Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/828f99-83b5-40ad-a5a7-06437ec466b8/1/1-W3vVvoJd5Hx8OMEgDSn_yYINJ4.roa
File: 1-W3vVvoJd5Hx8OMEgDSn_yYINJ4.roa (raw, json)
Hash identifier: QDUg3fnnCW4bzkkkCYQvN2H/tKR9/OWXbzB9pXoz+3g=
Subject key identifier: F9:6D:EF:56:FA:09:77:91:F1:F0:E3:04:80:34:A7:FF:26:08:34:9E
Certificate issuer: /CN=bbd2dc1d2c8fbdc08516ab0bb2088c37eb002863
Certificate serial: 01899132F7BE3870F0B4F27A80E3CE00B8CF
Authority key identifier: BB:D2:DC:1D:2C:8F:BD:C0:85:16:AB:0B:B2:08:8C:37:EB:00:28:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u9LcHSyPvcCFFqsLsgiMN-sAKGM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/828f99-83b5-40ad-a5a7-06437ec466b8/1/1-W3vVvoJd5Hx8OMEgDSn_yYINJ4.roa
Signing time: Wed 26 Jul 2023 07:56:23 +0000
ROA not before: Wed 26 Jul 2023 07:56:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 10753
IP address blocks: 89.47.37.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:31:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:91:32:f7:be:38:70:f0:b4:f2:7a:80:e3:ce:00:b8:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bbd2dc1d2c8fbdc08516ab0bb2088c37eb002863
Validity
Not Before: Jul 26 07:56:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f96def56fa097791f1f0e3048034a7ff2608349e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:95:21:08:ac:44:72:d4:00:11:d6:f0:db:fc:
ac:e3:79:10:1c:ca:ab:bb:d5:33:3d:20:6a:ad:7b:
c5:ca:b9:ca:25:61:5f:47:ad:26:e5:ea:f6:41:ab:
a7:86:5e:da:24:ec:09:d7:0b:7d:f0:dd:66:40:e6:
54:6f:73:c7:e4:30:3c:44:54:bd:7a:63:b5:3d:03:
5d:29:5d:5d:74:21:b1:a5:5e:bb:07:85:00:7b:8a:
78:16:b1:87:78:72:fd:2e:e2:2a:e7:3c:f4:c7:e3:
9e:0d:44:f1:33:0f:e3:9e:08:64:3a:24:c7:dd:41:
9f:57:b1:5b:9b:46:d4:52:1e:a2:02:f6:50:dc:8d:
ad:86:4f:5c:be:b5:af:e6:7f:06:1d:7b:aa:96:d0:
88:b8:2a:3a:c2:c2:5e:64:d6:fe:fa:8c:c2:2a:81:
ee:cd:27:ff:9d:d1:f1:00:fe:8b:bd:af:50:7f:27:
f4:4d:ae:38:c7:bb:8b:d2:c1:d5:48:01:d9:ba:e3:
c8:6f:b0:34:e6:05:50:8c:e6:d0:22:41:ce:3b:6d:
0b:fe:bc:f7:20:71:d3:52:34:8a:42:67:c5:c9:d1:
8e:ce:fe:ad:f6:be:cb:6b:d6:31:45:db:23:df:81:
68:8f:9d:16:ac:5a:1a:e2:d2:3c:7b:2c:db:0d:4d:
ac:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:6D:EF:56:FA:09:77:91:F1:F0:E3:04:80:34:A7:FF:26:08:34:9E
X509v3 Authority Key Identifier:
keyid:BB:D2:DC:1D:2C:8F:BD:C0:85:16:AB:0B:B2:08:8C:37:EB:00:28:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u9LcHSyPvcCFFqsLsgiMN-sAKGM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/828f99-83b5-40ad-a5a7-06437ec466b8/1/1-W3vVvoJd5Hx8OMEgDSn_yYINJ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/828f99-83b5-40ad-a5a7-06437ec466b8/1/u9LcHSyPvcCFFqsLsgiMN-sAKGM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.47.37.0/24
Signature Algorithm: sha256WithRSAEncryption
85:39:a2:07:2d:82:fe:bd:b9:8d:84:5b:98:f2:39:72:e2:d9:
6f:2a:c9:fb:a3:4a:8e:ee:ee:6f:4c:7f:3f:2e:89:c1:23:9e:
b6:5f:b4:13:f7:b0:15:86:dc:e3:0a:b6:b6:2d:b9:3d:ed:2b:
b7:e1:ca:fa:ee:ce:8e:7f:bb:e1:06:8d:87:13:d4:30:bb:ef:
91:d7:a3:44:7e:c1:b9:d9:9b:f0:13:5b:2e:2a:23:56:46:ba:
f7:46:86:6d:b6:a5:ac:26:73:1b:03:28:2d:1d:73:6f:b9:a1:
d4:f1:0d:a7:ad:1e:8d:7c:9d:95:b5:e3:ff:60:44:44:91:75:
fb:51:cb:f7:8a:cb:25:8e:85:9b:0b:bd:37:d9:5c:25:5e:f6:
0f:f0:9b:e7:45:e0:4c:a6:46:0f:bd:36:f5:07:5c:c5:b7:f9:
e1:6e:9b:4a:73:eb:ea:4c:61:28:63:c4:d7:89:c1:af:50:3f:
60:2b:0a:6f:44:f1:b5:c0:a7:21:7e:b9:03:b0:ef:f8:80:3b:
69:1b:ef:8b:e6:b3:8f:99:70:5f:3f:4f:50:ee:7f:43:a4:bb:
9d:3d:00:77:5d:16:d0:a0:b2:b2:bf:1a:2c:a5:c0:84:a6:46:
6a:1a:22:23:92:10:1d:f6:02:70:fb:e6:3f:eb:bd:82:d4:bc:
c6:aa:f5:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:00 2024 by rpki-client on console-fra.rpki-client.org