Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/bfd37c-cb12-4a9c-8f5d-4021265c39b0/1/dv0rCA6xkMCb8Uis9N5vSSrEbc4.roa
File: dv0rCA6xkMCb8Uis9N5vSSrEbc4.roa (raw, json)
Hash identifier: Ou6DYuoayRjb4tuRcCMYkwrOwnJ2f6OVFo61Sq+EUAs=
Subject key identifier: 76:FD:2B:08:0E:B1:90:C0:9B:F1:48:AC:F4:DE:6F:49:2A:C4:6D:CE
Certificate issuer: /CN=af801984cc38f0a4fc5afe1adeab680c1b89e95b
Certificate serial: 01928A530E82972ED258D7A3B5A20923694F
Authority key identifier: AF:80:19:84:CC:38:F0:A4:FC:5A:FE:1A:DE:AB:68:0C:1B:89:E9:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r4AZhMw48KT8Wv4a3qtoDBuJ6Vs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/bfd37c-cb12-4a9c-8f5d-4021265c39b0/1/dv0rCA6xkMCb8Uis9N5vSSrEbc4.roa
Signing time: Mon 14 Oct 2024 09:19:11 +0000
ROA not before: Mon 14 Oct 2024 09:19:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16509
IP address blocks: 89.58.112.0/21 maxlen: 24
Validation: Failed, certificate revoked on Tue 29 Oct 2024 08:30:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:8a:53:0e:82:97:2e:d2:58:d7:a3:b5:a2:09:23:69:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af801984cc38f0a4fc5afe1adeab680c1b89e95b
Validity
Not Before: Oct 14 09:19:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=76fd2b080eb190c09bf148acf4de6f492ac46dce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:d0:b5:4a:61:20:95:61:32:46:80:d7:b3:40:
40:72:ae:6d:31:e3:a2:68:89:58:6c:6f:e6:28:9b:
ee:a3:59:c2:a4:2e:ef:99:5e:b3:3e:f3:e5:93:a1:
e2:53:58:a3:9b:ab:f0:95:16:8c:10:97:5f:c0:18:
9b:29:8b:fc:ce:08:0c:49:15:71:4f:16:28:ad:d8:
12:25:dd:48:86:c9:f7:fe:e4:1b:18:34:15:28:aa:
83:c9:ca:92:6f:d6:25:ab:ca:5e:7b:76:9c:e6:cf:
21:fd:e0:8d:4d:a9:d8:41:72:25:67:30:41:ea:d5:
2e:d6:43:e0:63:56:b8:7c:ac:d5:d5:1a:45:ae:61:
ed:43:7c:d3:ad:fd:a1:e8:4d:fb:35:28:a1:72:88:
c7:79:ac:18:ce:d3:cf:4f:55:e0:fd:11:78:48:7c:
49:27:6e:0a:68:bd:f3:2c:37:56:69:c3:ee:9b:5c:
6a:12:54:45:c1:32:7b:da:4f:cc:73:f0:96:de:0a:
98:4a:2c:3a:64:70:c0:71:c1:21:61:e6:9e:19:e5:
d6:fe:cd:31:3f:56:36:7f:99:36:40:8c:cc:a9:40:
92:f4:68:02:52:30:7a:03:cc:68:a7:49:a2:a1:20:
1f:10:7b:a3:d8:85:65:35:5d:48:ff:12:e4:d5:3b:
cb:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:FD:2B:08:0E:B1:90:C0:9B:F1:48:AC:F4:DE:6F:49:2A:C4:6D:CE
X509v3 Authority Key Identifier:
keyid:AF:80:19:84:CC:38:F0:A4:FC:5A:FE:1A:DE:AB:68:0C:1B:89:E9:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r4AZhMw48KT8Wv4a3qtoDBuJ6Vs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/bfd37c-cb12-4a9c-8f5d-4021265c39b0/1/dv0rCA6xkMCb8Uis9N5vSSrEbc4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/bfd37c-cb12-4a9c-8f5d-4021265c39b0/1/r4AZhMw48KT8Wv4a3qtoDBuJ6Vs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.58.112.0/21
Signature Algorithm: sha256WithRSAEncryption
74:f8:f7:75:20:4f:42:c7:7b:ac:8c:d0:05:c8:9b:55:e3:49:
62:2b:9c:89:07:ae:be:d7:24:71:db:4b:85:ff:ea:8d:c7:7c:
4e:52:44:ac:30:a5:47:6c:11:6a:be:c8:e3:29:4d:e0:5f:76:
bc:15:50:ae:6c:15:c6:25:46:f1:7c:69:26:49:76:8a:5e:db:
2b:07:bc:b7:17:cd:33:1e:e1:49:70:a4:45:5a:65:4d:dc:97:
47:bc:da:79:09:e1:5f:6f:c8:41:46:52:86:31:13:0c:73:65:
49:d8:df:92:a0:a5:d1:e0:5f:62:da:8f:75:a9:10:fe:a9:95:
bd:b4:d9:1b:d7:f5:43:39:b6:46:bc:4a:22:af:b6:5e:57:30:
b4:75:14:e9:03:cc:ed:0f:21:80:c2:58:ea:9d:5f:af:da:fa:
ba:77:5e:35:08:92:99:b0:76:e5:64:a5:d9:4a:1e:cd:26:58:
24:1d:d3:13:12:9f:6d:96:c3:13:0f:bf:17:2e:bf:c2:1d:b1:
ed:d9:7c:a1:50:3c:b5:84:69:cd:1f:48:03:3c:6c:b9:04:10:
1f:25:b3:93:f2:fa:a2:f8:4b:bd:b8:97:64:25:2b:03:fc:05:
48:c4:26:ed:33:f4:12:c0:f5:f8:37:89:70:54:04:2f:41:b6:
78:42:79:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 29 11:58:33 2024 by rpki-client on console-ams.rpki-client.org