Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/ty8aixCjjEz_3lLjCDVDmIp25i0.roa
File: ty8aixCjjEz_3lLjCDVDmIp25i0.roa (raw, json)
Hash identifier: 7EbdLyvLhsil3j9oLwRHtFVSKP/pbsti1Bap7Ne7UUw=
Subject key identifier: B7:2F:1A:8B:10:A3:8C:4C:FF:DE:52:E3:08:35:43:98:8A:76:E6:2D
Certificate issuer: /CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Certificate serial: 018A11B0F7C53A202A4CD4EC2AEE7C35D917
Authority key identifier: F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/ty8aixCjjEz_3lLjCDVDmIp25i0.roa
Signing time: Sun 20 Aug 2023 06:45:24 +0000
ROA not before: Sun 20 Aug 2023 06:45:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211560
IP address blocks: 89.42.83.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:11:b0:f7:c5:3a:20:2a:4c:d4:ec:2a:ee:7c:35:d9:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Validity
Not Before: Aug 20 06:45:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b72f1a8b10a38c4cffde52e3083543988a76e62d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:2f:2e:43:a5:de:c3:07:35:8b:ca:ae:64:80:
7e:bd:c1:0b:7c:cd:f3:51:f1:bf:79:a6:21:5d:39:
0e:de:63:95:da:e2:a9:e7:ce:f0:90:0e:6e:35:ba:
63:13:79:4e:19:75:84:2b:5f:76:27:d3:c0:d6:da:
7b:ac:10:ff:a2:9e:8c:c2:6f:8d:bd:dd:9c:ce:e5:
cd:7f:e2:d8:63:35:8f:69:d9:4a:91:ef:94:42:fb:
26:57:1a:d2:3a:9e:c2:05:8d:89:1c:c1:a4:58:4e:
58:57:35:be:28:af:a8:19:98:6b:62:cb:26:a5:c2:
fd:1a:8c:94:c1:43:e5:8d:7e:70:e9:9c:8d:c4:db:
fd:b2:50:1a:4a:00:e8:3a:1b:00:65:e5:22:4a:1a:
a2:24:72:f8:b6:bd:f0:7d:37:c1:0e:60:43:3b:ae:
1f:23:39:86:d5:d6:fd:b0:55:fe:df:4b:4b:b0:7d:
d1:06:20:ca:69:45:59:5f:4b:35:8c:6f:35:85:9e:
9f:d1:38:3d:86:72:e8:f7:a2:02:bb:4c:65:55:cc:
57:7b:51:f6:fa:10:81:15:24:03:87:52:65:f7:31:
93:88:7b:7d:4b:b0:d3:c5:6a:24:76:23:53:b9:f6:
24:88:c0:9e:98:09:ad:1d:11:1c:0f:9b:71:18:7c:
dd:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:2F:1A:8B:10:A3:8C:4C:FF:DE:52:E3:08:35:43:98:8A:76:E6:2D
X509v3 Authority Key Identifier:
keyid:F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/ty8aixCjjEz_3lLjCDVDmIp25i0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.42.83.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:b7:b2:f9:71:17:bf:04:30:7c:d7:39:b2:45:e9:99:03:89:
98:6d:56:89:d6:83:ae:3a:c9:09:b9:91:b1:ad:f6:2a:d3:3b:
bf:4b:6a:19:99:b9:28:93:09:62:f8:6b:25:2f:c4:f1:b4:9b:
53:cb:63:5e:64:6c:e6:76:ab:95:43:45:62:38:d7:31:cb:d6:
37:cd:a9:16:eb:1d:42:95:5b:fc:4f:a8:8d:a1:61:ae:b6:7a:
d1:d8:5e:41:f4:ca:a6:b8:47:e3:53:fe:95:b4:22:b0:76:df:
0a:37:14:43:69:bd:d2:8e:f0:ce:f1:d1:96:d0:a1:7b:58:54:
9c:e3:97:c2:05:d7:9e:eb:69:88:14:02:04:95:74:61:61:cc:
33:8b:0f:8e:8a:f5:5b:c6:f4:ce:40:37:ae:f9:b6:2d:9b:a3:
1a:5d:f9:e3:a8:c9:7d:5f:22:5a:c3:5d:d3:3e:62:26:16:67:
4b:25:dc:62:3b:80:02:d6:85:ad:5d:73:6a:4c:c3:3d:59:6e:
2d:50:32:be:e9:06:3a:73:43:ac:4e:42:b1:25:2a:b5:6d:42:
e3:b3:1d:a2:ce:65:4f:57:c8:1f:d5:8d:b1:06:dd:f4:f2:9e:
21:e0:af:1e:e9:3f:b5:cf:76:b2:14:75:25:3f:f5:52:22:49:
50:d0:c9:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Oct 21 07:52:50 2023 by rpki-client on console-ams.rpki-client.org