Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/q5YECuDyNSbiR9yiSLjlv1ewduw.roa
File: q5YECuDyNSbiR9yiSLjlv1ewduw.roa (raw, json)
Hash identifier: zD1jZzC4ES8WfJxjpL0Lchn6nMQ2cpdY4YCihAC3wPU=
Subject key identifier: AB:96:04:0A:E0:F2:35:26:E2:47:DC:A2:48:B8:E5:BF:57:B0:76:EC
Certificate issuer: /CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Certificate serial: 018BFB1900B58411B7CEF1ED4993F7545803
Authority key identifier: F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/q5YECuDyNSbiR9yiSLjlv1ewduw.roa
Signing time: Thu 23 Nov 2023 07:33:21 +0000
ROA not before: Thu 23 Nov 2023 07:33:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 996
IP address blocks: 89.34.224.0/23 maxlen: 23
Validation: Failed, certificate revoked on Thu 23 Nov 2023 09:28:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:fb:19:00:b5:84:11:b7:ce:f1:ed:49:93:f7:54:58:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Validity
Not Before: Nov 23 07:33:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ab96040ae0f23526e247dca248b8e5bf57b076ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:49:d4:1e:46:b1:48:af:3e:2d:64:f0:db:b8:
15:21:21:6f:53:41:7c:24:59:e4:28:3a:30:20:da:
c5:96:ce:a7:15:b9:fa:fd:a4:eb:7e:4b:42:d3:1c:
4a:ff:7a:79:38:07:49:6a:06:73:ee:b7:bd:ec:eb:
1e:12:9c:b0:26:fe:ba:9d:cc:ac:3c:1e:dd:ca:ed:
26:f1:03:d0:97:a9:3e:20:71:de:f5:3f:4a:0f:73:
29:25:53:ae:26:27:56:f5:30:8d:b7:f4:63:02:b2:
6d:91:25:7a:07:77:09:61:93:bc:ab:db:33:24:76:
b6:c8:6f:98:d5:2f:b5:86:31:dc:68:e3:52:a5:d0:
10:98:85:a6:af:e0:38:57:a8:b8:87:6a:20:d7:7b:
75:f3:09:7a:37:1c:92:4c:7d:ff:33:23:b1:9f:f6:
27:c0:fd:d2:be:8f:24:95:50:e7:5d:8f:c0:65:12:
3d:79:fb:a9:66:fb:fa:e3:59:de:f1:d9:f1:cf:0f:
e5:3a:5b:bd:2d:e3:29:1b:4f:96:af:99:c2:76:77:
3e:64:1f:11:c1:8a:12:a7:b6:9f:09:c0:e3:2c:90:
c2:13:a1:fa:28:58:c5:0d:6d:db:c0:7d:66:2e:e3:
02:8e:7a:6b:5c:2c:b1:9a:dc:53:37:06:1f:27:91:
b1:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:96:04:0A:E0:F2:35:26:E2:47:DC:A2:48:B8:E5:BF:57:B0:76:EC
X509v3 Authority Key Identifier:
keyid:F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/q5YECuDyNSbiR9yiSLjlv1ewduw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.34.224.0/23
Signature Algorithm: sha256WithRSAEncryption
22:58:8e:e7:00:06:4e:b5:d6:06:85:f9:1a:ce:dc:77:cc:8d:
06:c4:4e:e4:9f:04:e1:b8:fd:c4:58:24:23:9f:51:b1:e4:48:
b7:56:66:21:1f:93:27:1b:0d:cb:31:0a:3e:1d:77:82:b8:93:
22:87:dd:15:89:bd:a8:71:07:b0:df:3f:b1:71:a7:43:67:9e:
0c:4f:62:11:be:6a:73:bb:70:8b:6e:7d:6f:27:20:2a:ea:9d:
38:c2:58:fb:e8:cf:6e:5f:d5:5c:4a:9f:18:a8:98:dd:80:2d:
86:40:c3:46:7f:d6:db:79:88:dd:be:c0:c0:48:76:89:a8:1b:
9f:04:91:bb:50:82:63:f5:b2:c6:92:62:14:37:c7:94:62:1f:
ea:84:2f:39:d8:af:86:68:ca:17:bd:f3:34:8e:e5:fa:85:83:
33:2a:81:94:06:26:e8:a4:49:12:9b:50:ce:4e:d3:31:b3:6a:
f3:dc:59:11:59:54:b4:88:a3:b1:d0:3f:8d:7c:3e:43:e8:a1:
8f:94:dd:9b:e0:26:f9:8a:de:ac:9d:ef:12:b0:89:97:55:b4:
e6:6b:77:e5:03:ed:f6:f4:1a:b5:49:4b:e7:2d:9a:65:f4:0e:
5a:76:2b:7f:6b:de:45:bb:cf:e2:b0:f1:e2:c5:96:f2:fc:6d:
b5:f7:1b:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:19 2024 by rpki-client on console-fra.rpki-client.org