Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/fuaaKWm8IYZwet4h18qO4alylZ0.roa
File: fuaaKWm8IYZwet4h18qO4alylZ0.roa (raw, json)
Hash identifier: ptxsmzY6SXmLRVfuM72D5LOr4Q6B7tyCN5Ew1shacag=
Subject key identifier: 7E:E6:9A:29:69:BC:21:86:70:7A:DE:21:D7:CA:8E:E1:A9:72:95:9D
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 018637444C2B36B4829E61108CF567C936CF
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/fuaaKWm8IYZwet4h18qO4alylZ0.roa
Signing time: Thu 09 Feb 2023 17:41:08 +0000
ROA not before: Thu 09 Feb 2023 17:41:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 147176
IP address blocks: 89.47.89.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Apr 2023 09:23:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:37:44:4c:2b:36:b4:82:9e:61:10:8c:f5:67:c9:36:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Feb 9 17:41:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7ee69a2969bc2186707ade21d7ca8ee1a972959d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:e8:5e:f9:6a:79:56:67:f7:32:c7:23:b0:dd:
46:78:72:c5:bf:56:6e:79:87:02:56:04:c0:01:50:
24:3a:ab:92:1f:de:5f:e8:12:31:b6:9e:d6:4f:93:
00:c5:a0:97:45:d3:7a:90:ca:f0:0b:db:db:9d:1c:
00:52:29:9b:4e:91:15:2a:2b:ad:f5:39:f6:01:94:
b8:ff:91:cb:ed:a5:b4:90:55:f9:ef:9f:1b:d1:25:
96:b8:0b:41:a9:ef:a2:5d:41:e1:92:7b:26:39:25:
74:66:5e:05:01:32:f5:12:6c:89:24:37:62:02:89:
25:f9:dd:26:b7:eb:62:df:6b:c8:f1:68:57:d4:a6:
8d:33:32:7f:22:39:24:df:49:49:5d:1b:a5:26:cc:
5a:b2:c9:56:6d:0d:37:95:07:5b:7f:8b:bf:57:cd:
e0:2b:a3:cd:44:ab:bc:da:d4:39:2d:62:55:24:79:
ec:40:22:0e:77:33:66:8a:47:7b:c6:9f:f6:3f:f7:
f7:0a:21:aa:58:47:45:19:dd:6f:65:3c:05:b5:5b:
00:c1:07:fb:62:12:f8:9d:49:02:9f:3f:e3:00:7e:
be:27:61:bc:0b:56:05:dc:af:c5:ea:c2:bb:b7:71:
75:c4:9d:d3:88:7b:af:d4:fd:f8:7a:8e:a2:b7:62:
c5:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:E6:9A:29:69:BC:21:86:70:7A:DE:21:D7:CA:8E:E1:A9:72:95:9D
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/fuaaKWm8IYZwet4h18qO4alylZ0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.47.89.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:aa:60:d5:9f:83:a9:72:8a:87:67:7b:25:62:1a:33:84:2a:
a9:a2:60:e4:79:c4:68:97:63:fb:05:f5:25:c4:47:52:dc:33:
ef:1a:a3:fd:ef:ac:c0:6d:f9:97:94:f8:ae:d4:50:de:bd:70:
d0:5e:75:2e:f6:9a:54:48:95:9d:15:ff:91:30:b7:b1:bc:d6:
26:4c:65:8f:27:42:d5:30:52:aa:6a:f9:d8:19:ef:5e:a0:18:
b5:86:35:1b:84:97:c1:ba:ca:a0:34:96:8b:01:10:a0:64:99:
13:70:21:0a:57:64:a8:4c:e2:cb:ce:03:fe:e8:2c:7b:ac:c6:
e8:28:12:8e:01:b3:5d:ed:12:85:8e:6c:08:7f:68:69:13:33:
4d:55:71:d5:96:0a:69:f7:d3:20:2a:d6:7a:1a:ab:96:da:a6:
20:1b:7b:eb:8f:55:4f:cd:c7:16:d7:7b:51:7c:8e:e8:78:af:
d1:5b:de:e3:62:6f:f5:fe:51:42:13:77:80:ef:cb:40:08:d3:
25:6d:b1:9e:30:f0:8c:ed:02:58:3a:d6:ad:37:63:00:7d:b0:
e4:2b:a7:01:ec:a4:e6:8f:95:d4:0f:94:12:f4:61:9a:ae:42:
1f:96:a6:8a:94:1f:af:b3:78:81:6b:b3:32:11:e6:42:b9:d8:
bb:d8:e0:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:47 2024 by rpki-client on console-fra.rpki-client.org