Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/5f048b-2df3-4140-9f4e-6068c04d1be0/1/c9jGbgd71btKc1jmAoMrLDwVsWM.roa
File: c9jGbgd71btKc1jmAoMrLDwVsWM.roa (raw, json)
Hash identifier: DYG3o8v8xjVSTomxP61bfOQE9WN+SgCrF5kESrnII9I=
Subject key identifier: 73:D8:C6:6E:07:7B:D5:BB:4A:73:58:E6:02:83:2B:2C:3C:15:B1:63
Certificate issuer: /CN=3e1f32d0cfa7a86d30e7e11a73ebbd0b24dbf41f
Certificate serial: 018AFC23C7CA349B31D460D5A1A3844BED5D
Authority key identifier: 3E:1F:32:D0:CF:A7:A8:6D:30:E7:E1:1A:73:EB:BD:0B:24:DB:F4:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ph8y0M-nqG0w5-Eac-u9CyTb9B8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/5f048b-2df3-4140-9f4e-6068c04d1be0/1/c9jGbgd71btKc1jmAoMrLDwVsWM.roa
Signing time: Wed 04 Oct 2023 19:21:57 +0000
ROA not before: Wed 04 Oct 2023 19:21:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211373
IP address blocks: 89.44.102.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:fc:23:c7:ca:34:9b:31:d4:60:d5:a1:a3:84:4b:ed:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e1f32d0cfa7a86d30e7e11a73ebbd0b24dbf41f
Validity
Not Before: Oct 4 19:21:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=73d8c66e077bd5bb4a7358e602832b2c3c15b163
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:2c:56:4e:98:40:dc:65:96:fa:1d:6a:57:ee:
ce:17:8a:6b:50:0d:37:8f:41:56:fd:f4:94:4f:b5:
6f:65:3f:25:de:ca:97:16:b0:39:db:f4:d7:db:5f:
0a:04:46:b7:2b:6b:56:22:da:99:5b:0e:30:84:ac:
84:31:e2:63:cd:5c:f8:51:f1:f6:83:80:90:85:8e:
d1:5b:8a:f7:bf:50:93:37:d5:38:f2:0e:ed:11:12:
5a:35:fc:f7:ff:33:3b:16:b3:f3:16:c7:a5:27:04:
22:49:aa:2b:af:77:91:13:3f:3e:45:67:1c:bf:94:
16:2a:92:15:c9:24:b6:d6:9f:4f:ff:93:d6:73:30:
f5:d5:b4:5d:b9:63:b6:64:17:98:30:a3:0b:e9:c1:
89:57:10:d5:00:2a:59:85:68:a3:94:7d:f3:27:ed:
bb:de:0a:88:b7:51:b8:b7:3e:96:18:3b:19:64:86:
6a:93:df:19:ca:52:1e:64:9b:a8:96:9d:49:68:05:
4f:98:6b:4f:41:9d:5c:33:80:48:e7:dd:28:a7:56:
17:75:b9:cb:8a:44:29:46:cc:50:55:77:ca:34:a3:
fa:e3:28:b9:f9:38:ba:c6:85:c8:34:0f:d4:11:14:
53:0b:88:75:0d:2d:81:db:45:10:11:40:2c:15:07:
5d:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:D8:C6:6E:07:7B:D5:BB:4A:73:58:E6:02:83:2B:2C:3C:15:B1:63
X509v3 Authority Key Identifier:
keyid:3E:1F:32:D0:CF:A7:A8:6D:30:E7:E1:1A:73:EB:BD:0B:24:DB:F4:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ph8y0M-nqG0w5-Eac-u9CyTb9B8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/5f048b-2df3-4140-9f4e-6068c04d1be0/1/c9jGbgd71btKc1jmAoMrLDwVsWM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/5f048b-2df3-4140-9f4e-6068c04d1be0/1/Ph8y0M-nqG0w5-Eac-u9CyTb9B8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.44.102.0/24
Signature Algorithm: sha256WithRSAEncryption
93:23:bb:44:11:c0:1b:8e:63:bc:eb:07:54:e4:ff:de:ff:9e:
1a:4b:2c:2e:38:f7:d0:6e:9b:e1:b1:71:77:bc:96:a9:59:be:
73:e8:4e:e0:fd:29:77:16:43:97:b3:fa:f9:e1:6f:7b:bb:91:
3f:34:d7:d4:df:92:b3:8f:ce:2d:90:f5:4c:c6:7f:11:93:20:
a2:44:8d:fc:79:56:f0:fd:16:8b:fa:a3:ca:c8:a8:cf:80:2b:
33:15:2b:7c:01:cf:4c:c2:0f:14:8f:9f:4c:10:36:56:49:c2:
ea:5b:5e:5e:5d:80:fd:aa:c4:89:3b:7b:ab:59:14:67:ff:5a:
86:37:d0:f6:27:de:20:95:6b:ec:1a:fa:9e:fd:8c:13:dc:cd:
d8:ae:a4:37:ae:4c:57:3d:1b:8a:41:ae:e1:f4:9f:8b:ee:8c:
fe:a1:c6:f9:a5:b9:29:80:58:b3:19:6a:6f:c5:17:39:e4:a6:
73:27:05:c1:d1:28:55:5f:a2:99:09:53:46:d6:5a:b9:f5:0e:
8a:a7:e8:16:aa:ce:f9:3b:4c:3c:9a:5e:fd:0c:0a:d1:4b:43:
9c:49:c2:fa:c3:57:84:7d:58:0b:3d:67:0a:4a:82:37:69:cb:
d2:63:7f:42:c7:89:28:de:83:c1:b4:2e:d0:9d:7a:9e:6a:9a:
89:e9:4d:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 23:30:42 2024 by rpki-client on console-ams.rpki-client.org