Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/nibrGbLW-z93ohCJ2HQARgf3MqE.roa
File: nibrGbLW-z93ohCJ2HQARgf3MqE.roa (raw, json)
Hash identifier: 8MLEc2H3lmew9fJFpVDaakS8429rY34dsqdBiUcJdss=
Subject key identifier: 9E:26:EB:19:B2:D6:FB:3F:77:A2:10:89:D8:74:00:46:07:F7:32:A1
Certificate issuer: /CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Certificate serial: 0191BDD0CB799AFF59A8EBBAE862B0600584
Authority key identifier: F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/nibrGbLW-z93ohCJ2HQARgf3MqE.roa
Signing time: Wed 04 Sep 2024 16:14:22 +0000
ROA not before: Wed 04 Sep 2024 16:14:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215362
IP address blocks: 89.47.114.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 04 Oct 2024 07:31:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:bd:d0:cb:79:9a:ff:59:a8:eb:ba:e8:62:b0:60:05:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Validity
Not Before: Sep 4 16:14:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9e26eb19b2d6fb3f77a21089d874004607f732a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:b8:e5:39:19:c5:9d:86:a5:e1:77:ec:1f:31:
2a:6b:6e:05:06:d6:80:6d:11:bc:25:8d:e0:ee:84:
bf:fb:b6:34:ce:ef:2f:07:ae:13:26:e6:97:e3:cc:
3c:d3:7b:d6:20:99:45:67:0c:80:c9:ca:76:40:ae:
62:df:36:19:8c:82:4a:33:d5:8c:91:ce:ea:64:88:
01:05:4a:01:08:c4:04:f3:3f:ae:82:04:a9:66:d9:
86:ac:01:e3:d5:85:59:c0:00:43:71:17:e2:0d:53:
3d:73:e1:7b:81:a6:56:29:d2:2f:09:3f:76:75:8a:
04:af:6a:a7:dd:7e:5c:2d:9a:45:7d:a5:81:86:18:
ef:f5:fa:8b:04:48:c7:cc:fe:36:5f:48:33:9a:1a:
8e:60:50:55:3b:d3:68:17:a2:33:7e:f9:44:40:a1:
ee:a5:a9:dd:48:a8:d7:c2:e6:7d:96:ed:35:5c:4d:
f5:b6:ac:0e:17:6e:aa:0a:71:ce:06:67:07:93:dd:
a0:c9:79:2a:45:e3:8e:1f:00:63:f0:e2:a7:90:61:
97:b2:83:19:3c:fa:1c:66:f7:e0:f2:d3:b8:c2:ea:
9d:0b:f2:b3:4d:ac:19:d0:a9:9a:78:3f:06:61:f4:
00:d9:b7:e6:33:81:86:74:b9:87:4c:f6:2d:df:38:
38:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:26:EB:19:B2:D6:FB:3F:77:A2:10:89:D8:74:00:46:07:F7:32:A1
X509v3 Authority Key Identifier:
keyid:F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/nibrGbLW-z93ohCJ2HQARgf3MqE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.47.114.0/24
Signature Algorithm: sha256WithRSAEncryption
65:e5:aa:71:a3:72:d4:09:d9:f5:61:ed:63:91:c1:8d:33:9c:
5d:6b:3c:e3:c6:6a:09:04:a5:ba:14:d0:d7:6c:b7:fd:51:b0:
8d:65:79:a8:51:12:1e:0a:1b:9d:ea:36:d3:39:3c:97:8f:b4:
6a:ba:51:52:ae:ec:69:4f:b1:18:f4:61:99:08:30:6c:9c:47:
81:1d:2a:f1:97:39:8a:9b:37:35:48:89:e4:33:ab:12:52:58:
63:63:09:6f:e5:17:52:19:13:05:4d:b2:b9:d1:b1:4f:22:91:
21:1e:b0:0e:5b:d8:22:85:b4:c7:e6:1e:18:a3:26:18:5a:28:
31:12:50:14:68:b2:a8:fa:8d:45:15:4e:46:21:7e:e9:44:17:
8f:f5:1a:da:22:c5:58:e4:06:64:06:f5:d7:ab:cd:e8:be:0c:
c2:8c:a5:50:9a:02:8c:2f:d8:b3:f0:19:b6:2a:2b:c7:f0:af:
67:6f:df:6f:c5:8f:3c:bf:db:d2:ba:88:6c:2f:cf:c7:ad:26:
da:56:19:1b:79:67:71:de:96:89:56:bf:aa:ab:44:86:18:a8:
ff:b5:11:e0:96:0c:b5:68:47:44:55:80:ee:d4:bc:b8:a3:b6:
7e:12:17:c5:e0:86:92:d9:fa:c1:84:17:7f:55:af:60:b9:d4:
17:7a:ca:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Oct 4 10:23:21 2024 by rpki-client on console-ams.rpki-client.org