Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/1e04b8-1031-43f9-9667-8e6f878db5f4/1/_j54N8poCBgMkDUCFNAtX24NCf0.roa
File: _j54N8poCBgMkDUCFNAtX24NCf0.roa (raw, json)
Hash identifier: rn2DIcpdUN7DWbpxt5Lw2q0Y3J5L6r2VR2qpSEGZ2Pg=
Subject key identifier: FE:3E:78:37:CA:68:08:18:0C:90:35:02:14:D0:2D:5F:6E:0D:09:FD
Certificate issuer: /CN=ef57c2d9d93ac7cf9b2f17caa7859b6985b39b9d
Certificate serial: 01856C0A4D3F9BCA2EB91111FE41D270DAF8
Authority key identifier: EF:57:C2:D9:D9:3A:C7:CF:9B:2F:17:CA:A7:85:9B:69:85:B3:9B:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/71fC2dk6x8-bLxfKp4WbaYWzm50.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/1e04b8-1031-43f9-9667-8e6f878db5f4/1/_j54N8poCBgMkDUCFNAtX24NCf0.roa
Signing time: Sun 01 Jan 2023 06:34:52 +0000
ROA not before: Sun 01 Jan 2023 06:34:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207713
IP address blocks: 89.185.84.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:0a:4d:3f:9b:ca:2e:b9:11:11:fe:41:d2:70:da:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef57c2d9d93ac7cf9b2f17caa7859b6985b39b9d
Validity
Not Before: Jan 1 06:34:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fe3e7837ca6808180c90350214d02d5f6e0d09fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:5b:63:19:06:86:99:b7:20:5f:73:29:39:35:
a6:99:45:8a:83:11:cf:fc:44:3b:e6:dc:33:1b:24:
c5:03:3e:80:fe:ab:37:67:e2:2e:d1:43:38:54:45:
37:2f:d4:1b:56:af:3b:8e:72:73:a8:8c:fe:d9:5f:
ba:a2:08:49:48:a0:24:70:4d:99:21:fb:e9:52:3e:
e6:d9:9d:34:c7:26:67:0d:dc:83:5c:af:56:b1:d1:
a3:fe:a5:db:f7:ff:2f:de:f3:e7:8d:f5:46:eb:a2:
3b:26:60:13:a3:21:ff:c9:09:3f:fc:57:fc:8b:18:
9d:47:a4:f6:ff:7a:a6:2b:86:33:c2:15:e6:68:0b:
58:37:72:b1:a7:5a:75:b4:0c:af:24:12:44:07:07:
6d:1a:0f:0f:77:ae:f0:bc:6b:5f:56:62:0a:25:6a:
b8:b6:81:9e:82:3b:5a:ac:0b:93:7b:d6:bf:b3:d4:
77:49:14:32:02:04:74:7f:ce:14:c9:36:cc:26:39:
20:62:17:73:c0:ae:c9:a0:c9:2c:8a:06:24:b3:18:
c6:a6:74:e6:f7:2c:43:33:ab:b3:bc:6a:3f:32:e4:
29:c3:e2:bb:f9:ae:85:25:96:be:0d:56:da:f7:2b:
e6:68:fe:71:dc:01:54:68:f5:da:56:fc:b1:4e:2f:
25:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:3E:78:37:CA:68:08:18:0C:90:35:02:14:D0:2D:5F:6E:0D:09:FD
X509v3 Authority Key Identifier:
keyid:EF:57:C2:D9:D9:3A:C7:CF:9B:2F:17:CA:A7:85:9B:69:85:B3:9B:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/71fC2dk6x8-bLxfKp4WbaYWzm50.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/1e04b8-1031-43f9-9667-8e6f878db5f4/1/_j54N8poCBgMkDUCFNAtX24NCf0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/1e04b8-1031-43f9-9667-8e6f878db5f4/1/71fC2dk6x8-bLxfKp4WbaYWzm50.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.185.84.0/24
Signature Algorithm: sha256WithRSAEncryption
bc:ab:29:38:34:a1:e4:75:94:63:b8:58:8e:61:4a:e8:e0:c9:
ff:35:97:4b:6e:ad:6a:f6:4a:3d:0b:7b:60:02:d2:c3:07:ce:
dd:3d:7b:06:59:bd:0f:20:57:a8:ef:b9:df:0b:29:56:b6:94:
54:b9:62:e8:a2:67:0c:b9:24:0a:6a:38:b0:90:c4:60:48:a1:
dd:01:50:ba:59:3c:c2:a8:8b:c8:79:93:3f:d7:a4:df:c2:8d:
5a:6e:fe:c0:d7:a8:1d:51:f1:5a:67:dd:58:99:22:38:ff:bd:
44:7c:d3:6a:28:10:bf:62:e7:c6:ba:6f:7f:b8:46:34:0d:70:
05:9d:bb:f5:af:6d:9c:45:15:73:14:81:95:c2:98:b7:54:33:
d0:da:a4:48:82:45:4b:b4:1b:19:15:89:1f:43:22:0b:99:82:
70:47:e8:2e:25:05:4e:a5:e1:d6:ee:04:18:1d:26:fc:3a:ba:
a5:07:e8:f6:5c:bd:24:a4:d8:6e:47:48:24:4b:09:07:18:b6:
6c:75:37:e1:74:a1:b5:a2:7f:5a:78:08:55:92:dd:51:64:d8:
36:13:22:34:b7:83:ba:56:ee:33:16:3a:5e:d1:5f:f8:97:6f:
ee:a8:c8:89:69:5c:14:e2:36:3a:92:80:53:77:ef:ca:fc:ad:
26:23:7a:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 06:16:57 2024 by rpki-client on console-ams.rpki-client.org