Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/jO_dAI7_1bVT3YVDo7W6HEY_h_U.roa
File: jO_dAI7_1bVT3YVDo7W6HEY_h_U.roa (raw, json)
Hash identifier: yv5MAHVpKUcyUlyPmXd+aUSwDMGlNmN51uA2fH5tuJo=
Subject key identifier: 8C:EF:DD:00:8E:FF:D5:B5:53:DD:85:43:A3:B5:BA:1C:46:3F:87:F5
Certificate issuer: /CN=85d0e763f935c171694f172056eb44209db2e2cd
Certificate serial: 019091FB28F5E99F010A5B11C4404B4B48DA
Authority key identifier: 85:D0:E7:63:F9:35:C1:71:69:4F:17:20:56:EB:44:20:9D:B2:E2:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hdDnY_k1wXFpTxcgVutEIJ2y4s0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/jO_dAI7_1bVT3YVDo7W6HEY_h_U.roa
Signing time: Mon 08 Jul 2024 10:54:34 +0000
ROA not before: Mon 08 Jul 2024 10:54:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212866
IP address blocks: 89.39.54.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 12 Aug 2024 06:07:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:91:fb:28:f5:e9:9f:01:0a:5b:11:c4:40:4b:4b:48:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85d0e763f935c171694f172056eb44209db2e2cd
Validity
Not Before: Jul 8 10:54:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8cefdd008effd5b553dd8543a3b5ba1c463f87f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:4b:d4:1b:5c:e0:14:70:2b:8c:7a:6c:c5:3a:
c1:b6:34:b0:a3:56:14:17:c5:5d:a8:f9:52:3f:48:
ea:14:dd:10:1f:a6:33:ff:73:48:5f:f3:57:34:12:
fa:4e:2e:22:b4:3e:ba:27:38:e3:bb:f1:cf:eb:11:
f6:76:1b:d5:22:31:b0:ee:fa:6a:2c:ce:a3:75:42:
91:4f:f5:db:73:bc:b8:1a:18:94:6b:f4:a7:d0:a3:
32:9c:a5:30:b2:d7:be:41:40:55:c0:9e:d3:6d:7c:
2a:d1:83:e0:d9:62:1f:ff:65:95:a0:07:f7:8f:6e:
1e:c1:93:e3:4f:a0:3c:e0:56:af:31:78:80:cd:46:
78:e1:5c:b8:b8:bd:da:89:56:c7:82:fb:ce:fb:7a:
1e:c4:89:09:8b:35:6b:82:6d:5a:e6:5b:0c:8b:ae:
29:d8:e0:62:f5:fc:92:c7:8b:61:60:c0:77:68:53:
08:eb:45:39:62:db:f0:f1:7d:33:83:e0:0b:71:23:
21:94:c3:83:89:9d:dd:c2:02:f8:1b:ff:4c:57:4e:
f6:4c:b8:aa:9f:8e:f5:5f:4e:cf:9f:19:34:d6:f7:
ac:9d:e4:ef:2b:a9:95:1e:09:54:3a:e0:ba:66:2b:
0e:45:39:e6:ea:33:f1:64:f5:d2:c8:d2:3c:5e:84:
64:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:EF:DD:00:8E:FF:D5:B5:53:DD:85:43:A3:B5:BA:1C:46:3F:87:F5
X509v3 Authority Key Identifier:
keyid:85:D0:E7:63:F9:35:C1:71:69:4F:17:20:56:EB:44:20:9D:B2:E2:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hdDnY_k1wXFpTxcgVutEIJ2y4s0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/jO_dAI7_1bVT3YVDo7W6HEY_h_U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.39.54.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:84:be:67:a6:42:29:ee:45:14:17:e4:84:83:06:f0:f8:f9:
38:d2:b9:23:dc:f6:47:cb:9f:77:01:e8:d1:d0:e1:f4:8f:51:
b0:fc:0c:a9:75:9e:ba:48:01:2e:56:b9:94:8e:86:b5:69:13:
2e:b2:8e:b9:ea:fb:d7:80:11:27:26:e7:53:01:b5:2f:9a:d0:
08:c3:d4:be:56:8e:fe:91:f4:0d:e1:09:bd:ff:86:14:6d:aa:
53:b1:f1:86:1b:a6:1a:95:32:6f:1f:bb:e6:ef:87:f1:f0:5e:
e5:25:c2:9f:d6:46:1d:c6:d6:f5:ac:77:8f:50:67:ed:c1:8b:
96:4c:b8:25:84:fb:68:75:20:aa:9f:c1:35:ee:ea:f7:97:b7:
e1:8a:4d:85:1e:8e:90:96:c1:85:16:8a:7b:43:9d:3e:7e:fa:
d3:d5:c7:71:4d:3e:e9:c2:f1:04:c9:24:53:42:38:a8:aa:2b:
46:08:8e:04:25:cf:f9:f7:cc:57:24:69:73:f9:91:20:9c:e7:
0d:21:ae:ca:6d:69:30:2a:ff:67:4e:7a:d2:9b:56:ce:e3:4c:
f7:5e:7b:5b:82:a5:6d:3a:00:67:46:cd:65:28:29:8f:d1:13:
da:ea:67:7f:95:79:f8:a0:4c:e3:c5:36:32:b4:a6:02:f0:6b:
80:ae:4e:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 12 09:16:32 2024 by rpki-client on console-ams.rpki-client.org