Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/mBdI-aOuhr1aB7sYsXgvSapovHw.roa
File: mBdI-aOuhr1aB7sYsXgvSapovHw.roa (raw, json)
Hash identifier: 0pRHLHqLBsi70LCQDwQPZ052kj5YQCaxoeRW6NBtx4c=
Subject key identifier: 98:17:48:F9:A3:AE:86:BD:5A:07:BB:18:B1:78:2F:49:AA:68:BC:7C
Certificate issuer: /CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Certificate serial: 0188663BA4525A1BE9CFD5A19F62C12CE783
Authority key identifier: F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/mBdI-aOuhr1aB7sYsXgvSapovHw.roa
Signing time: Mon 29 May 2023 06:39:24 +0000
ROA not before: Mon 29 May 2023 06:39:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198883
IP address blocks: 89.33.194.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:66:3b:a4:52:5a:1b:e9:cf:d5:a1:9f:62:c1:2c:e7:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Validity
Not Before: May 29 06:39:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=981748f9a3ae86bd5a07bb18b1782f49aa68bc7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:ae:a6:eb:ee:82:a9:00:56:f1:df:70:f2:22:
d1:6e:e9:f3:8c:3a:be:a3:d8:a6:8c:9e:5b:c0:35:
03:37:72:83:6d:61:b1:a8:58:dc:35:49:58:20:40:
40:1a:02:bc:6f:6e:d9:63:0f:4b:20:6d:c1:cc:2b:
e9:31:09:02:9f:8a:94:bf:62:d1:e3:71:99:4d:b2:
44:e8:a6:c2:cc:6f:b9:ab:44:96:c1:4c:26:cf:ca:
c7:83:83:d8:22:6d:66:75:ea:c2:fe:b7:fb:7a:8f:
6e:eb:8a:b9:ab:3a:2a:56:dd:de:e6:58:79:51:a8:
b4:d4:3a:38:5b:1d:45:22:64:d1:7c:b1:9c:d4:67:
5b:79:26:fd:55:d7:59:54:61:74:33:84:0c:49:db:
3d:e7:7c:b2:9a:cf:78:27:a2:6d:ba:bb:f0:c5:bf:
e4:6f:c0:41:e1:04:d0:9a:23:f0:84:d9:42:1a:0c:
79:4f:34:e2:d6:64:d9:a2:9a:37:2f:ec:f5:40:66:
ce:7d:24:2f:eb:06:3e:6c:38:c2:d8:29:80:44:8a:
2d:a4:7b:2b:33:36:2c:50:5e:7f:fa:45:c1:bb:06:
ae:53:ea:a3:21:35:73:ce:9c:2e:1c:c7:00:ce:75:
8f:6f:e8:57:f2:ae:92:2d:0b:d7:27:79:9c:e4:45:
c8:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:17:48:F9:A3:AE:86:BD:5A:07:BB:18:B1:78:2F:49:AA:68:BC:7C
X509v3 Authority Key Identifier:
keyid:F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/mBdI-aOuhr1aB7sYsXgvSapovHw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.33.194.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:13:a5:f6:d7:39:89:2a:56:e7:ff:ae:f0:cc:15:ba:07:21:
df:58:dd:a2:1c:62:7d:57:95:72:bf:24:fc:c7:b1:ff:67:d8:
95:ca:ec:e2:10:60:3b:66:88:3b:56:50:82:9a:81:e0:89:f5:
82:33:f6:1a:3d:20:f8:05:b9:9e:39:e1:f2:87:d4:26:9b:9e:
69:a8:86:a8:cf:ed:d8:99:79:d4:06:45:fc:8f:51:1f:f5:62:
9c:fe:2b:03:e9:15:fa:aa:fc:3a:62:71:a4:86:a3:c0:6d:e1:
1e:b7:fa:4f:40:d6:d5:a1:36:81:63:a6:10:b6:fb:49:4d:3f:
b2:50:59:b8:0e:af:29:0a:ff:5d:7b:8c:4c:1b:b3:fe:dc:19:
1c:0d:b7:ff:db:da:2e:ff:5d:ad:8f:10:51:e2:45:cb:89:54:
1d:63:1d:55:32:d7:a6:67:64:65:b7:08:c1:01:80:9d:06:1e:
bc:02:fc:06:2c:8f:0e:8f:7b:91:03:1a:8e:ce:72:8d:a2:bd:
8b:5c:3e:eb:1d:60:a9:fd:b1:f9:c3:ee:9b:e7:92:28:64:a1:
be:74:9a:d6:22:04:92:77:fa:32:3f:bc:d9:b3:07:37:1a:d5:
89:0d:d6:21:dc:3a:28:e6:5f:47:30:83:ca:5c:5e:d4:3a:54:
11:81:b1:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:50 2024 by rpki-client on console-ams.rpki-client.org