Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/828f99-83b5-40ad-a5a7-06437ec466b8/1/IL0FQgxAjvF57l_Fj_BNF79IzqM.roa
File: IL0FQgxAjvF57l_Fj_BNF79IzqM.roa (raw, json)
Hash identifier: W7ZL0BHnUoMugiV5nDgsU8TuIBUVGiYb20iBkPGWpBc=
Subject key identifier: 20:BD:05:42:0C:40:8E:F1:79:EE:5F:C5:8F:F0:4D:17:BF:48:CE:A3
Certificate issuer: /CN=bbd2dc1d2c8fbdc08516ab0bb2088c37eb002863
Certificate serial: 018963186C58597A6873512070F6EC4448DA
Authority key identifier: BB:D2:DC:1D:2C:8F:BD:C0:85:16:AB:0B:B2:08:8C:37:EB:00:28:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u9LcHSyPvcCFFqsLsgiMN-sAKGM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/828f99-83b5-40ad-a5a7-06437ec466b8/1/IL0FQgxAjvF57l_Fj_BNF79IzqM.roa
Signing time: Mon 17 Jul 2023 09:04:52 +0000
ROA not before: Mon 17 Jul 2023 09:04:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 89.47.37.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 26 Jul 2023 06:49:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:63:18:6c:58:59:7a:68:73:51:20:70:f6:ec:44:48:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bbd2dc1d2c8fbdc08516ab0bb2088c37eb002863
Validity
Not Before: Jul 17 09:04:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=20bd05420c408ef179ee5fc58ff04d17bf48cea3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:09:c3:1c:0a:e9:9d:38:3c:6b:16:19:17:48:
db:1c:ba:f7:30:af:94:4e:7e:bb:b9:3b:3d:7f:4e:
13:34:43:e4:36:50:be:43:e8:89:7a:0d:01:5d:8b:
73:d7:7b:77:d0:ee:2d:cb:56:d4:92:4f:47:f2:ac:
4b:2a:d3:f7:ea:38:7b:7e:60:de:e0:5d:6b:c2:34:
20:b4:de:cb:35:6f:1d:27:48:fb:5f:2e:9e:b1:b8:
37:b9:8a:ee:cb:06:b1:7b:ca:dc:7b:de:81:7e:6a:
ce:18:f0:b8:39:b4:09:80:b3:24:b3:76:ee:8e:cd:
1a:9f:b3:73:94:81:9e:99:17:c6:be:0f:55:42:4d:
44:d6:f6:9b:f6:46:e7:62:9b:c0:03:6a:74:52:64:
ce:dd:b2:8a:18:c9:74:e3:eb:e8:ad:d5:f1:c9:3b:
71:99:31:5e:82:ff:5f:0b:c8:99:e8:f9:97:39:e5:
48:52:47:15:87:92:d8:98:f3:b5:6e:a6:73:14:7c:
85:ef:5c:43:63:25:fd:c7:2d:b1:f7:b8:fa:7c:03:
87:58:20:2a:1e:c0:d4:11:35:49:9a:fc:f4:2a:5b:
f2:fc:08:31:ef:92:22:89:d0:5f:2e:8d:27:76:19:
c2:a9:0c:e6:20:b0:d0:fa:fe:04:15:ef:65:e1:f9:
f6:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:BD:05:42:0C:40:8E:F1:79:EE:5F:C5:8F:F0:4D:17:BF:48:CE:A3
X509v3 Authority Key Identifier:
keyid:BB:D2:DC:1D:2C:8F:BD:C0:85:16:AB:0B:B2:08:8C:37:EB:00:28:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u9LcHSyPvcCFFqsLsgiMN-sAKGM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/828f99-83b5-40ad-a5a7-06437ec466b8/1/IL0FQgxAjvF57l_Fj_BNF79IzqM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/828f99-83b5-40ad-a5a7-06437ec466b8/1/u9LcHSyPvcCFFqsLsgiMN-sAKGM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.47.37.0/24
Signature Algorithm: sha256WithRSAEncryption
bc:32:b6:38:f2:1b:ca:7b:d1:82:04:7b:9d:02:2c:fd:26:26:
88:39:da:02:a1:a3:ff:63:5a:44:f8:20:da:da:b5:b7:33:07:
86:c0:0c:b2:ab:67:f4:cd:89:20:82:a9:58:97:61:3f:63:7b:
8d:a4:51:68:1a:b0:5b:e5:50:64:60:89:32:17:19:5e:89:47:
cc:f8:f1:47:b8:50:6e:7e:1e:e1:e0:9e:be:d9:2c:ec:8b:1b:
4e:ff:12:39:6b:a6:fd:70:71:ad:9f:0a:c4:b0:15:fb:bd:5c:
e4:19:45:66:fb:8f:c0:e9:4f:f2:de:89:75:b7:d2:13:d9:13:
23:74:f7:f0:04:e5:8a:b1:e1:ca:02:80:0d:e3:69:3e:14:78:
4d:87:ca:75:ce:57:16:88:6b:8c:56:ff:d7:40:46:a3:b8:87:
a7:87:8c:96:50:fe:72:16:65:6f:ea:f8:49:43:5c:1d:3b:24:
6c:ba:e2:4e:fe:58:ff:f6:e9:fc:ab:2e:87:36:45:a6:12:1c:
a9:bb:b0:2d:91:ca:f2:96:c4:02:3c:78:13:91:b5:2c:83:91:
f6:4b:74:92:87:4d:6f:35:cd:89:35:84:3f:11:41:de:f9:93:
b8:9a:6c:08:98:01:6d:e2:38:eb:ba:8b:5a:1f:2b:4b:6a:8c:
7a:72:3e:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:15 2024 by rpki-client on console-ams.rpki-client.org