Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/oIGtPMHM1EcPFFwS0yoCcqjy5_8.roa
File: oIGtPMHM1EcPFFwS0yoCcqjy5_8.roa (raw, json)
Hash identifier: XpIrtRu8jC8dpSogqHOz9xHSyfyJlhQeVWMrNnm2qeM=
Subject key identifier: A0:81:AD:3C:C1:CC:D4:47:0F:14:5C:12:D3:2A:02:72:A8:F2:E7:FF
Certificate issuer: /CN=1aca63df248b7adf3ddd07e8c2d3eedd02cef933
Certificate serial: 018CAFC600A985365FE3F2ED6E1706D06C65
Authority key identifier: 1A:CA:63:DF:24:8B:7A:DF:3D:DD:07:E8:C2:D3:EE:DD:02:CE:F9:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gspj3ySLet893QfowtPu3QLO-TM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/oIGtPMHM1EcPFFwS0yoCcqjy5_8.roa
Signing time: Thu 28 Dec 2023 09:33:58 +0000
ROA not before: Thu 28 Dec 2023 09:33:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6873
IP address blocks: 89.174.75.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:af:c6:00:a9:85:36:5f:e3:f2:ed:6e:17:06:d0:6c:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1aca63df248b7adf3ddd07e8c2d3eedd02cef933
Validity
Not Before: Dec 28 09:33:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a081ad3cc1ccd4470f145c12d32a0272a8f2e7ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:85:1b:03:b8:fe:6f:4b:b0:06:c9:e0:8e:d3:
d1:a9:cc:48:13:a0:99:9e:ed:fe:0e:4a:79:7f:d3:
d1:4a:92:97:97:e6:0a:6f:81:c9:8f:d3:7b:ec:34:
30:e7:62:6e:88:ff:23:1b:4d:1c:fb:80:c3:9d:c9:
b9:c1:de:67:bd:78:08:d7:bb:98:21:18:e6:b7:7d:
33:84:c0:14:24:8e:64:fc:14:7a:67:0e:ce:1e:30:
a4:d4:46:e9:fb:f3:5b:24:ab:e0:12:11:b5:06:b3:
01:8e:bd:59:e6:9b:74:20:8c:98:bc:18:61:bd:ea:
33:37:1b:9d:d1:c1:70:96:c6:4f:0d:08:bc:30:e9:
7b:08:6a:f2:33:23:94:df:88:03:b9:b7:d9:31:64:
57:f4:67:48:0c:40:9a:06:ee:bb:a9:d7:f7:a4:05:
bc:3b:ef:fd:32:cc:66:ee:c4:8f:09:c5:3a:12:10:
04:ba:ff:6c:15:24:35:9a:86:7d:bb:3a:c0:bb:32:
06:f3:a2:35:43:68:0c:8b:35:8d:e7:d6:dc:fc:d8:
b4:4b:b1:a9:3b:63:51:03:6b:13:2f:53:e7:4d:8b:
a8:e4:9b:29:6d:6a:f9:81:30:ce:9c:19:09:32:b6:
05:fa:da:8d:1e:a0:13:c4:dc:fd:d0:d2:c9:5e:54:
45:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:81:AD:3C:C1:CC:D4:47:0F:14:5C:12:D3:2A:02:72:A8:F2:E7:FF
X509v3 Authority Key Identifier:
keyid:1A:CA:63:DF:24:8B:7A:DF:3D:DD:07:E8:C2:D3:EE:DD:02:CE:F9:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gspj3ySLet893QfowtPu3QLO-TM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/oIGtPMHM1EcPFFwS0yoCcqjy5_8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/Gspj3ySLet893QfowtPu3QLO-TM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.174.75.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:0b:dc:b6:86:0d:b6:02:72:e8:6d:9e:47:44:bb:60:9e:d7:
07:82:b1:ae:19:1f:68:0a:a4:09:4b:bc:17:67:3b:cc:c2:59:
d3:98:28:f2:3e:a2:bb:36:4d:5c:76:03:45:e0:4f:d4:9f:e1:
51:e6:2f:cc:55:c4:cf:47:2a:42:c1:84:82:3f:9b:e7:55:e8:
3b:19:0b:2d:40:ed:20:ae:1b:c9:ac:dc:34:b7:53:4b:94:76:
be:67:72:fe:c8:e1:69:6c:83:20:ea:88:b2:03:de:af:ca:3d:
11:9b:40:94:b2:11:eb:f8:f0:79:e8:d8:be:1f:a8:29:a6:c3:
b1:85:66:79:46:fd:97:41:27:40:29:3e:3f:bb:cc:fa:ba:a9:
0d:9e:8c:81:a1:fe:ed:db:5d:08:72:40:89:7d:a1:b9:a1:b0:
d3:69:29:18:51:26:91:4d:88:c2:2e:27:e8:00:d0:ed:fe:fa:
e0:e5:d8:30:7f:03:9b:13:15:80:c8:7e:3b:d9:21:fc:d6:03:
c4:1a:a3:0d:3a:e8:7a:c8:d5:2b:9e:74:4d:61:7c:92:1c:47:
12:79:85:68:34:24:fa:e0:90:59:95:59:7f:87:c4:f8:35:4c:
1d:c2:fb:f8:9d:48:c1:51:99:b2:42:43:b9:cc:27:90:b8:38:
bc:c7:ab:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 01:41:22 2024 by rpki-client on console-ams.rpki-client.org