Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/c14115-8cf8-40c8-87c8-ce82ebe11ac8/1/7s7vBeHsPOJzNGzungijfnY8S14.roa
File: 7s7vBeHsPOJzNGzungijfnY8S14.roa (raw, json)
Hash identifier: Tv0vB3dIwQlusu+F333mjgv6wtEUFejxcIAvGxBmxYE=
Subject key identifier: EE:CE:EF:05:E1:EC:3C:E2:73:34:6C:EE:9E:08:A3:7E:76:3C:4B:5E
Certificate issuer: /CN=1e9a92daf08c20b4691b925cf032e5491fe0acc0
Certificate serial: 01870D626CCA04E3FA214B973FACCDC882C0
Authority key identifier: 1E:9A:92:DA:F0:8C:20:B4:69:1B:92:5C:F0:32:E5:49:1F:E0:AC:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HpqS2vCMILRpG5Jc8DLlSR_grMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/c14115-8cf8-40c8-87c8-ce82ebe11ac8/1/7s7vBeHsPOJzNGzungijfnY8S14.roa
Signing time: Thu 23 Mar 2023 07:32:46 +0000
ROA not before: Thu 23 Mar 2023 07:32:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39785
IP address blocks: 89.105.159.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 23 Mar 2023 08:21:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:0d:62:6c:ca:04:e3:fa:21:4b:97:3f:ac:cd:c8:82:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e9a92daf08c20b4691b925cf032e5491fe0acc0
Validity
Not Before: Mar 23 07:32:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=eeceef05e1ec3ce273346cee9e08a37e763c4b5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:52:a7:45:5c:ee:4d:2f:13:d2:f1:3d:00:be:
49:8a:55:aa:81:43:67:16:19:55:c7:65:d6:b0:57:
81:47:2b:45:30:d4:2c:5f:c8:88:11:e3:d2:59:58:
46:90:c0:7f:bc:24:a2:32:da:0a:78:bb:81:00:d3:
cb:3f:f0:45:75:e5:8d:55:a4:26:3b:f8:d9:a1:6d:
cd:24:ac:51:31:64:b3:cd:5d:bc:e8:7d:e6:b1:75:
e5:d2:75:e0:5d:e2:1d:04:12:04:b5:7b:91:56:d0:
b4:02:98:6d:a3:68:10:c1:0b:6b:33:7f:4a:0c:bb:
3c:01:29:65:53:aa:41:54:61:bb:bc:7c:c7:53:21:
bc:5d:54:e2:e3:00:8f:c9:2b:03:aa:ca:5d:a6:75:
8c:4e:47:ff:17:c4:49:2b:d6:9e:84:c3:20:b3:03:
90:ee:e7:0e:ab:a8:18:3b:f5:ac:b7:5e:96:fb:5f:
b9:07:69:41:a7:8a:b7:f6:90:15:6f:8a:06:d0:f0:
28:3b:09:93:11:c2:38:bb:1b:aa:a2:92:4e:a0:bf:
ce:b1:c9:9d:a4:0d:a6:3d:c5:c1:09:ad:09:c5:9e:
4a:03:b4:81:f6:7f:46:d1:58:b5:6e:39:8e:0c:88:
d9:98:7d:6b:e7:5d:94:30:11:8b:f1:ce:77:fe:65:
d5:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:CE:EF:05:E1:EC:3C:E2:73:34:6C:EE:9E:08:A3:7E:76:3C:4B:5E
X509v3 Authority Key Identifier:
keyid:1E:9A:92:DA:F0:8C:20:B4:69:1B:92:5C:F0:32:E5:49:1F:E0:AC:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HpqS2vCMILRpG5Jc8DLlSR_grMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/c14115-8cf8-40c8-87c8-ce82ebe11ac8/1/7s7vBeHsPOJzNGzungijfnY8S14.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/c14115-8cf8-40c8-87c8-ce82ebe11ac8/1/HpqS2vCMILRpG5Jc8DLlSR_grMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.105.159.0/24
Signature Algorithm: sha256WithRSAEncryption
ba:2f:87:8c:88:9f:d8:67:1a:49:5a:9e:12:ba:8b:22:73:fe:
ff:e9:ec:c6:f9:56:e6:a0:62:da:88:ad:fa:f0:e4:41:e3:7b:
e7:bb:64:36:37:2d:91:50:4b:77:b7:3d:a5:4b:2a:ec:51:79:
ca:01:be:12:ab:27:fc:40:de:ec:89:10:aa:cd:f9:04:65:4e:
59:25:01:47:ea:77:e5:bf:49:ae:53:a5:f8:3d:36:cc:67:28:
75:33:6a:5a:59:91:73:f7:b7:fc:b3:f4:a2:79:64:04:32:7c:
1b:25:95:37:ec:b0:df:43:db:00:15:05:9d:62:2d:71:d0:9c:
15:4e:bb:d9:cc:e6:02:de:ec:20:86:27:56:a2:f3:96:8d:04:
13:e4:32:f9:0b:b8:d3:0b:a1:db:1d:83:99:fe:b4:07:d3:ac:
35:48:f8:bf:59:d9:db:1f:f2:2e:da:cf:9e:c6:2e:9b:8a:2a:
42:a3:39:39:e5:43:15:ae:55:b1:a8:eb:e9:27:11:f5:3b:b6:
ac:2c:6b:b8:ae:c9:eb:95:b6:fc:5f:a3:bc:87:5f:4f:f2:0e:
e2:e1:50:18:d5:6d:51:fe:11:9f:a5:9e:8f:a1:49:c6:e3:c3:
d1:cf:d8:c4:b1:b2:20:3f:a7:55:e9:8b:af:91:49:79:9e:53:
27:fd:2e:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:24 2024 by rpki-client on console-ams.rpki-client.org