Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/nzRKkPnP8Ijy2Q9HXLmzpeaF5Tc.roa
File: nzRKkPnP8Ijy2Q9HXLmzpeaF5Tc.roa (raw, json)
Hash identifier: rT0KbOhjlGjDaIFKn0Ob2DXEnc74aztjFnRMzHMdVF4=
Subject key identifier: 9F:34:4A:90:F9:CF:F0:88:F2:D9:0F:47:5C:B9:B3:A5:E6:85:E5:37
Certificate issuer: /CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Certificate serial: 018925BC16BD5F81E67D97665678FC0CD6B0
Authority key identifier: F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/nzRKkPnP8Ijy2Q9HXLmzpeaF5Tc.roa
Signing time: Wed 05 Jul 2023 11:07:10 +0000
ROA not before: Wed 05 Jul 2023 11:07:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35711
IP address blocks: 89.37.118.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:25:bc:16:bd:5f:81:e6:7d:97:66:56:78:fc:0c:d6:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Validity
Not Before: Jul 5 11:07:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9f344a90f9cff088f2d90f475cb9b3a5e685e537
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:9d:4f:28:96:5c:d9:54:a9:f8:58:64:f8:2b:
8d:c2:6d:bf:aa:9c:ca:00:1e:81:f9:46:45:b2:c0:
26:cd:d7:0d:47:68:96:36:9c:64:a5:dc:16:ef:56:
af:a4:9c:ad:e6:64:24:07:44:92:84:9e:ec:f5:fc:
c7:48:12:ef:03:2d:e4:5a:78:77:ca:3f:d4:4f:ad:
0d:12:2b:35:6b:71:61:66:6e:bf:7a:9e:0f:da:02:
e4:2d:2e:a8:52:57:27:35:66:0b:20:e5:fe:7c:a8:
a6:3b:ab:3e:ee:af:97:88:6b:36:d4:d9:1d:1e:02:
70:f4:b0:46:7f:ae:f0:d4:e0:55:4b:da:70:4f:d2:
b6:dd:2e:ba:55:c4:d6:db:df:1a:1e:38:14:7d:62:
c6:9f:cd:13:7f:58:e5:17:24:fe:1d:24:9e:df:41:
e7:61:7c:94:f8:b6:61:8f:7d:0e:0b:bc:25:21:cf:
3e:2e:03:b8:f4:6c:be:40:49:ab:4c:93:7b:bf:e6:
38:5b:bd:f2:12:38:58:8b:aa:43:28:f1:6a:7b:00:
59:8a:94:db:22:65:7b:72:5f:72:98:7d:87:46:21:
ea:87:70:ec:46:63:1d:11:93:33:eb:71:8c:8e:cb:
f6:84:08:42:fb:e9:1a:b0:82:fb:74:9f:0a:cc:a5:
0a:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:34:4A:90:F9:CF:F0:88:F2:D9:0F:47:5C:B9:B3:A5:E6:85:E5:37
X509v3 Authority Key Identifier:
keyid:F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/nzRKkPnP8Ijy2Q9HXLmzpeaF5Tc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.37.118.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:82:34:c6:20:18:38:d8:5d:1e:88:f1:6b:f6:15:5c:98:47:
e5:6c:81:23:23:b3:fe:e2:46:cc:42:a0:b9:b6:d6:0a:1b:b5:
fa:44:a6:fe:03:bb:7b:c9:7c:3a:df:b2:2c:fe:f2:4b:a4:c5:
2a:e0:e6:a1:bb:a0:91:3f:08:1e:b6:ed:81:00:f3:d9:27:5d:
8f:d6:89:a6:e5:09:e9:fb:84:e5:30:67:ea:b6:c4:23:06:1a:
9b:0b:70:8c:ef:98:99:6e:ac:4e:b8:bf:85:a4:f2:22:33:b9:
ab:96:94:ef:26:fc:4e:b7:25:28:32:40:55:e7:98:62:f9:07:
36:9d:b0:5b:ff:97:e4:df:6a:24:56:d5:eb:06:87:a6:39:72:
87:6c:5d:f9:78:1c:10:f1:2d:85:a5:b2:15:61:d0:e2:eb:a7:
1d:ee:18:0a:f7:8d:4f:cd:68:b1:f0:ca:c7:86:c0:e6:37:9d:
c4:da:6d:96:19:72:62:55:7e:07:d7:15:29:01:e2:c3:43:71:
d7:85:a1:09:b9:74:27:a4:09:ac:49:71:27:5e:9a:c5:89:53:
dd:e0:38:a4:16:f2:d3:02:2b:ba:9d:2d:b7:a3:72:fb:d1:81:
14:ec:30:93:2d:78:04:1b:28:6e:0f:1d:a1:9b:7f:a0:91:9f:
92:3d:2b:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:50 2024 by rpki-client on console-ams.rpki-client.org