Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/b811d5-ba35-423d-862f-23531654e589/1/9m4la6H7Wdu0cZWbZeF9e52Qmos.roa
File: 9m4la6H7Wdu0cZWbZeF9e52Qmos.roa (raw, json)
Hash identifier: eWgNBteRj0r1yA6b3Tn+7PQpk+jkJTMIas0GTC31HW8=
Subject key identifier: F6:6E:25:6B:A1:FB:59:DB:B4:71:95:9B:65:E1:7D:7B:9D:90:9A:8B
Certificate issuer: /CN=6a37982207e62ded0691dcb18ef6ea32d413f3f6
Certificate serial: 01856FC25FD54D24E0DCFD31A8615DEE8E00
Authority key identifier: 6A:37:98:22:07:E6:2D:ED:06:91:DC:B1:8E:F6:EA:32:D4:13:F3:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ajeYIgfmLe0GkdyxjvbqMtQT8_Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/b811d5-ba35-423d-862f-23531654e589/1/9m4la6H7Wdu0cZWbZeF9e52Qmos.roa
Signing time: Sun 01 Jan 2023 23:54:47 +0000
ROA not before: Sun 01 Jan 2023 23:54:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42184
IP address blocks: 89.251.128.0/20 maxlen: 20
Validation: Failed, certificate revoked on Mon 13 Mar 2023 09:58:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:c2:5f:d5:4d:24:e0:dc:fd:31:a8:61:5d:ee:8e:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a37982207e62ded0691dcb18ef6ea32d413f3f6
Validity
Not Before: Jan 1 23:54:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f66e256ba1fb59dbb471959b65e17d7b9d909a8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:72:53:51:d7:4c:9f:26:23:0c:ae:61:b3:19:
79:06:2f:13:01:cc:0f:a0:73:10:79:41:1c:07:3f:
c9:08:b4:72:2d:84:77:21:1c:cf:74:8b:e5:df:58:
af:0e:49:22:e2:30:5b:e0:12:7f:b5:ce:d6:a0:e4:
f5:6d:f3:c0:72:33:e3:d4:85:1f:a2:9d:5a:b9:6d:
a8:bb:1d:6f:aa:e1:70:9c:02:e9:95:88:1e:8f:61:
66:ef:07:2f:91:36:1a:3e:1f:41:69:e7:c3:46:8e:
b0:ff:c6:2b:da:8e:94:b0:f5:0d:e8:42:61:1d:d6:
3f:b1:6e:47:56:a4:fe:55:2f:29:fd:05:c1:26:e7:
ee:01:17:32:80:2c:96:c0:fb:b7:c6:ec:9d:38:36:
70:f3:08:1f:c6:07:ee:12:6a:10:55:ce:85:af:0d:
ee:a4:36:fc:e1:d2:c8:6e:82:16:b5:1d:fd:58:2d:
44:ab:04:52:7b:6c:c1:94:15:a7:4a:3b:5c:a7:a2:
88:c8:6a:f6:90:4c:18:1e:6a:02:69:31:f7:ee:c5:
6c:49:2a:83:df:03:df:fa:cd:ee:54:e8:4a:38:e4:
9d:76:e6:20:48:e2:bb:fc:9e:76:3e:9d:4b:80:30:
3c:5f:bb:7c:ec:c8:1d:38:52:59:a7:cd:f8:b3:ae:
da:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:6E:25:6B:A1:FB:59:DB:B4:71:95:9B:65:E1:7D:7B:9D:90:9A:8B
X509v3 Authority Key Identifier:
keyid:6A:37:98:22:07:E6:2D:ED:06:91:DC:B1:8E:F6:EA:32:D4:13:F3:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ajeYIgfmLe0GkdyxjvbqMtQT8_Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/b811d5-ba35-423d-862f-23531654e589/1/9m4la6H7Wdu0cZWbZeF9e52Qmos.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/b811d5-ba35-423d-862f-23531654e589/1/ajeYIgfmLe0GkdyxjvbqMtQT8_Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.251.128.0/20
Signature Algorithm: sha256WithRSAEncryption
80:91:9d:c8:87:71:30:ed:70:61:93:1e:04:e6:5b:e3:3a:9a:
9b:c6:cc:9f:f6:06:88:6f:8c:c0:39:79:10:8c:13:53:f1:9f:
e3:aa:89:dc:64:04:49:c9:0f:d1:bc:fe:f3:61:b7:d5:5f:42:
b3:09:15:50:e0:b4:cc:5a:74:7b:a8:cb:7f:5a:34:9e:bf:c8:
39:4e:65:ff:f1:df:d9:2e:a1:1a:1e:3a:41:14:40:90:9c:be:
c3:cf:33:0c:dc:1c:57:cb:b6:5d:80:fa:ad:ab:6f:ac:4c:14:
4c:d5:9e:91:ea:e8:0b:68:4c:e7:33:8a:e2:59:d8:70:44:aa:
bc:ff:f9:ee:50:b6:25:ff:2b:1d:be:f6:e2:ee:82:95:49:a9:
a2:35:ba:d0:bc:38:f7:38:8c:57:a0:dc:93:69:c1:19:87:01:
bc:ac:64:76:73:2c:f2:9b:48:c8:03:1c:d6:a5:e0:a3:9d:b9:
e7:c9:aa:64:e1:9c:08:b2:92:49:09:c7:26:9c:41:87:56:d6:
b1:7e:86:27:96:51:aa:40:c9:c2:92:18:29:14:31:50:bd:37:
f6:be:b6:40:31:81:d7:e0:92:c5:85:a6:42:93:25:79:e0:10:
8b:bc:92:f5:51:f5:9a:64:77:af:68:fc:c5:0a:fe:cc:e6:6f:
9a:93:27:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:13 2024 by rpki-client on console-ams.rpki-client.org