Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/lzxuyp5emx4QlyKMMGJWknRtLJw.roa
File: lzxuyp5emx4QlyKMMGJWknRtLJw.roa (raw, json)
Hash identifier: F8+ZZ3Dy3SiXvCgp0RX7kT54ICzZ1KHpgEYnfIuAHjs=
Subject key identifier: 97:3C:6E:CA:9E:5E:9B:1E:10:97:22:8C:30:62:56:92:74:6D:2C:9C
Certificate issuer: /CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Certificate serial: 018E1A66B0F32E29268DE11052496E1D76AD
Authority key identifier: F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/lzxuyp5emx4QlyKMMGJWknRtLJw.roa
Signing time: Thu 07 Mar 2024 19:32:01 +0000
ROA not before: Thu 07 Mar 2024 19:32:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43260
IP address blocks: 89.47.113.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 05 Apr 2024 11:59:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:1a:66:b0:f3:2e:29:26:8d:e1:10:52:49:6e:1d:76:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Validity
Not Before: Mar 7 19:32:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=973c6eca9e5e9b1e1097228c30625692746d2c9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:4c:e1:bd:3f:44:68:12:8d:bc:2f:13:27:12:
35:04:41:6b:ce:10:81:d5:e6:b3:f6:3d:30:4f:f1:
c0:79:aa:0c:1a:61:68:50:40:3f:8c:ba:cf:4c:98:
4c:c9:2b:1c:17:32:96:50:90:3c:ac:71:e3:0b:7a:
15:9d:01:22:f9:6a:e6:2f:5c:5a:bf:24:7e:bf:1e:
e5:dd:80:79:1b:66:0b:01:89:37:5e:a3:70:b6:c1:
85:25:09:05:b9:64:ee:11:46:76:36:9a:cb:3f:d1:
8a:84:0a:32:3b:c4:03:cb:9c:04:9b:03:ce:1d:eb:
e5:fc:3f:55:db:5f:9e:f6:ec:6f:20:fa:d4:db:71:
17:c6:dd:2a:c5:42:40:48:d9:c7:0f:b3:8e:e8:26:
b7:58:7c:48:cd:aa:6b:d8:21:53:18:61:b6:c4:4d:
47:8c:3c:8f:3c:a2:c6:e3:2e:0d:67:c9:37:82:2d:
46:19:5c:58:68:93:fb:b4:6a:d6:15:52:b2:c2:95:
75:77:a7:00:93:3e:1b:8c:91:19:f0:79:88:90:5e:
1f:1f:cc:ff:ab:c4:04:77:2b:80:bc:e6:0f:18:f5:
cf:69:83:10:11:16:d4:b3:b4:91:b9:e0:ae:14:ed:
a3:9d:82:6b:0b:aa:05:dd:4a:8c:05:b5:2a:d1:71:
db:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:3C:6E:CA:9E:5E:9B:1E:10:97:22:8C:30:62:56:92:74:6D:2C:9C
X509v3 Authority Key Identifier:
keyid:F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/lzxuyp5emx4QlyKMMGJWknRtLJw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.47.113.0/24
Signature Algorithm: sha256WithRSAEncryption
51:46:e9:98:a6:1f:56:a2:76:90:00:7f:89:4b:93:69:d5:b6:
e1:76:4d:c3:f0:b9:2b:41:46:e4:84:cc:18:a5:c0:a5:c7:e5:
9c:6b:65:a4:ac:92:4d:40:15:b9:78:0c:8c:1a:40:be:d5:e5:
52:14:7b:57:af:de:4a:25:88:f0:72:d1:40:84:db:b0:42:1f:
15:34:3d:dd:81:b7:e1:ec:ab:90:a3:ee:66:c2:d9:e9:b0:10:
15:7d:e2:c1:41:06:87:69:21:cd:be:c2:e0:03:37:fc:ca:d6:
9c:a4:a6:4b:16:8d:96:75:30:26:cc:60:03:32:8f:0d:29:6d:
5f:2f:e0:a8:4a:4f:f5:9b:95:b3:e8:de:9e:c8:7b:f2:8b:8a:
2d:ce:40:df:b3:1e:83:41:99:31:4f:a7:cb:92:7e:c3:74:7a:
f4:15:71:ae:a4:50:86:e2:82:62:8f:af:b6:ca:ba:9b:e3:7d:
57:04:cc:54:54:57:08:f7:39:87:23:e1:60:9f:0c:60:32:3f:
20:63:43:63:6d:27:69:4b:e3:39:e9:4a:17:bd:ba:d0:ab:0d:
da:fc:ec:82:50:1f:42:9d:6f:7c:d7:85:b4:e6:92:4b:f7:7a:
b9:65:3e:7a:02:13:b7:da:03:6f:11:a9:02:08:6d:5e:e5:2a:
b7:d1:ee:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:50 2024 by rpki-client on console-ams.rpki-client.org