Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/eOPRfXiLcnsMtCqoA-FMCMfkVIg.roa
File: eOPRfXiLcnsMtCqoA-FMCMfkVIg.roa (raw, json)
Hash identifier: mja8FT2xtHR/734J8PLw53Bz1iObV29/LtsieihbPdA=
Subject key identifier: 78:E3:D1:7D:78:8B:72:7B:0C:B4:2A:A8:03:E1:4C:08:C7:E4:54:88
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 018CC5012298224C7B6CCC8D02D54865CD75
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/eOPRfXiLcnsMtCqoA-FMCMfkVIg.roa
Signing time: Mon 01 Jan 2024 12:30:35 +0000
ROA not before: Mon 01 Jan 2024 12:30:35 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 201364
IP address blocks: 89.40.76.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:01:22:98:22:4c:7b:6c:cc:8d:02:d5:48:65:cd:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Jan 1 12:30:35 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=78e3d17d788b727b0cb42aa803e14c08c7e45488
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:b7:60:87:4f:0a:c5:d5:15:a8:69:90:77:f0:
ba:a3:2e:59:52:df:6d:0d:55:bf:83:0a:fb:9e:95:
bf:d1:b0:0d:66:eb:7e:b3:0f:87:f6:d6:6c:db:af:
58:d8:a0:f4:ed:36:65:02:5b:2d:5b:0c:e2:45:13:
94:33:1a:05:9e:44:37:c3:77:56:0a:f6:a3:15:db:
80:52:c4:9a:1f:50:b1:1d:d8:9e:68:59:18:66:46:
a2:82:89:c4:3f:ae:38:ff:c7:6a:35:a0:a2:44:91:
ad:5a:c9:59:2d:1b:71:27:7e:7a:42:28:89:29:b6:
88:b1:df:2f:ef:a9:62:80:83:37:cf:f6:1f:7b:d0:
f4:9c:eb:69:7a:a0:5b:6f:45:13:7f:20:5d:fe:d3:
4f:54:1d:96:bb:a3:6f:be:24:7b:60:df:7e:b7:e2:
35:7d:67:d8:8e:30:89:5f:06:fd:f0:6c:af:ec:70:
46:4d:67:5b:18:58:50:20:c6:f9:bf:dc:1e:69:a0:
4b:3f:fa:6a:b0:8d:74:4d:69:68:b2:a7:c7:13:4c:
47:38:76:92:8c:85:6b:4d:ac:a1:30:78:cf:cf:65:
79:a2:4f:07:55:9b:b4:02:71:0f:7e:8f:94:6b:98:
a7:89:dc:08:56:cf:f3:e1:ca:1d:c3:f7:84:c8:9f:
a7:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:E3:D1:7D:78:8B:72:7B:0C:B4:2A:A8:03:E1:4C:08:C7:E4:54:88
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/eOPRfXiLcnsMtCqoA-FMCMfkVIg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.40.76.0/24
Signature Algorithm: sha256WithRSAEncryption
06:72:1e:45:52:75:b1:90:4b:87:b4:b1:cf:98:be:0c:8b:f5:
0c:04:8e:e9:c4:b6:c4:29:9a:98:e5:1e:59:c2:a7:68:c5:1f:
0d:81:9c:76:f5:35:63:73:4f:29:ec:d4:6c:f1:fc:09:35:64:
19:4f:ec:41:09:bd:59:1e:07:61:ef:6a:aa:57:07:b5:ab:fc:
5e:9f:aa:3c:26:b8:f1:42:d7:0c:98:56:21:86:4b:4b:f8:24:
00:ee:fe:f2:43:0b:8e:3c:19:19:0e:2b:78:c7:63:7f:21:36:
0a:e7:05:10:c3:11:7e:21:8b:f0:a2:cf:c5:d4:46:8a:79:1d:
77:e3:f2:c0:ad:4d:b5:f6:dc:e3:17:b6:3b:c1:b0:e3:d6:9c:
bc:b6:97:58:69:46:10:18:17:0d:52:87:8f:18:0e:a9:ac:81:
6a:19:e9:3c:4a:12:38:6c:e5:63:1b:bd:31:3b:8f:34:25:1e:
e7:55:ad:2c:90:aa:5f:2d:46:46:eb:9d:62:d1:31:67:21:19:
fa:b7:ae:88:53:36:85:43:f1:ca:b0:8d:9b:b7:f5:c1:36:b3:
4e:de:13:96:2e:35:ca:82:a2:44:2c:c6:a5:07:62:cd:62:7b:
54:e3:d7:2e:c0:2d:2a:ab:a4:57:e0:49:04:8f:f9:e5:ef:58:
54:d8:82:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:22:40 2024 by rpki-client on console-ams.rpki-client.org