Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/b14ddd-afda-408c-9c46-9c1f69a242ba/1/8pLrgEDDZK1yXrQASRqgs_oCkMk.roa
File: 8pLrgEDDZK1yXrQASRqgs_oCkMk.roa (raw, json)
Hash identifier: bP2xYcy97wtA4tOxVX1w6El4SCGcisWzGL6hhYYFSiU=
Subject key identifier: F2:92:EB:80:40:C3:64:AD:72:5E:B4:00:49:1A:A0:B3:FA:02:90:C9
Certificate issuer: /CN=9bb350a905df3fdbbc2456d5c81c2f209ae752f3
Certificate serial: 01856ED4E3BF8BC3B9D4A3E0E23F7C2278EB
Authority key identifier: 9B:B3:50:A9:05:DF:3F:DB:BC:24:56:D5:C8:1C:2F:20:9A:E7:52:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m7NQqQXfP9u8JFbVyBwvIJrnUvM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/b14ddd-afda-408c-9c46-9c1f69a242ba/1/8pLrgEDDZK1yXrQASRqgs_oCkMk.roa
Signing time: Sun 01 Jan 2023 19:35:23 +0000
ROA not before: Sun 01 Jan 2023 19:35:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206348
IP address blocks: 89.47.8.0/23 maxlen: 24
2a12:bb40::/29 maxlen: 64
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:d4:e3:bf:8b:c3:b9:d4:a3:e0:e2:3f:7c:22:78:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bb350a905df3fdbbc2456d5c81c2f209ae752f3
Validity
Not Before: Jan 1 19:35:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f292eb8040c364ad725eb400491aa0b3fa0290c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:ba:f9:cd:96:1a:24:8a:5f:8f:37:f5:96:cd:
8f:36:bf:5a:17:b6:65:a6:95:07:25:62:cd:ad:67:
53:be:26:e6:a1:07:ab:4d:43:5a:7a:0e:d1:73:1d:
de:66:68:1a:2b:79:9c:e9:2f:d7:61:dc:18:52:1d:
d0:4d:2d:7f:5e:21:fb:1d:01:8d:e7:4f:51:ee:d5:
ba:d2:5a:12:3f:50:87:d3:01:fb:84:f4:25:d8:c0:
bf:62:18:7a:33:3b:2a:7f:6c:d8:c2:65:dd:91:41:
fe:a8:28:db:c4:ff:37:6e:5c:e3:4f:c2:65:83:3c:
be:46:62:0c:1d:f3:ef:12:1f:e6:31:a0:c1:08:04:
fc:b1:64:7a:26:73:fb:12:62:8c:1c:e0:14:fa:e4:
c0:f1:c5:93:89:1d:2c:46:ff:7a:9a:ca:25:ab:c3:
de:41:b1:99:d2:4c:ee:6d:5e:dd:65:d7:af:8a:86:
a4:9f:69:a8:d4:6a:d5:c3:31:97:16:fa:74:35:30:
eb:5b:f1:0f:1d:84:54:86:b5:25:8f:b8:30:36:50:
39:9f:0b:3c:82:d5:e1:b6:0b:72:e4:14:4a:a2:6f:
42:1c:78:7c:42:6a:e7:cc:71:77:8a:d4:70:bc:6e:
b0:12:31:5f:6e:04:2b:c5:5c:1e:dc:80:c5:e4:c1:
70:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:92:EB:80:40:C3:64:AD:72:5E:B4:00:49:1A:A0:B3:FA:02:90:C9
X509v3 Authority Key Identifier:
keyid:9B:B3:50:A9:05:DF:3F:DB:BC:24:56:D5:C8:1C:2F:20:9A:E7:52:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m7NQqQXfP9u8JFbVyBwvIJrnUvM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/b14ddd-afda-408c-9c46-9c1f69a242ba/1/8pLrgEDDZK1yXrQASRqgs_oCkMk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/b14ddd-afda-408c-9c46-9c1f69a242ba/1/m7NQqQXfP9u8JFbVyBwvIJrnUvM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.47.8.0/23
IPv6:
2a12:bb40::/29
Signature Algorithm: sha256WithRSAEncryption
a5:e8:b9:63:72:34:7b:f9:de:43:9b:ac:cc:ac:b9:0a:c6:d0:
a1:93:a9:04:54:bd:88:e2:be:64:5f:17:32:b6:d5:fb:a5:55:
dd:fd:95:c0:00:51:3f:75:42:a0:ba:d0:d5:19:01:ca:4c:59:
d7:14:ff:fa:22:76:2f:69:36:ac:c6:5a:21:e8:cd:86:e5:ab:
20:69:02:d4:36:82:88:cc:7f:1d:d8:22:a6:ad:a4:28:01:2c:
cf:41:7f:83:a5:41:05:5d:84:f5:4b:21:27:40:5c:c5:a6:3c:
93:b4:a2:38:5c:94:99:16:c5:eb:42:f3:63:04:e6:95:23:69:
88:a7:3d:ce:ab:86:55:41:d9:dc:3e:c0:1c:f9:a1:07:02:1b:
9e:e6:eb:71:b0:51:be:7c:fb:19:f2:05:6d:da:55:82:5a:73:
2b:92:e4:e0:8f:c2:7d:d4:b7:f9:22:a8:d7:05:31:d9:f1:e3:
fa:77:3e:15:31:b0:e4:60:e4:44:2a:9c:ce:55:76:05:b5:f5:
15:ed:9a:bf:73:22:78:46:9b:62:21:cd:cd:98:ef:cb:68:4d:
70:ea:c3:15:69:38:e3:1e:57:93:75:fc:20:7a:fd:72:10:d8:
c6:bf:84:1d:4c:e9:58:1d:29:9d:9f:38:9e:70:92:30:3c:cd:
91:8c:c1:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:31 2024 by rpki-client on console-ams.rpki-client.org