Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/52d0fe-cc6e-41d9-9643-c5d360fcdf0e/1/idBzDCWRtWjawg2W88N_qD13ynM.roa
File: idBzDCWRtWjawg2W88N_qD13ynM.roa (raw, json)
Hash identifier: +CfPc1j3fnF0DmbwefD4D/TUDS74p7E8yUQNLGwTZfI=
Subject key identifier: 89:D0:73:0C:25:91:B5:68:DA:C2:0D:96:F3:C3:7F:A8:3D:77:CA:73
Certificate issuer: /CN=a7f66522f403d8c994a484682870799417ce1e81
Certificate serial: 01894F19B2601F5E8BE47F4E0801E227676B
Authority key identifier: A7:F6:65:22:F4:03:D8:C9:94:A4:84:68:28:70:79:94:17:CE:1E:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p_ZlIvQD2MmUpIRoKHB5lBfOHoE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/52d0fe-cc6e-41d9-9643-c5d360fcdf0e/1/idBzDCWRtWjawg2W88N_qD13ynM.roa
Signing time: Thu 13 Jul 2023 11:53:51 +0000
ROA not before: Thu 13 Jul 2023 11:53:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43905
IP address blocks: 185.89.91.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:4f:19:b2:60:1f:5e:8b:e4:7f:4e:08:01:e2:27:67:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a7f66522f403d8c994a484682870799417ce1e81
Validity
Not Before: Jul 13 11:53:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=89d0730c2591b568dac20d96f3c37fa83d77ca73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:f1:52:cc:13:12:18:5a:d7:27:68:b5:6f:21:
da:11:63:f0:cc:e1:90:a6:1e:b6:ad:fc:14:ca:e1:
e4:11:0a:f6:ab:0f:ee:da:46:31:7a:70:93:25:7f:
cb:b8:22:f4:fb:9c:a0:59:b4:eb:f8:e2:ab:fa:e6:
16:47:35:fa:b3:2f:9e:bc:df:b0:cb:de:6a:e7:ae:
70:48:de:e7:b7:87:10:0a:70:37:1c:4f:4f:bc:db:
89:e3:cb:99:84:39:a0:64:27:a0:61:ea:d1:0f:c7:
d3:29:3b:19:86:60:95:e5:b1:4b:c7:a5:a0:dd:49:
dd:a8:28:b9:ac:0d:8c:bd:d3:fd:2c:27:4c:f7:5f:
89:ec:80:cf:1c:87:24:71:25:6a:f4:8b:b8:ae:7f:
91:ac:b9:5c:62:da:2b:c7:b5:1a:56:8b:b1:7b:0d:
eb:6a:9d:1f:7b:8e:12:96:50:37:cb:b9:ee:ae:f0:
d9:45:dd:17:3c:1b:d4:3f:cc:83:40:af:10:fa:0b:
5d:58:92:de:b6:f0:ca:72:46:d8:1d:8d:04:e4:56:
2c:c0:b0:9d:b7:77:f6:67:8f:d1:59:dc:e2:a4:db:
75:ea:ee:8b:be:7d:77:18:5d:65:5f:4a:35:b0:a9:
85:11:6d:ea:2e:a6:39:cc:76:a1:c5:0c:a0:ac:3f:
71:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:D0:73:0C:25:91:B5:68:DA:C2:0D:96:F3:C3:7F:A8:3D:77:CA:73
X509v3 Authority Key Identifier:
keyid:A7:F6:65:22:F4:03:D8:C9:94:A4:84:68:28:70:79:94:17:CE:1E:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p_ZlIvQD2MmUpIRoKHB5lBfOHoE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/52d0fe-cc6e-41d9-9643-c5d360fcdf0e/1/idBzDCWRtWjawg2W88N_qD13ynM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/52d0fe-cc6e-41d9-9643-c5d360fcdf0e/1/p_ZlIvQD2MmUpIRoKHB5lBfOHoE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.89.91.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:bf:bb:2b:4d:2d:63:b6:57:1c:3f:12:39:13:52:76:89:5d:
5b:58:da:51:7a:09:ac:13:4f:df:51:0b:5e:a8:98:af:42:bd:
bc:48:2a:47:62:94:72:16:79:a4:ab:e8:19:5a:06:21:a4:3f:
bf:0a:9b:5f:f6:51:26:e2:8b:e7:4f:f0:d8:55:33:fd:e6:6d:
a3:08:f9:fb:80:84:43:8d:a8:42:10:ac:a8:a5:c7:73:62:c4:
1a:3e:0a:08:72:f8:7f:09:a3:82:c8:01:fb:6e:bb:5e:f9:26:
46:ce:8a:8f:dd:6c:76:2e:f6:7e:dd:50:7f:1a:81:1f:fb:d0:
05:7d:47:c5:8d:12:a9:1f:3e:f5:9e:68:b1:d9:45:17:22:ee:
df:44:97:32:78:35:e5:85:aa:f5:fb:8e:28:4f:9a:d3:af:6f:
ca:2e:8a:41:0e:b6:60:82:7d:22:0f:3a:85:06:ea:9d:b1:4e:
45:54:c8:3b:07:85:6b:b6:c8:70:d1:29:75:6d:12:3e:9e:5c:
3e:fb:0f:0a:e7:77:fa:46:89:ac:62:67:72:7b:d6:d9:b7:f7:
34:2d:c0:b9:4e:58:e6:17:a3:6a:9d:75:71:14:bb:fb:64:a0:
e1:38:0e:2a:11:14:c0:dc:39:dd:84:ec:eb:16:46:ab:5e:1c:
2e:85:eb:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 23:30:33 2024 by rpki-client on console-ams.rpki-client.org