Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/c14115-8cf8-40c8-87c8-ce82ebe11ac8/1/ORIBTqZ6MH5JGsZSPIqXdMa0ntc.roa
File: ORIBTqZ6MH5JGsZSPIqXdMa0ntc.roa (raw, json)
Hash identifier: cxzC3QYRJraqOEUoxMPQIJA7CLEfosg8hR7WiqotQmA=
Subject key identifier: 39:12:01:4E:A6:7A:30:7E:49:1A:C6:52:3C:8A:97:74:C6:B4:9E:D7
Certificate issuer: /CN=1e9a92daf08c20b4691b925cf032e5491fe0acc0
Certificate serial: 01857295C7474DDB59ED5249E3676B83E2C3
Authority key identifier: 1E:9A:92:DA:F0:8C:20:B4:69:1B:92:5C:F0:32:E5:49:1F:E0:AC:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HpqS2vCMILRpG5Jc8DLlSR_grMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/c14115-8cf8-40c8-87c8-ce82ebe11ac8/1/ORIBTqZ6MH5JGsZSPIqXdMa0ntc.roa
Signing time: Mon 02 Jan 2023 13:04:56 +0000
ROA not before: Mon 02 Jan 2023 13:04:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44035
IP address blocks: 89.105.128.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 27 Mar 2023 02:07:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:95:c7:47:4d:db:59:ed:52:49:e3:67:6b:83:e2:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e9a92daf08c20b4691b925cf032e5491fe0acc0
Validity
Not Before: Jan 2 13:04:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3912014ea67a307e491ac6523c8a9774c6b49ed7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:82:4d:5c:16:3f:00:ed:6e:ba:2c:29:90:08:
4a:ea:cf:d2:f7:e6:53:36:d9:98:ec:3b:d5:7c:6a:
7e:f9:31:21:9e:d8:f1:f5:d2:2e:4c:77:dd:2d:84:
16:8f:15:86:cd:55:28:37:4e:b3:03:05:a9:55:88:
7d:cd:00:90:8b:d4:9c:be:bf:d4:c5:d3:44:89:5e:
f4:46:e2:d9:72:d9:f2:b6:08:03:2a:8a:6f:9c:e6:
fd:5b:59:ad:8e:1f:62:a1:18:54:86:cc:58:fc:fb:
5b:ed:a4:f6:27:48:02:af:01:0b:5c:73:ce:dd:a6:
05:bb:cc:06:47:c8:9b:96:4f:bb:a2:50:b4:7a:88:
d0:5b:10:40:6d:7e:ad:1f:91:bd:5e:b4:70:3c:63:
cd:9e:f5:0d:9b:4a:65:8f:68:6f:c4:86:ed:c3:e9:
9c:d9:11:56:27:60:4e:cf:25:64:e7:bc:c1:2f:47:
5f:a9:fa:37:86:1c:d3:0d:8a:22:e6:6b:bd:0f:90:
66:6d:65:54:a6:11:5b:ec:da:26:fb:a1:cd:07:13:
57:2d:47:0c:38:9a:0b:a4:3f:cd:df:cd:c5:37:31:
69:14:80:5d:e8:f7:e8:97:5f:82:4b:fc:3a:57:89:
dc:ec:7d:77:9e:e5:f2:cf:f1:0b:99:38:62:78:0f:
31:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:12:01:4E:A6:7A:30:7E:49:1A:C6:52:3C:8A:97:74:C6:B4:9E:D7
X509v3 Authority Key Identifier:
keyid:1E:9A:92:DA:F0:8C:20:B4:69:1B:92:5C:F0:32:E5:49:1F:E0:AC:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HpqS2vCMILRpG5Jc8DLlSR_grMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/c14115-8cf8-40c8-87c8-ce82ebe11ac8/1/ORIBTqZ6MH5JGsZSPIqXdMa0ntc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/c14115-8cf8-40c8-87c8-ce82ebe11ac8/1/HpqS2vCMILRpG5Jc8DLlSR_grMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.105.128.0/24
Signature Algorithm: sha256WithRSAEncryption
72:3b:c7:6a:2d:5d:98:4f:99:a3:cf:e4:1d:85:1f:03:45:5a:
92:18:c8:3c:75:bb:c9:b9:61:e3:50:a1:25:ff:ba:24:0d:92:
71:fd:da:a2:29:4b:f9:79:05:12:12:cf:e1:a7:b4:ea:f4:d5:
37:87:5d:99:59:f3:a6:ce:ec:f9:18:49:dc:62:88:cb:07:6b:
79:6f:7d:4e:a1:dd:94:e9:09:f0:d6:97:01:d2:e4:73:43:bb:
3d:e1:ad:3c:d0:85:9d:45:61:e4:e6:2f:49:e9:11:09:8d:86:
9e:eb:69:31:dc:cd:47:21:24:fc:93:3d:fe:29:87:83:8c:41:
7a:e9:fc:7e:d2:b9:77:70:4c:14:8e:cd:61:a7:95:94:59:7f:
82:a9:a3:79:e9:86:34:14:dc:a1:84:a7:b7:fb:5c:ad:09:d4:
0e:96:1f:b9:5e:54:b5:87:e2:f0:b5:82:12:72:cb:8f:a8:07:
3c:4e:17:66:24:29:19:ea:24:f4:a2:9f:dc:97:04:08:5a:93:
4a:35:7b:60:cb:9b:8c:2c:4b:92:f2:e3:f5:3a:b9:48:0c:8a:
19:a4:82:22:4e:31:4f:c9:b4:3f:27:8e:07:4d:4f:ac:0e:89:
7d:13:06:6a:90:8b:9b:e9:3e:e8:62:1a:1a:61:d6:d7:43:43:
a7:ab:cd:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:24 2024 by rpki-client on console-ams.rpki-client.org