Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/28a8f3-889e-4549-a44e-ce225187fc38/1/6um3sZP1nDqicBrs2l7Uj1ZvHFg.roa
File: 6um3sZP1nDqicBrs2l7Uj1ZvHFg.roa (raw, json)
Hash identifier: XbaencczHfLRNVdXXu+XwMAbGOTNKPInfml9FOQHQLE=
Subject key identifier: EA:E9:B7:B1:93:F5:9C:3A:A2:70:1A:EC:DA:5E:D4:8F:56:6F:1C:58
Certificate issuer: /CN=c1b050211219d18e996e086cb7f6309178804860
Certificate serial: 01856F302418CA7CB4DCFD2E2BBB37B00877
Authority key identifier: C1:B0:50:21:12:19:D1:8E:99:6E:08:6C:B7:F6:30:91:78:80:48:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wbBQIRIZ0Y6Zbghst_YwkXiASGA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/28a8f3-889e-4549-a44e-ce225187fc38/1/6um3sZP1nDqicBrs2l7Uj1ZvHFg.roa
Signing time: Sun 01 Jan 2023 21:15:03 +0000
ROA not before: Sun 01 Jan 2023 21:15:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202772
IP address blocks: 89.108.132.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:30:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:30:24:18:ca:7c:b4:dc:fd:2e:2b:bb:37:b0:08:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c1b050211219d18e996e086cb7f6309178804860
Validity
Not Before: Jan 1 21:15:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=eae9b7b193f59c3aa2701aecda5ed48f566f1c58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:a2:51:7a:eb:66:29:d6:07:1f:f8:ee:d4:23:
31:cc:4b:9d:1c:42:6e:7c:b3:ae:1f:8d:fa:6d:7a:
cb:75:19:d0:f0:4f:f8:78:c2:0b:52:19:b3:53:75:
dc:92:6b:c8:a4:46:f0:f0:ea:01:53:6d:34:bd:bc:
81:fb:68:50:b9:2e:af:bf:dd:52:2b:2d:56:16:29:
66:20:94:9b:13:6c:62:0d:fa:60:02:2d:03:50:24:
20:6a:6e:0a:cc:b7:07:d2:00:9f:7a:b8:0f:2a:e3:
0d:76:a6:6b:b0:57:f6:d1:b1:4b:2c:a8:02:78:68:
0c:38:b8:2c:af:8f:ae:f7:ea:88:6f:92:b9:d0:a4:
73:4b:8f:cc:71:a3:b3:26:63:ce:73:20:91:f3:ee:
83:c7:4b:a2:3d:78:89:a8:fc:dc:74:22:ba:9a:6e:
bd:1a:85:34:ef:25:82:df:17:c9:f6:64:ad:10:71:
96:28:c1:22:a5:83:ff:78:35:13:ae:8d:c7:fd:b6:
64:4b:0f:98:81:2b:a3:1f:c5:60:49:78:df:45:ae:
32:48:11:9e:93:79:a5:d8:b2:02:5a:6d:41:f0:01:
3c:5d:e3:d2:d1:2e:03:5c:b1:05:9c:55:56:a8:96:
08:56:ff:08:e3:3c:3b:30:f3:b7:21:dc:f9:e4:5a:
a0:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:E9:B7:B1:93:F5:9C:3A:A2:70:1A:EC:DA:5E:D4:8F:56:6F:1C:58
X509v3 Authority Key Identifier:
keyid:C1:B0:50:21:12:19:D1:8E:99:6E:08:6C:B7:F6:30:91:78:80:48:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wbBQIRIZ0Y6Zbghst_YwkXiASGA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/28a8f3-889e-4549-a44e-ce225187fc38/1/6um3sZP1nDqicBrs2l7Uj1ZvHFg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/28a8f3-889e-4549-a44e-ce225187fc38/1/wbBQIRIZ0Y6Zbghst_YwkXiASGA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.108.132.0/24
Signature Algorithm: sha256WithRSAEncryption
90:67:d9:24:23:c8:91:0a:0b:82:03:ac:85:52:44:b9:32:6e:
24:0f:72:a9:94:96:77:9c:6a:02:e0:2a:61:a8:9f:55:57:d4:
d6:98:1b:39:e4:cc:08:75:df:0e:e7:cc:7a:15:b7:94:5c:4a:
85:18:a0:f8:84:e4:83:2f:7b:a1:5e:db:21:4e:d8:8e:d2:ff:
7a:97:57:0b:bd:ec:a4:22:f9:50:87:c2:f0:0e:85:13:81:0d:
cf:63:43:89:a9:46:a6:b6:99:1b:f6:3f:e4:6c:e7:c8:e7:2e:
e0:d8:31:d2:0f:03:a9:da:1c:4b:12:5a:96:29:8a:a0:55:2d:
27:23:c2:10:f4:43:34:6a:bd:90:ff:83:c4:80:22:90:84:71:
ff:17:16:08:3c:0f:cd:13:2e:9b:5c:38:e3:2a:40:62:0e:f5:
61:d4:7f:56:ff:5d:66:64:9a:19:dd:6d:90:af:8f:68:42:77:
41:bf:e9:7b:1f:90:ea:02:75:59:b5:1f:4b:75:74:26:5f:1e:
15:aa:05:a8:bd:60:18:e9:1d:c9:a1:70:77:a4:df:02:df:df:
9e:df:1b:c6:61:7b:ce:26:b4:a5:85:f5:04:1e:0d:fe:75:f5:
bf:6e:b6:e1:ff:95:9d:79:03:85:db:64:e5:1b:4f:51:e5:f5:
71:b5:65:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:44 2024 by rpki-client on console-ams.rpki-client.org