Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/c14115-8cf8-40c8-87c8-ce82ebe11ac8/1/0lx6Q8rIySDyVYVGnEqa7hlWucg.roa
File: 0lx6Q8rIySDyVYVGnEqa7hlWucg.roa (raw, json)
Hash identifier: GaWHpeiMlGnX9Z4Ypx/n+7j+a7HvLaLr9ByIvixie3w=
Subject key identifier: D2:5C:7A:43:CA:C8:C9:20:F2:55:85:46:9C:4A:9A:EE:19:56:B9:C8
Certificate issuer: /CN=1e9a92daf08c20b4691b925cf032e5491fe0acc0
Certificate serial: 01876E26B0D172E16BF219C423A57A7D4CE8
Authority key identifier: 1E:9A:92:DA:F0:8C:20:B4:69:1B:92:5C:F0:32:E5:49:1F:E0:AC:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HpqS2vCMILRpG5Jc8DLlSR_grMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/c14115-8cf8-40c8-87c8-ce82ebe11ac8/1/0lx6Q8rIySDyVYVGnEqa7hlWucg.roa
Signing time: Tue 11 Apr 2023 02:30:42 +0000
ROA not before: Tue 11 Apr 2023 02:30:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39785
IP address blocks: 89.105.158.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 14 Apr 2023 04:19:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:6e:26:b0:d1:72:e1:6b:f2:19:c4:23:a5:7a:7d:4c:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e9a92daf08c20b4691b925cf032e5491fe0acc0
Validity
Not Before: Apr 11 02:30:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d25c7a43cac8c920f25585469c4a9aee1956b9c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:5f:7c:c9:37:7d:d8:51:0a:70:02:2f:86:2e:
3e:e0:51:fe:e5:e3:ad:6e:8a:4d:f7:73:94:ab:dd:
41:c1:4e:63:ec:3f:f2:54:4e:c1:09:85:7b:97:45:
3b:85:2f:d3:69:0c:74:5b:b7:c9:77:08:3a:6d:9f:
33:be:f3:8e:4b:70:cf:d4:d9:d8:a2:83:d1:b6:3c:
39:c1:da:70:58:97:d8:47:3d:e2:69:3b:4f:39:71:
ab:1b:1d:79:9e:5e:eb:c4:35:35:e7:11:98:9f:13:
62:2f:cf:be:a6:f5:f8:33:8e:3d:dc:15:c6:a0:58:
ef:c1:e6:6c:c0:69:6a:16:44:9b:5f:9c:8d:3c:e3:
07:3f:cf:ce:f0:91:03:d6:ce:3c:94:9f:85:24:5e:
bc:c3:90:62:d5:d0:e2:5e:fc:2a:fd:f6:3f:24:72:
3b:b6:ce:6e:94:7d:5f:4f:94:ea:13:9a:47:53:72:
63:7f:96:23:14:74:95:a3:a2:f3:82:8d:49:bb:94:
f4:ad:2d:5a:20:bf:82:38:96:78:7c:ac:a8:25:3a:
ca:9b:5b:ca:cc:49:43:b3:b2:7b:d4:6a:3e:20:79:
b4:82:a8:35:7a:0d:7a:26:78:8b:d7:d8:93:84:2a:
ef:6c:0d:2d:c8:09:74:ac:f8:d5:74:3e:64:64:a9:
b3:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:5C:7A:43:CA:C8:C9:20:F2:55:85:46:9C:4A:9A:EE:19:56:B9:C8
X509v3 Authority Key Identifier:
keyid:1E:9A:92:DA:F0:8C:20:B4:69:1B:92:5C:F0:32:E5:49:1F:E0:AC:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HpqS2vCMILRpG5Jc8DLlSR_grMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/c14115-8cf8-40c8-87c8-ce82ebe11ac8/1/0lx6Q8rIySDyVYVGnEqa7hlWucg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/c14115-8cf8-40c8-87c8-ce82ebe11ac8/1/HpqS2vCMILRpG5Jc8DLlSR_grMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.105.158.0/24
Signature Algorithm: sha256WithRSAEncryption
43:b7:5b:05:fb:0a:18:de:4f:16:ee:ad:b6:44:dc:28:5f:d8:
fa:7c:8c:2d:27:13:2a:e2:27:e3:4c:d3:c2:13:82:81:7b:33:
56:6b:d4:af:c2:5b:31:96:6b:3e:fe:31:89:36:8b:fb:8d:f5:
c6:ae:f9:3e:53:09:4c:3c:f8:d5:1c:bb:41:0d:dd:38:48:34:
21:77:21:3e:bc:6b:bf:28:9d:d3:af:bc:9d:f4:54:60:7e:1a:
79:a1:96:ee:50:aa:7f:3f:54:5c:87:6a:55:36:cd:0e:8b:7e:
53:c5:53:dd:9b:23:11:7d:ce:98:44:4f:37:22:d0:17:89:db:
af:ad:e8:49:b9:7a:62:1c:75:62:66:5f:5b:06:08:de:2e:13:
68:e0:ab:cf:5a:f8:ba:23:d1:8a:51:d1:82:7e:2d:0d:69:ea:
3f:3a:95:05:94:4d:97:8f:30:db:cc:4b:d8:78:3b:ee:9f:04:
c2:ac:64:e8:62:7e:a6:ff:a5:ee:51:ac:b5:37:0e:5d:f0:5e:
ff:e3:d6:4b:8a:d1:fb:b5:c8:5b:94:58:03:48:4b:4d:4d:94:
9d:4f:01:2c:dc:0c:2b:0d:4c:31:a3:dc:30:07:51:cc:5c:1a:
4a:1d:2f:25:9d:83:63:9b:61:b1:6e:4a:4e:37:92:00:5f:77:
e3:c7:f1:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:13 2024 by rpki-client on console-fra.rpki-client.org