Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/mIHNIk3-b81869KI26V2nzH66mw.roa
File: mIHNIk3-b81869KI26V2nzH66mw.roa (raw, json)
Hash identifier: 74ducTZrELO6zUh7WnZkWKNK/4jGWni+3AuJHFiFhtw=
Subject key identifier: 98:81:CD:22:4D:FE:6F:CD:7C:EB:D2:88:DB:A5:76:9F:31:FA:EA:6C
Certificate issuer: /CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Certificate serial: 018C15118FD3F8FFAA2B29E63CEBAD34D8B4
Authority key identifier: F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/mIHNIk3-b81869KI26V2nzH66mw.roa
Signing time: Tue 28 Nov 2023 08:35:21 +0000
ROA not before: Tue 28 Nov 2023 08:35:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211011
IP address blocks: 89.42.82.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 28 Nov 2023 12:10:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:15:11:8f:d3:f8:ff:aa:2b:29:e6:3c:eb:ad:34:d8:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Validity
Not Before: Nov 28 08:35:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9881cd224dfe6fcd7cebd288dba5769f31faea6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:f0:f0:4b:8c:0b:03:b9:9f:19:79:03:5c:56:
13:02:bc:c3:a2:e7:51:12:08:f0:b7:c3:bb:34:77:
1e:d2:77:a9:25:15:15:bc:70:42:d3:7f:2a:ef:98:
55:3e:0a:a5:a8:38:04:e5:2a:2d:dd:87:a6:aa:1d:
50:47:86:bf:c3:2e:0e:9e:93:e3:76:eb:8a:b3:05:
cd:37:46:be:47:61:76:fa:9e:c4:2d:34:bc:4d:8b:
d6:29:11:4e:1a:85:d7:91:87:dc:78:88:b7:cc:ac:
2c:41:75:20:35:e0:91:7d:bb:ce:11:48:e8:8c:43:
23:ad:14:2e:05:a3:6f:bd:d3:7e:08:83:79:5c:c7:
f0:d7:6a:b9:b1:11:59:8a:a2:f9:e5:9d:ad:0d:e8:
04:cd:67:b4:89:4e:02:c1:ef:ec:0c:d2:12:1a:28:
ea:fa:de:26:e0:11:e4:96:03:47:2a:3f:dc:88:b1:
76:af:0a:92:30:33:53:59:b6:c1:80:4e:cb:aa:33:
83:53:d4:78:71:be:fa:fd:a8:08:1c:50:96:c0:38:
9c:7b:0c:48:56:f7:9d:98:29:0e:f7:2d:ef:5e:01:
fc:95:7c:31:95:d9:d2:b9:cd:27:d5:be:c8:49:0a:
de:81:e9:95:bf:20:4a:9b:bb:84:8e:10:35:c8:8c:
d4:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:81:CD:22:4D:FE:6F:CD:7C:EB:D2:88:DB:A5:76:9F:31:FA:EA:6C
X509v3 Authority Key Identifier:
keyid:F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/mIHNIk3-b81869KI26V2nzH66mw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.42.82.0/24
Signature Algorithm: sha256WithRSAEncryption
62:a5:08:ab:10:07:b2:6d:b6:cf:16:06:ed:68:c7:be:a7:34:
24:e6:cb:f7:5f:46:85:67:14:21:f8:98:9d:8b:ce:c2:a7:77:
21:29:bc:52:91:df:24:a1:79:9b:97:05:56:f0:10:8c:c0:03:
4a:2b:94:29:cd:a4:84:30:b5:3e:fc:3a:69:fa:9c:00:18:41:
0e:32:af:b0:c3:c5:db:85:de:47:b9:04:43:8d:04:3d:24:d0:
1e:21:4f:89:c0:2c:cb:d8:0b:ac:d1:b9:8b:4f:2a:c1:1e:7d:
b6:45:f5:24:ab:83:77:d1:72:90:72:bc:af:eb:09:df:9b:5c:
0b:d9:3a:9d:2a:05:c8:5a:5f:0e:d2:e1:d0:94:b9:67:89:34:
da:f9:04:2f:5b:a5:8a:55:18:cd:69:d0:36:fb:85:4f:ef:6b:
c2:70:be:ea:64:05:93:8c:ef:7b:9b:7e:5c:cd:a8:10:ef:f1:
0d:fe:b1:5d:91:1d:a6:c6:26:ff:11:1e:f9:c2:bb:4e:0a:ab:
80:64:b6:b4:ec:3f:84:c6:33:79:62:81:67:50:cb:30:3d:8c:
79:38:0e:35:2f:47:34:cf:b2:74:81:f3:5a:89:b8:db:fb:36:
a6:08:54:15:b4:22:60:a4:e2:37:cb:0b:5a:72:ab:09:86:47:
bb:c4:a4:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:50 2024 by rpki-client on console-ams.rpki-client.org