Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/bfd37c-cb12-4a9c-8f5d-4021265c39b0/1/7o7btAuvCl8EaDpnHYTZnT7PDmU.roa
File: 7o7btAuvCl8EaDpnHYTZnT7PDmU.roa (raw, json)
Hash identifier: LogDl3b7+F2l6ri+mBo4dRQLAIl4JLEuFP0vWorx6q0=
Subject key identifier: EE:8E:DB:B4:0B:AF:0A:5F:04:68:3A:67:1D:84:D9:9D:3E:CF:0E:65
Certificate issuer: /CN=af801984cc38f0a4fc5afe1adeab680c1b89e95b
Certificate serial: 018F52F14DDBE679A15334F1ECAC794D2BBB
Authority key identifier: AF:80:19:84:CC:38:F0:A4:FC:5A:FE:1A:DE:AB:68:0C:1B:89:E9:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r4AZhMw48KT8Wv4a3qtoDBuJ6Vs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/bfd37c-cb12-4a9c-8f5d-4021265c39b0/1/7o7btAuvCl8EaDpnHYTZnT7PDmU.roa
Signing time: Tue 07 May 2024 12:04:56 +0000
ROA not before: Tue 07 May 2024 12:04:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 14618
IP address blocks: 89.49.0.0/21 maxlen: 24
Validation: Failed, certificate revoked on Wed 08 May 2024 07:06:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:52:f1:4d:db:e6:79:a1:53:34:f1:ec:ac:79:4d:2b:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af801984cc38f0a4fc5afe1adeab680c1b89e95b
Validity
Not Before: May 7 12:04:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ee8edbb40baf0a5f04683a671d84d99d3ecf0e65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:6d:bb:dd:40:98:02:06:43:b1:a3:84:4f:b4:
03:d8:04:b1:f6:d7:fb:ec:d3:09:bc:0d:50:85:f1:
43:ce:e5:80:22:90:68:71:cb:ac:d6:20:1e:2b:77:
3c:0a:e5:f7:79:33:07:66:fb:32:cd:ef:2a:73:b8:
a6:04:0c:f5:23:ec:e4:ed:f4:97:bf:60:21:26:4f:
ae:0b:19:04:f4:28:ae:b0:0c:26:82:a6:40:d9:29:
5c:80:75:2a:6a:2d:f9:99:51:a0:09:47:68:24:c7:
e5:d8:dc:96:90:58:f4:a4:a8:b1:dd:34:58:fb:ae:
fd:ca:b2:1a:f5:ff:bb:d0:53:2e:05:b9:32:0b:a0:
c8:f5:a7:c4:32:03:2a:b1:c2:7e:89:25:67:fc:3b:
4c:91:c6:e3:87:62:f9:8f:74:93:7f:8c:91:bc:c1:
89:d1:38:57:a9:2e:fa:39:ac:55:2b:da:dc:34:9a:
d9:25:d3:da:37:ab:0a:fc:26:ea:5f:c9:29:2b:db:
f8:5d:9a:2a:4c:f5:26:1c:65:e5:18:54:4b:77:9a:
61:78:3b:09:f8:4a:b2:14:a3:9d:8b:36:6b:6c:d9:
d3:e5:b5:57:08:5a:c6:02:79:67:05:5a:73:20:97:
05:48:49:f2:36:40:d2:43:78:37:e6:2b:d6:16:ef:
90:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:8E:DB:B4:0B:AF:0A:5F:04:68:3A:67:1D:84:D9:9D:3E:CF:0E:65
X509v3 Authority Key Identifier:
keyid:AF:80:19:84:CC:38:F0:A4:FC:5A:FE:1A:DE:AB:68:0C:1B:89:E9:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r4AZhMw48KT8Wv4a3qtoDBuJ6Vs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/bfd37c-cb12-4a9c-8f5d-4021265c39b0/1/7o7btAuvCl8EaDpnHYTZnT7PDmU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/bfd37c-cb12-4a9c-8f5d-4021265c39b0/1/r4AZhMw48KT8Wv4a3qtoDBuJ6Vs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.49.0.0/21
Signature Algorithm: sha256WithRSAEncryption
3e:e9:90:b3:6c:69:da:68:f3:0b:da:7f:dc:7b:16:04:3a:a7:
a6:43:ff:1c:bc:32:63:87:ef:fd:a1:90:52:61:ee:ba:fc:b9:
c3:83:69:4b:62:f9:76:9e:a2:58:75:52:71:3b:8d:e7:fa:bb:
49:e6:61:77:2a:f8:74:96:0a:ca:c0:d4:a1:aa:81:32:43:c6:
ff:8d:51:15:87:23:9a:99:4c:c3:91:ca:07:25:39:d0:18:e1:
c9:15:ac:1e:e7:48:be:ac:c3:60:45:b1:05:d9:f6:89:86:99:
05:5f:73:0d:55:dc:3b:84:41:58:9e:62:f3:81:05:c0:e3:82:
fd:b9:9a:32:00:77:6f:30:49:1f:3c:cb:5e:16:97:1c:0b:06:
8d:1c:a5:ca:35:de:af:92:c2:c1:ab:87:ff:27:03:b0:17:e7:
6b:c5:a2:18:5c:58:0a:de:64:11:52:ed:c3:09:7b:fa:ac:e2:
b9:a5:7d:4c:d7:3b:1e:b3:3c:8d:ca:45:3e:bd:50:77:7c:d2:
3e:4b:56:51:3d:81:0f:83:15:5b:d7:ca:2b:c6:7b:99:bb:ff:
80:4f:35:1c:03:a8:cb:de:5f:c4:e8:23:21:cf:38:b1:5a:2c:
f2:2d:55:96:b0:5c:57:47:d3:14:6f:18:15:d1:3a:c5:25:1f:
2a:01:9d:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:45 2024 by rpki-client on console-fra.rpki-client.org