Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/1e04b8-1031-43f9-9667-8e6f878db5f4/1/sx4Muvr6bXszo7VuhOaZSgZjw3s.roa
File: sx4Muvr6bXszo7VuhOaZSgZjw3s.roa (raw, json)
Hash identifier: 88CvaDQP71GR1OTdplS5jUEMCsdHReVbSWw3vmCRsH4=
Subject key identifier: B3:1E:0C:BA:FA:FA:6D:7B:33:A3:B5:6E:84:E6:99:4A:06:63:C3:7B
Certificate issuer: /CN=ef57c2d9d93ac7cf9b2f17caa7859b6985b39b9d
Certificate serial: 01869D838C007DFB1B684D9FB73AD071171B
Authority key identifier: EF:57:C2:D9:D9:3A:C7:CF:9B:2F:17:CA:A7:85:9B:69:85:B3:9B:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/71fC2dk6x8-bLxfKp4WbaYWzm50.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/1e04b8-1031-43f9-9667-8e6f878db5f4/1/sx4Muvr6bXszo7VuhOaZSgZjw3s.roa
Signing time: Wed 01 Mar 2023 14:11:29 +0000
ROA not before: Wed 01 Mar 2023 14:11:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209372
IP address blocks: 89.185.78.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 20 Apr 2023 15:11:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:9d:83:8c:00:7d:fb:1b:68:4d:9f:b7:3a:d0:71:17:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef57c2d9d93ac7cf9b2f17caa7859b6985b39b9d
Validity
Not Before: Mar 1 14:11:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b31e0cbafafa6d7b33a3b56e84e6994a0663c37b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:ba:b4:05:b3:87:03:65:34:f0:4b:52:23:4c:
7f:d3:c1:4b:ec:f7:94:f8:3a:4b:49:53:39:5f:0f:
b9:cd:8a:be:1f:e4:c7:f8:60:22:bd:a1:87:8d:53:
d8:92:11:be:a6:d0:01:5b:ae:23:1e:bf:70:a8:69:
3f:f2:20:e2:0a:da:62:73:ee:5a:29:7e:f7:b6:08:
49:aa:20:7c:b2:a8:5e:1a:bd:6d:1b:a9:d5:40:92:
44:c0:ad:94:a5:22:0c:85:36:bb:21:c7:b4:93:3f:
08:0c:36:8e:19:3d:34:0d:f1:3e:2f:51:d5:c2:1c:
f2:59:4f:20:cc:eb:09:b3:f5:2f:7d:af:3e:de:6d:
05:ff:6f:8a:4b:a5:d7:dc:20:e5:67:8e:af:e5:d7:
ec:2f:49:38:41:0a:3f:44:b2:e5:95:1b:ec:a8:8e:
9f:13:f3:ec:8d:77:c2:d2:d3:8b:83:80:5a:99:66:
c5:68:e2:a1:56:cc:ff:e0:5f:ad:6a:82:6e:6e:f1:
db:d3:ed:8e:a6:82:fc:15:67:15:fd:8b:90:5b:4a:
8f:30:96:ea:ea:f4:18:35:02:47:ed:5f:b1:50:d1:
5f:ab:76:a8:2e:2b:4d:fa:be:e7:36:a7:56:f5:85:
9f:65:03:bc:03:38:e4:86:ce:9f:a3:36:43:54:c5:
65:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:1E:0C:BA:FA:FA:6D:7B:33:A3:B5:6E:84:E6:99:4A:06:63:C3:7B
X509v3 Authority Key Identifier:
keyid:EF:57:C2:D9:D9:3A:C7:CF:9B:2F:17:CA:A7:85:9B:69:85:B3:9B:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/71fC2dk6x8-bLxfKp4WbaYWzm50.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/1e04b8-1031-43f9-9667-8e6f878db5f4/1/sx4Muvr6bXszo7VuhOaZSgZjw3s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/1e04b8-1031-43f9-9667-8e6f878db5f4/1/71fC2dk6x8-bLxfKp4WbaYWzm50.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.185.78.0/24
Signature Algorithm: sha256WithRSAEncryption
30:a6:8d:8d:ed:91:d5:ee:16:61:90:11:a9:b2:16:e0:54:8f:
b7:f9:4b:34:22:2e:7b:8b:94:da:03:94:08:64:2a:52:a8:7b:
9d:e6:3f:75:b3:f6:e7:78:92:b2:42:65:d8:b1:42:b5:0b:48:
51:b2:37:0f:c6:19:3e:3c:0d:a9:6f:aa:85:a5:af:9b:5a:ac:
68:62:74:a5:46:9e:40:3a:b3:4d:0b:bc:31:b1:7b:95:2b:8a:
96:51:d4:90:b0:bf:b5:89:38:64:d0:bf:56:a7:d5:74:49:01:
4e:87:69:98:8b:95:f1:15:6a:0a:29:ce:17:3d:b6:58:90:63:
67:90:01:f0:b6:30:35:7f:12:b3:a5:75:c4:27:c6:2e:fd:00:
09:a4:49:76:83:49:6a:ee:15:94:dd:ef:fc:73:87:4d:5f:b3:
da:ec:df:60:16:68:21:41:c5:0e:6f:31:48:69:57:fc:b0:4a:
e1:e9:25:bb:55:dd:54:68:35:08:f9:74:90:0f:44:c1:f1:ac:
03:69:62:d3:5a:62:13:6f:c6:46:97:6a:40:72:24:5e:54:20:
24:ef:88:6c:15:e3:fb:4a:cd:ac:6c:e1:2b:81:5d:15:42:dc:
58:53:07:af:50:4a:66:f3:3b:ad:97:1c:b2:4e:67:85:68:03:
bb:b4:1b:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:39 2024 by rpki-client on console-fra.rpki-client.org