Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/64e3ab-228c-4a23-9216-f134e51cc05b/1/oYm0blShN4OH5ODCHlHRZq7WtlY.roa
File: oYm0blShN4OH5ODCHlHRZq7WtlY.roa (raw, json)
Hash identifier: FsXkme6Qes1bQHid1KXTnFggrRxl91DrKDmC+HpJcHQ=
Subject key identifier: A1:89:B4:6E:54:A1:37:83:87:E4:E0:C2:1E:51:D1:66:AE:D6:B6:56
Certificate issuer: /CN=845c58752f3336422ff0ee1726474591e7a41e5f
Certificate serial: 018572280684B0F73794945A6108271BE3E5
Authority key identifier: 84:5C:58:75:2F:33:36:42:2F:F0:EE:17:26:47:45:91:E7:A4:1E:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hFxYdS8zNkIv8O4XJkdFkeekHl8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/64e3ab-228c-4a23-9216-f134e51cc05b/1/oYm0blShN4OH5ODCHlHRZq7WtlY.roa
Signing time: Mon 02 Jan 2023 11:05:03 +0000
ROA not before: Mon 02 Jan 2023 11:05:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 4323
IP address blocks: 89.191.65.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:28:06:84:b0:f7:37:94:94:5a:61:08:27:1b:e3:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=845c58752f3336422ff0ee1726474591e7a41e5f
Validity
Not Before: Jan 2 11:05:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a189b46e54a1378387e4e0c21e51d166aed6b656
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:9c:40:ee:e5:38:80:62:8d:e4:f6:ed:9d:26:
0b:49:8d:a6:ba:cb:10:7f:a1:88:96:24:b3:a8:42:
f9:1f:78:9d:79:e7:07:bc:05:c4:c4:04:7a:af:3c:
44:84:45:74:24:d1:eb:ec:3a:85:05:a8:b5:23:1e:
b4:77:08:bd:e5:83:ee:b4:ab:7c:00:75:bd:89:84:
5b:da:77:82:45:a1:b8:9f:fe:87:af:35:97:70:96:
0c:1c:d1:d6:2a:bf:42:f8:31:c1:52:a1:44:86:9d:
62:70:4b:b0:ed:97:70:0e:97:89:de:e7:2d:d2:70:
79:4c:b9:bf:18:a0:8f:08:08:32:7a:67:2b:14:cd:
e4:b6:0a:dd:78:dc:85:a4:02:25:1e:ad:84:a3:cf:
a0:e8:c3:46:a1:fa:94:38:a3:d4:ef:1e:43:2f:56:
69:dd:36:99:f6:26:9d:ff:76:16:3a:73:cb:5b:79:
97:69:bc:69:ec:f2:1f:3f:2d:28:5a:a3:f7:8c:c5:
ab:f0:22:70:1e:e5:db:22:60:cc:e3:51:73:8f:92:
ea:fa:9d:23:16:14:82:90:a0:b7:0d:f2:7c:80:71:
e2:6a:5c:bb:e3:e3:98:a3:95:ce:9d:81:17:9b:9f:
8d:fd:eb:43:4c:b3:51:11:b0:d7:90:60:78:9f:f8:
ad:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:89:B4:6E:54:A1:37:83:87:E4:E0:C2:1E:51:D1:66:AE:D6:B6:56
X509v3 Authority Key Identifier:
keyid:84:5C:58:75:2F:33:36:42:2F:F0:EE:17:26:47:45:91:E7:A4:1E:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hFxYdS8zNkIv8O4XJkdFkeekHl8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/64e3ab-228c-4a23-9216-f134e51cc05b/1/oYm0blShN4OH5ODCHlHRZq7WtlY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/64e3ab-228c-4a23-9216-f134e51cc05b/1/hFxYdS8zNkIv8O4XJkdFkeekHl8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.191.65.0/24
Signature Algorithm: sha256WithRSAEncryption
55:22:07:b9:54:79:8d:99:f1:c2:0a:01:67:88:60:da:31:bc:
d9:bd:ce:3e:1f:8d:16:2d:f3:63:43:34:93:0d:57:a5:ad:81:
d3:75:a2:54:ef:93:ca:90:b3:a6:06:d8:f1:39:81:d2:f4:53:
6d:53:f0:93:ea:1b:91:73:8a:f5:47:7a:8c:c1:49:5d:3a:c1:
9c:58:2f:33:1a:75:13:81:3e:5c:9a:88:7f:53:ce:07:86:d0:
bb:34:b6:0e:88:cb:23:17:ac:34:23:8a:c2:9c:88:1d:4e:0c:
39:20:9e:c5:d3:2c:a0:16:b6:1a:6a:cc:ea:c9:9a:77:d2:a1:
b6:17:5d:e7:23:0b:67:cc:eb:b4:5d:8d:92:85:b1:86:8c:ff:
fc:3f:6d:f2:aa:7d:11:95:2d:77:3f:01:8a:ab:f9:a4:75:b7:
d1:c7:00:7d:40:fa:e1:9d:d3:67:85:e0:f1:99:98:bd:e7:bf:
7e:58:c5:da:d2:1f:c3:e1:28:76:ea:d0:cc:c1:36:88:1c:56:
6f:23:54:2d:97:4a:4f:a4:d8:b6:5a:ac:53:6d:3f:3c:4e:39:
56:d8:b1:97:a9:16:0c:d3:25:a2:1a:c5:c7:86:f9:f2:4f:33:
32:d7:49:ed:a9:c4:2e:c0:0f:21:1e:4b:aa:ae:00:4e:62:ce:
4f:90:07:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:07 2024 by rpki-client on console-fra.rpki-client.org