Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/b30e5d-8b3b-4287-9b3b-8232fa3e629d/1/y526JzyYkEa2XaZasXlEXKU8-rU.roa
File: y526JzyYkEa2XaZasXlEXKU8-rU.roa (raw, json)
Hash identifier: xrKVyAUjmea5AOl4sWlqSXpix7NGdctnf4rcq1z5ZCw=
Subject key identifier: CB:9D:BA:27:3C:98:90:46:B6:5D:A6:5A:B1:79:44:5C:A5:3C:FA:B5
Certificate issuer: /CN=d7d0674bd6f0cc9175219a328c8b396829f6c0af
Certificate serial: 018D74A6F9E977565267473A5ECD2BA7B213
Authority key identifier: D7:D0:67:4B:D6:F0:CC:91:75:21:9A:32:8C:8B:39:68:29:F6:C0:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/19BnS9bwzJF1IZoyjIs5aCn2wK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/b30e5d-8b3b-4287-9b3b-8232fa3e629d/1/y526JzyYkEa2XaZasXlEXKU8-rU.roa
Signing time: Sun 04 Feb 2024 15:05:16 +0000
ROA not before: Sun 04 Feb 2024 15:05:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 32787
IP address blocks: 89.147.32.0/23 maxlen: 23
Validation: Failed, certificate revoked on Wed 25 Sep 2024 05:42:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:74:a6:f9:e9:77:56:52:67:47:3a:5e:cd:2b:a7:b2:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d7d0674bd6f0cc9175219a328c8b396829f6c0af
Validity
Not Before: Feb 4 15:05:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cb9dba273c989046b65da65ab179445ca53cfab5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:8d:9f:40:27:1a:ec:1d:1a:0d:5d:01:58:64:
23:1a:23:82:9e:de:01:bd:5b:ec:8d:b1:97:23:7b:
48:45:ac:c9:04:f5:5b:46:40:0a:89:e3:c9:60:bb:
5d:33:17:21:22:1a:fb:17:87:fe:bb:46:89:b3:b3:
a5:7e:43:60:a6:67:5f:5b:af:c1:96:ad:67:38:e5:
71:85:92:89:63:00:03:f5:f8:78:7d:2c:a7:82:89:
68:5a:d5:03:0c:4a:e3:70:09:77:1c:7f:ba:87:b8:
4b:3a:f1:f3:12:31:50:0b:9f:3a:b7:17:d7:97:5a:
13:3f:7f:c0:0b:00:90:2b:c0:61:e4:7b:08:1f:a6:
fc:5f:e6:4d:4a:76:d7:32:f1:a7:6d:5e:ce:ac:ed:
58:a2:04:aa:d8:21:65:2e:d9:11:3f:f6:aa:4a:75:
03:03:38:6e:2c:61:1b:a9:bc:86:e8:6a:14:09:ad:
04:18:b3:6f:39:5a:09:98:2e:fa:09:a3:72:eb:32:
b8:f1:da:b2:a6:79:4b:5d:ce:46:3f:b5:18:18:0e:
d8:75:cd:54:4e:ef:ce:b0:4a:03:db:b7:44:22:81:
b7:74:9e:8d:5b:65:bc:fe:11:cd:55:62:18:cd:58:
24:a2:bc:97:c6:9a:35:ff:e1:a1:db:e6:8f:d7:85:
e8:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:9D:BA:27:3C:98:90:46:B6:5D:A6:5A:B1:79:44:5C:A5:3C:FA:B5
X509v3 Authority Key Identifier:
keyid:D7:D0:67:4B:D6:F0:CC:91:75:21:9A:32:8C:8B:39:68:29:F6:C0:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/19BnS9bwzJF1IZoyjIs5aCn2wK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/b30e5d-8b3b-4287-9b3b-8232fa3e629d/1/y526JzyYkEa2XaZasXlEXKU8-rU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/b30e5d-8b3b-4287-9b3b-8232fa3e629d/1/19BnS9bwzJF1IZoyjIs5aCn2wK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.147.32.0/23
Signature Algorithm: sha256WithRSAEncryption
03:73:f8:21:6c:47:7c:06:34:a0:94:3b:6e:99:42:38:73:59:
51:97:2d:b3:53:b4:e0:17:7e:79:fb:0e:c9:58:b5:0c:1e:56:
84:04:98:48:5a:eb:1a:32:5a:2c:ff:a6:3e:88:b1:cc:a9:a8:
93:b3:89:ce:02:72:8c:3c:f4:1e:6c:3e:36:37:ed:84:61:c8:
e7:bc:b3:6a:f8:d6:89:3f:dc:7f:5f:51:e3:ad:c6:e0:39:d0:
69:d0:da:88:10:f8:80:be:54:73:a4:5d:70:63:18:82:68:f3:
35:6e:82:19:b8:02:34:13:39:5d:d7:2f:a1:ff:18:9f:dd:3a:
3e:1e:35:88:b3:90:20:a5:53:a7:38:17:16:15:d5:12:86:b4:
28:00:4d:8c:d3:35:2f:da:0d:49:c2:2e:1f:5b:da:9f:85:63:
02:05:99:78:b8:b6:d1:4a:51:08:31:4d:0d:04:3b:2c:04:9e:
ba:35:b9:43:17:21:a8:37:eb:0e:ac:c6:71:bd:61:bd:22:eb:
a0:67:22:db:66:f0:20:f7:2d:82:a7:d8:47:13:75:8a:50:f2:
ae:36:a7:38:e9:d2:4d:ea:34:bc:6f:24:20:52:fc:28:87:16:
06:57:ae:4b:cb:83:e7:f7:2a:96:89:e4:2f:fd:a2:d5:6a:17:
cb:c6:ee:85
-----BEGIN CERTIFICATE-----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Generated at Wed Sep 25 06:32:31 2024 by rpki-client on console-ams.rpki-client.org