Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/4NShBpYA2QebiXAPz03JoGLtc-A.roa
File: 4NShBpYA2QebiXAPz03JoGLtc-A.roa (raw, json)
Hash identifier: VxC7AC6KZWSl+3uA0YWfzwLBXh8fS55JUCwBRzmqnyM=
Subject key identifier: E0:D4:A1:06:96:00:D9:07:9B:89:70:0F:CF:4D:C9:A0:62:ED:73:E0
Certificate issuer: /CN=7508475ff0d8ec960336016e0e04221a98e5ecf2
Certificate serial: 01856EAFF31C54E4C784C2B96DE416A382CA
Authority key identifier: 75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/4NShBpYA2QebiXAPz03JoGLtc-A.roa
Signing time: Sun 01 Jan 2023 18:55:02 +0000
ROA not before: Sun 01 Jan 2023 18:55:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47550
IP address blocks: 89.23.111.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:30:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:af:f3:1c:54:e4:c7:84:c2:b9:6d:e4:16:a3:82:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7508475ff0d8ec960336016e0e04221a98e5ecf2
Validity
Not Before: Jan 1 18:55:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e0d4a1069600d9079b89700fcf4dc9a062ed73e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:01:08:7f:78:cc:f3:31:e2:7e:ca:79:eb:cf:
46:57:bd:2b:4a:01:79:d9:bf:b8:e8:8a:38:9d:16:
f1:ee:ad:c5:77:93:5d:38:58:99:87:61:8b:ee:67:
ba:a3:df:43:72:b7:42:51:b0:70:46:87:1b:1d:8a:
eb:02:96:62:41:c2:07:d4:4d:7b:6d:c4:3e:0e:eb:
29:a2:8f:c1:b3:a1:d3:c6:27:10:df:0c:33:e3:77:
13:c1:10:f7:92:b7:a7:ee:d1:bf:1f:9c:5a:30:01:
7b:7c:26:cf:3d:0f:dd:51:9b:8a:41:19:e0:ec:e8:
fc:c9:e9:4c:9e:86:e4:a3:54:cf:b0:21:54:32:ee:
38:3b:ce:56:1c:cc:35:fb:7b:87:8b:2e:1c:bc:f3:
48:a0:65:95:fa:f8:d2:d6:21:12:35:f8:4c:8c:43:
4f:e7:f1:56:50:ec:ab:7b:72:52:47:69:83:ff:81:
f9:d4:43:f4:83:5d:1c:94:a9:75:b6:95:00:28:37:
4f:8e:db:19:b1:e2:3b:cb:02:65:4a:10:cb:f7:c6:
5d:0b:4a:e4:52:6b:fe:6b:c4:63:39:76:13:08:0c:
8f:bc:3a:09:23:f2:ac:68:aa:56:33:8f:6f:23:24:
93:5b:1b:0e:c1:2c:8c:88:53:b6:55:3c:c4:9f:f9:
c6:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:D4:A1:06:96:00:D9:07:9B:89:70:0F:CF:4D:C9:A0:62:ED:73:E0
X509v3 Authority Key Identifier:
keyid:75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/4NShBpYA2QebiXAPz03JoGLtc-A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/dQhHX_DY7JYDNgFuDgQiGpjl7PI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.23.111.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:32:cb:c4:dc:21:51:6f:bf:be:67:95:86:92:37:cc:76:13:
a8:0f:96:14:53:64:6e:eb:f2:85:77:f3:de:b6:08:4c:fd:6d:
57:b7:c7:a8:e3:6d:e9:fb:49:e6:b3:b8:05:5a:61:fa:d6:42:
b8:9f:4f:d8:80:d7:56:bc:f7:3d:42:ec:78:73:7b:88:16:bd:
68:42:88:ab:6f:fe:53:b7:f7:bb:f9:c4:0d:13:85:8f:04:4a:
47:01:4c:de:d7:78:1b:b8:eb:67:da:f7:8a:9d:62:b2:37:ed:
d1:c2:4f:9a:51:62:51:08:ec:4c:c4:91:80:5c:19:98:ed:88:
61:d8:5d:f2:65:a7:94:57:ee:35:6a:a9:06:b4:e0:90:a3:9d:
22:a4:1c:f4:82:d1:fa:8e:45:13:fd:28:2a:03:6e:da:a1:2c:
55:e2:41:e9:d4:d0:ac:5e:02:d7:ab:6f:33:3a:51:28:0d:b2:
ba:89:b2:7f:3e:2f:34:f3:a7:1b:78:af:bd:08:32:01:18:b9:
3f:e3:85:c7:e9:b9:d0:90:40:ba:8d:9a:ca:01:cc:8d:71:08:
73:8e:e0:df:62:fd:1b:e3:c4:13:4d:aa:e6:ce:56:25:d3:13:
6d:d4:49:a8:3e:6b:ef:d2:ec:ec:b3:1c:1b:a4:fb:4f:51:1b:
51:f1:77:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:01:01 2024 by rpki-client on console-fra.rpki-client.org