Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/mFFCE5XV5Tyqr69dsAPVKW8dCzw.roa
File: mFFCE5XV5Tyqr69dsAPVKW8dCzw.roa (raw, json)
Hash identifier: UPvSrld1WkSd83VuResjB60vlSrAZMfeQxbCMRUZChI=
Subject key identifier: 98:51:42:13:95:D5:E5:3C:AA:AF:AF:5D:B0:03:D5:29:6F:1D:0B:3C
Certificate issuer: /CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Certificate serial: 018E5A90D6249A48AAD3A2EEFE58A9B756C1
Authority key identifier: F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/mFFCE5XV5Tyqr69dsAPVKW8dCzw.roa
Signing time: Wed 20 Mar 2024 06:33:45 +0000
ROA not before: Wed 20 Mar 2024 06:33:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200636
IP address blocks: 89.42.80.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 21 May 2024 10:17:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:5a:90:d6:24:9a:48:aa:d3:a2:ee:fe:58:a9:b7:56:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Validity
Not Before: Mar 20 06:33:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9851421395d5e53caaafaf5db003d5296f1d0b3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:24:49:ff:32:f8:f9:8d:20:13:c2:a1:0f:61:
ec:ca:e2:b0:5c:b1:b3:a7:fe:42:95:32:69:96:ae:
45:32:a4:00:4e:70:bf:5e:88:48:e6:d5:e5:e1:d4:
af:46:7a:81:30:e3:13:4a:d0:ad:f1:d4:69:ff:fc:
87:a0:af:60:a4:5a:30:78:5f:2d:45:3d:b3:af:7e:
79:71:f5:69:3f:c0:02:ef:9b:dc:2d:48:58:3c:88:
c7:70:76:1d:a6:56:de:ac:83:08:8d:34:1e:a7:c1:
22:3c:d8:90:60:69:4e:88:02:02:54:ba:3c:e3:c6:
9d:60:16:72:6e:aa:00:ea:44:be:17:8a:c0:a5:ec:
07:98:fb:66:d9:ab:42:99:e0:af:ac:7e:cd:c1:7d:
fb:4b:c1:94:89:a2:74:6c:af:cb:a1:5a:5a:ba:c5:
49:77:7b:1c:40:11:6d:9b:b4:de:84:bd:6f:4b:c5:
84:a6:8d:22:0e:8d:da:4a:33:8a:c6:76:6b:02:4d:
06:df:a3:55:93:6d:54:37:f3:f0:4e:10:38:70:c4:
e1:ba:9d:38:77:0a:68:8a:ca:d8:ed:4a:c1:c5:e3:
f3:7f:77:78:96:c7:83:64:7f:4e:5b:e3:d6:b0:2c:
37:5a:cb:f7:d4:2d:9d:18:fd:da:3d:51:31:5f:ae:
39:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:51:42:13:95:D5:E5:3C:AA:AF:AF:5D:B0:03:D5:29:6F:1D:0B:3C
X509v3 Authority Key Identifier:
keyid:F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/mFFCE5XV5Tyqr69dsAPVKW8dCzw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.42.80.0/24
Signature Algorithm: sha256WithRSAEncryption
68:f4:d3:80:72:3e:d5:df:25:11:ec:94:ec:bc:d4:e5:37:38:
b8:dd:8e:5b:6c:55:42:c2:d2:29:63:8c:62:3a:78:b1:0e:1e:
14:4b:7a:c3:33:af:33:e4:ea:85:14:a0:1d:dd:1a:83:8a:6f:
be:05:72:fa:04:80:d0:2c:e7:5b:2d:02:8b:44:7b:fc:24:21:
30:95:65:73:8d:51:4d:0e:9b:94:fc:e7:e1:7a:f1:bd:ad:27:
b3:25:31:9b:d1:c0:9a:80:3a:40:2d:c0:d3:5a:60:50:33:45:
ff:c6:11:84:31:c6:a2:50:1f:f4:38:8b:56:65:ca:35:7a:b3:
eb:52:a9:b5:48:aa:bf:97:2e:40:00:12:c0:7b:05:c8:a5:ff:
6a:f9:f0:25:21:02:d3:5d:83:bc:da:e0:48:11:37:ae:c3:9d:
7e:9b:fc:85:ae:4d:37:a4:6c:14:36:19:f9:1e:25:ef:f3:05:
8e:de:ba:4a:4b:c0:8f:15:6a:6c:4f:a7:04:14:d3:02:b1:50:
6f:1a:5d:f9:88:0b:1d:83:bd:e7:03:6d:c7:dc:8c:8c:29:e2:
a1:c8:11:8d:fe:87:84:2d:6d:f2:6e:f9:ea:d5:d9:bf:52:9b:
95:20:c0:b4:eb:b2:c5:e1:85:72:d3:53:d2:81:39:17:cb:f4:
38:5c:1f:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:19 2024 by rpki-client on console-fra.rpki-client.org