Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/tU22L00jWci1w6uo9v-kAiZc6JU.roa
File: tU22L00jWci1w6uo9v-kAiZc6JU.roa (raw, json)
Hash identifier: Gg3439fElPw8v9kQMTGa8ITHrGUZczyy1tG/3La524g=
Subject key identifier: B5:4D:B6:2F:4D:23:59:C8:B5:C3:AB:A8:F6:FF:A4:02:26:5C:E8:95
Certificate issuer: /CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Certificate serial: 018D74993E84CBEF68D35758C736ED2316E5
Authority key identifier: F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/tU22L00jWci1w6uo9v-kAiZc6JU.roa
Signing time: Sun 04 Feb 2024 14:50:16 +0000
ROA not before: Sun 04 Feb 2024 14:50:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210164
IP address blocks: 89.42.82.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 May 2024 05:55:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:74:99:3e:84:cb:ef:68:d3:57:58:c7:36:ed:23:16:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Validity
Not Before: Feb 4 14:50:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b54db62f4d2359c8b5c3aba8f6ffa402265ce895
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:29:1c:0d:3b:a1:2c:f0:d9:5f:c1:b9:c2:b6:
ca:fc:b4:54:7e:eb:00:7a:99:83:2a:30:2f:cc:26:
71:19:2d:65:d0:56:54:1d:f2:f5:9b:0e:0e:40:6e:
77:4f:99:aa:b2:4c:24:0c:c9:e0:60:f1:88:e0:4d:
21:74:37:1a:bb:99:07:21:76:ae:6a:bb:ab:70:b4:
cf:f2:f5:da:f5:31:f7:68:8b:ac:60:4c:76:dc:56:
77:de:5f:df:88:87:09:8e:2c:f0:96:3a:64:75:a7:
51:4d:e2:4d:91:85:ee:ea:2e:50:39:08:e0:8f:45:
03:28:85:e1:a6:26:18:3c:1e:59:9a:55:3c:e8:8d:
f6:2f:cb:46:b4:90:81:f8:60:19:b6:1a:e7:97:40:
49:92:84:5d:39:60:34:1c:30:c6:8f:b4:93:31:d9:
8e:63:c2:58:55:82:4b:2e:f6:63:73:13:f7:e4:1d:
a2:dd:68:af:2a:5a:48:de:22:04:a1:24:12:df:a1:
e5:bb:07:fd:4c:a5:f0:16:12:bf:c4:84:77:58:cb:
65:66:28:32:64:98:da:bb:af:4d:ba:70:b0:f3:e3:
b5:b0:3a:1d:4e:1a:f6:d9:37:62:f9:9a:af:f7:70:
67:49:89:c2:8e:b8:e3:ef:f5:ed:53:20:a9:53:3c:
4b:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:4D:B6:2F:4D:23:59:C8:B5:C3:AB:A8:F6:FF:A4:02:26:5C:E8:95
X509v3 Authority Key Identifier:
keyid:F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/tU22L00jWci1w6uo9v-kAiZc6JU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.42.82.0/24
Signature Algorithm: sha256WithRSAEncryption
62:67:1c:b6:97:d3:d7:cd:99:f1:99:20:09:cc:76:01:42:a3:
3e:af:9d:3c:f8:2e:fd:a3:32:a1:c1:05:e6:a3:5b:77:17:be:
95:1e:9e:a7:08:df:52:3f:c2:77:ab:e2:c5:af:69:82:95:e9:
25:b5:c2:64:cc:ab:fd:ec:c8:08:4f:13:be:48:5f:16:46:86:
92:f9:c9:cf:1b:6e:57:fe:dc:8a:94:1c:73:b6:32:d3:81:af:
8b:32:d4:1a:1b:f0:7d:56:e2:68:db:1b:95:dd:68:33:4f:04:
c8:a8:e2:18:a8:5c:9b:b5:3c:4e:ee:a2:18:b3:8d:a3:a2:57:
d5:b0:a7:ad:be:ab:0b:74:4c:56:88:72:7d:0d:e1:24:5b:5b:
de:b6:af:3c:e2:0f:82:61:20:a6:ea:05:25:bf:de:fc:45:35:
e6:cc:f1:b4:f4:99:29:0b:e8:05:c1:61:10:e7:8f:d2:49:c2:
56:ba:d0:61:52:3b:7a:ec:ca:4c:11:5b:fe:01:a8:f2:27:cc:
7d:4d:d4:28:f8:ed:b6:de:1f:33:18:28:39:99:0c:6e:61:65:
22:c0:58:32:6a:27:a6:9b:73:f0:0d:2e:4e:6a:69:0a:0c:cd:
45:e7:ae:7b:d5:c5:06:12:54:ca:55:dd:39:ca:10:66:7f:0e:
5e:e7:43:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:50 2024 by rpki-client on console-ams.rpki-client.org