42.82.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 28 Nov 2023 08:34:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:fa:70:45:12:ff:73:e6:ea:9c:87:e1:76:ec:0d:db:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Validity
Not Before: Aug 15 18:23:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=96ad8eb03472e8faafa66d136f2c1ad3562257b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:65:99:a7:9c:a1:de:e8:4b:5d:80:f1:c2:17:
d4:49:94:2a:bc:a4:bc:53:29:15:fb:48:c2:65:11:
83:0d:95:3e:27:e6:ac:72:5b:cf:11:43:46:f1:36:
17:65:cc:92:9a:0c:38:1f:08:99:b1:8e:fd:0b:7b:
5e:fd:de:53:52:10:f8:44:b2:9f:1c:97:5b:81:5d:
af:47:a5:9a:b6:16:70:95:74:d7:3e:bb:d4:4e:77:
b7:1c:a2:4e:4f:33:3e:66:68:03:84:35:f3:57:e3:
f6:c3:f0:a2:54:fd:57:55:99:bb:1b:5a:ea:63:01:
34:d7:92:41:a0:0b:bd:38:ee:0b:85:8b:b6:a2:4a:
5b:c7:83:b1:8e:8b:35:00:de:63:69:0c:1e:50:24:
31:2b:8f:10:36:c1:2d:59:60:06:ff:d5:9d:dc:49:
af:ad:ad:7c:e7:c0:c6:2e:9d:82:85:fe:34:92:d4:
9c:fe:0e:ab:28:32:ec:a7:f3:ed:39:e2:26:e2:5b:
3b:5f:0a:57:3b:d5:06:5b:c3:b0:3d:8c:2c:18:e4:
bc:f1:4c:fd:be:5e:27:e8:07:4c:28:64:da:d5:8a:
1d:3c:f5:75:a3:b3:b5:d8:1c:38:33:ae:04:c5:9b:
6d:44:8a:91:99:29:53:9d:80:32:7b:0d:e7:3e:9f:
ed:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:AD:8E:B0:34:72:E8:FA:AF:A6:6D:13:6F:2C:1A:D3:56:22:57:B0
X509v3 Authority Key Identifier:
keyid:F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/lq2OsDRy6Pqvpm0Tbywa01YiV7A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.42.82.0/24
Signature Algorithm: sha256WithRSAEncryption
32:f9:55:9a:8a:49:1a:fc:92:ec:13:1a:7a:66:c8:e9:b9:ca:
5a:48:7f:ef:95:03:e7:84:e8:54:09:18:8a:01:60:35:f8:cb:
ae:18:85:b8:aa:26:7a:55:42:78:18:26:8f:52:8b:b5:bd:f6:
32:05:1d:73:1b:f5:55:bf:a7:b0:e9:be:6f:7f:be:74:df:19:
da:98:20:cd:cd:b9:a6:d0:f0:9a:77:cb:49:70:b4:06:f2:83:
5f:91:d4:55:95:5d:f0:1d:6d:fa:1f:a2:af:bb:9a:7a:20:2b:
4b:a8:83:2a:33:99:b5:c8:d0:65:72:ba:85:16:19:9a:a6:8f:
b4:50:b6:e9:f9:2b:ca:cf:0d:d3:f2:d1:3f:d7:22:d6:12:4d:
9d:1f:60:b9:62:3d:bb:3a:f4:0d:be:41:16:42:14:32:f9:d7:
87:4c:fc:e9:b4:b5:0e:71:be:16:a9:a2:d2:35:3c:f6:00:82:
a3:47:0b:40:33:d6:5a:95:89:f0:c8:15:36:41:51:cc:f1:17:
05:97:e2:56:d6:6d:2b:50:6b:d5:b0:d2:a2:74:ca:3a:aa:ae:
82:73:6d:0c:08:33:74:96:35:1b:e5:43:3d:75:86:c7:26:15:
93:74:a9:99:eb:6c:4c:a2:0b:33:07:1d:24:b5:93:ec:03:46:
a7:e2:d4:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:19 2024 by rpki-client on console-fra.rpki-client.org