Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/e25239-6ab0-4919-a76a-4f4e71e32084/1/qA24TpfDLTEAqZVnUZhhnW5tk1k.roa
File: qA24TpfDLTEAqZVnUZhhnW5tk1k.roa (raw, json)
Hash identifier: S+tDnvbd7iVvddmPhY6qr8MRJhXawUtb3mBU7cxm51c=
Subject key identifier: A8:0D:B8:4E:97:C3:2D:31:00:A9:95:67:51:98:61:9D:6E:6D:93:59
Certificate issuer: /CN=bdfad23e11cf0d24a477594eba09f99acc6f1fff
Certificate serial: 018988C51C2372346A722841D12CF1F629A5
Authority key identifier: BD:FA:D2:3E:11:CF:0D:24:A4:77:59:4E:BA:09:F9:9A:CC:6F:1F:FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vfrSPhHPDSSkd1lOugn5msxvH_8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/e25239-6ab0-4919-a76a-4f4e71e32084/1/qA24TpfDLTEAqZVnUZhhnW5tk1k.roa
Signing time: Mon 24 Jul 2023 16:39:26 +0000
ROA not before: Mon 24 Jul 2023 16:39:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197695
IP address blocks: 89.104.64.0/21 maxlen: 24
Validation: Failed, certificate revoked on Thu 24 Aug 2023 13:28:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:88:c5:1c:23:72:34:6a:72:28:41:d1:2c:f1:f6:29:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bdfad23e11cf0d24a477594eba09f99acc6f1fff
Validity
Not Before: Jul 24 16:39:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a80db84e97c32d3100a995675198619d6e6d9359
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:8b:1c:a2:2e:85:82:c1:71:d7:29:6f:70:b8:
02:aa:92:94:44:ae:ae:f7:57:f1:fd:3c:d7:d9:44:
aa:28:c1:d6:67:a7:7a:17:26:34:2e:05:b8:73:9e:
02:b3:a8:dd:7b:bb:8e:81:ec:18:f0:4b:c4:c7:5f:
80:16:8a:9c:cf:c8:ef:1c:0e:eb:39:72:f7:2b:f4:
89:f6:4f:93:e2:25:b4:1a:2d:0f:9e:59:20:e8:32:
31:a1:54:cf:49:05:7c:75:e7:10:3a:fa:1e:2b:dc:
c4:0c:aa:30:1a:55:a5:d6:d6:fc:c2:d6:df:a0:44:
b4:f5:40:fb:32:f5:51:02:ff:f0:5f:81:34:09:0a:
b8:87:40:c0:92:60:c5:b2:4b:7f:03:d7:69:47:81:
03:98:8c:26:a1:65:16:64:6b:33:74:47:64:31:1c:
f2:c4:7e:57:b9:4b:cc:6b:32:75:d2:e9:66:c5:76:
10:2e:24:90:c3:c2:d4:ef:b9:ed:40:51:03:37:90:
97:6b:3f:32:48:e0:39:b4:5f:ba:44:27:05:f2:08:
d1:46:91:e2:e8:77:da:cf:46:41:ab:84:ce:f2:2d:
57:2e:4d:2b:a9:bd:57:e2:1e:a3:70:42:12:d4:b0:
5b:cd:b8:86:9a:f4:4c:40:07:c6:07:d7:11:ff:70:
bb:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:0D:B8:4E:97:C3:2D:31:00:A9:95:67:51:98:61:9D:6E:6D:93:59
X509v3 Authority Key Identifier:
keyid:BD:FA:D2:3E:11:CF:0D:24:A4:77:59:4E:BA:09:F9:9A:CC:6F:1F:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vfrSPhHPDSSkd1lOugn5msxvH_8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/e25239-6ab0-4919-a76a-4f4e71e32084/1/qA24TpfDLTEAqZVnUZhhnW5tk1k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/e25239-6ab0-4919-a76a-4f4e71e32084/1/vfrSPhHPDSSkd1lOugn5msxvH_8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.104.64.0/21
Signature Algorithm: sha256WithRSAEncryption
9c:a9:da:cf:85:c1:93:36:cc:ae:18:ef:95:d5:89:60:47:47:
58:8f:1b:8d:e4:c2:aa:55:4b:4d:c1:c3:34:81:46:d3:17:ab:
32:d2:aa:28:9a:b7:9e:01:ab:54:98:10:5b:2a:05:29:36:d2:
60:6e:e2:8d:fc:c5:75:09:95:a9:5b:b3:d2:a9:38:31:87:d7:
89:84:4d:db:89:61:3d:c7:b3:2e:aa:11:fc:5e:a7:1c:3e:54:
8c:63:7f:50:28:67:ca:a0:70:6d:ef:8f:a2:07:93:b6:ae:e3:
15:0e:b9:b4:87:ed:b2:de:6b:3a:61:2f:f0:e1:74:c5:ae:2a:
7c:4f:0e:a7:52:0a:f2:9c:4a:e2:b9:6d:4e:98:84:e6:1f:63:
bb:93:c1:d1:62:ad:63:31:34:fb:75:3d:1e:ff:16:4e:2b:a5:
d4:c8:5d:51:4b:b4:f6:45:66:1f:21:92:f4:e6:7c:e5:ac:f6:
27:e9:8a:70:0e:e6:9f:60:5f:26:06:86:07:74:5d:6b:83:db:
94:82:3d:3b:5a:81:ed:72:c4:90:fd:85:a9:f7:91:b0:d1:99:
7f:bb:7b:f0:1e:53:65:7a:3a:44:ac:63:be:56:ce:95:95:d2:
64:80:a4:0d:e3:72:eb:ff:82:09:69:5d:90:21:0d:4e:5b:0d:
67:28:94:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:13 2024 by rpki-client on console-ams.rpki-client.org