Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/G-T0PU3TGFJac7Y7ynYwBIAu-2I.roa
File: G-T0PU3TGFJac7Y7ynYwBIAu-2I.roa (raw, json)
Hash identifier: wed2tS6jjCKksmCF6PPDpQXIHPdNXj4TjkfndehaXho=
Subject key identifier: 1B:E4:F4:3D:4D:D3:18:52:5A:73:B6:3B:CA:76:30:04:80:2E:FB:62
Certificate issuer: /CN=cd8313e41e646a09cd01e2e6f4739d3bd236c4ff
Certificate serial: 01856BEEC33747EF747081EE3748F55A74BD
Authority key identifier: CD:83:13:E4:1E:64:6A:09:CD:01:E2:E6:F4:73:9D:3B:D2:36:C4:FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zYMT5B5kagnNAeLm9HOdO9I2xP8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/G-T0PU3TGFJac7Y7ynYwBIAu-2I.roa
Signing time: Sun 01 Jan 2023 06:04:47 +0000
ROA not before: Sun 01 Jan 2023 06:04:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209667
IP address blocks: 89.223.96.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:ee:c3:37:47:ef:74:70:81:ee:37:48:f5:5a:74:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd8313e41e646a09cd01e2e6f4739d3bd236c4ff
Validity
Not Before: Jan 1 06:04:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1be4f43d4dd318525a73b63bca763004802efb62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:be:a3:0f:67:dd:60:dd:dc:98:8d:33:64:89:
f0:02:11:b6:fb:bf:a5:98:bb:38:ca:7f:71:f4:33:
35:bc:6c:67:b8:ba:71:fd:2a:5a:0d:be:66:0b:e8:
e0:bc:08:56:3c:9a:aa:d9:0b:b4:79:c3:87:b6:ea:
da:1e:ff:fa:b2:5a:a5:8f:1d:6c:b4:40:3b:96:20:
3b:14:05:59:20:9a:89:0d:e6:56:7a:c7:bc:51:8c:
56:25:4e:2e:9e:df:24:19:7f:42:8a:90:6c:ee:c3:
a9:dc:68:5e:bd:84:ad:07:21:08:47:d4:29:d3:55:
76:71:04:a5:a3:99:d9:74:d5:cc:da:71:00:0b:76:
e9:be:14:cf:18:b6:56:49:28:e1:06:07:97:0e:10:
7e:bb:9b:67:af:1a:3b:0d:b7:f4:77:c9:48:e9:4c:
79:33:4a:70:1c:c4:76:a5:84:fa:8c:e3:c2:91:6e:
61:b4:2b:cc:4f:6d:bb:c1:05:0b:40:9d:9c:2c:98:
f4:74:96:d9:6b:05:c8:d2:dc:38:9c:dd:6c:01:1e:
37:f2:62:0b:a9:6d:0c:67:6b:f7:a1:3f:af:92:2f:
c1:b2:bf:2f:fa:45:3f:49:de:ff:9a:c8:2e:4d:f1:
12:b3:32:a5:47:81:a7:77:59:f9:d4:e4:0f:51:01:
da:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:E4:F4:3D:4D:D3:18:52:5A:73:B6:3B:CA:76:30:04:80:2E:FB:62
X509v3 Authority Key Identifier:
keyid:CD:83:13:E4:1E:64:6A:09:CD:01:E2:E6:F4:73:9D:3B:D2:36:C4:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zYMT5B5kagnNAeLm9HOdO9I2xP8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/G-T0PU3TGFJac7Y7ynYwBIAu-2I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/zYMT5B5kagnNAeLm9HOdO9I2xP8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.223.96.0/24
Signature Algorithm: sha256WithRSAEncryption
90:bd:e7:82:8f:d9:32:0d:a2:07:ef:ae:9c:d5:59:e5:3e:5d:
50:a8:15:57:a7:2b:6e:1b:9d:33:e8:a4:5f:10:12:75:7c:ee:
12:ab:52:85:1b:14:f8:95:98:38:3d:fa:10:3a:9a:49:58:80:
1e:60:b1:5f:5b:f1:1d:9c:49:bf:e5:eb:9f:8c:37:5b:2b:8b:
62:b9:94:4a:74:a3:c4:bb:3b:45:72:1f:e1:6d:05:f6:d4:cf:
23:d7:23:36:ca:98:01:37:a2:42:b2:7c:69:0d:98:5c:04:1b:
88:30:bd:45:d6:cc:6c:a1:69:1c:6b:aa:49:36:47:f5:18:c4:
d8:95:ab:6f:c5:f1:34:fe:1c:9a:df:54:58:8c:f3:18:22:67:
a2:fc:bc:d7:2e:e4:64:cb:37:12:5a:65:71:38:68:5d:2d:ee:
58:bb:85:0d:ed:fd:07:4c:75:02:3e:ed:39:58:b3:9f:7d:38:
7f:61:e0:78:07:c5:01:87:e7:a5:3a:c0:62:21:ef:b7:0a:67:
be:55:08:bc:0e:7d:43:4c:9f:16:4a:43:fb:ed:e3:61:2b:36:
05:ab:ec:68:f4:d0:a7:37:bf:7c:21:b3:ef:8b:eb:db:cc:b2:
e5:70:11:99:69:d9:e4:bf:c9:f0:12:25:02:c7:30:e9:ff:c4:
16:73:3b:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:02 2024 by rpki-client on console-fra.rpki-client.org