Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/xvyFHEi_9Vwj1BJMDLDcddWQFos.roa
File: xvyFHEi_9Vwj1BJMDLDcddWQFos.roa (raw, json)
Hash identifier: xLZrbYTR7BbpssQ+ABk290jOgiCWWBgQ5iJSTrYN/Cs=
Subject key identifier: C6:FC:85:1C:48:BF:F5:5C:23:D4:12:4C:0C:B0:DC:75:D5:90:16:8B
Certificate issuer: /CN=7508475ff0d8ec960336016e0e04221a98e5ecf2
Certificate serial: 01856EAFF56EC7DF3474895F39B1E6717729
Authority key identifier: 75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/xvyFHEi_9Vwj1BJMDLDcddWQFos.roa
Signing time: Sun 01 Jan 2023 18:55:03 +0000
ROA not before: Sun 01 Jan 2023 18:55:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206425
IP address blocks: 89.23.107.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 30 Jan 2023 10:25:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:af:f5:6e:c7:df:34:74:89:5f:39:b1:e6:71:77:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7508475ff0d8ec960336016e0e04221a98e5ecf2
Validity
Not Before: Jan 1 18:55:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c6fc851c48bff55c23d4124c0cb0dc75d590168b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:37:c9:67:62:8e:4e:e2:03:b9:74:4b:2c:1c:
08:5b:cb:ef:98:9d:be:4d:bd:2b:a9:35:4d:5d:c7:
b6:57:1a:30:b1:39:f4:95:d0:e3:e8:0c:00:02:ce:
0c:3e:95:8f:1b:7f:a9:7a:3c:e5:36:ab:de:db:35:
3f:10:42:bd:b2:60:34:60:ad:e1:c1:95:b1:c7:e7:
dd:78:c5:8e:db:92:80:98:84:b0:43:4c:0b:6f:e0:
de:3c:71:0c:d1:04:3f:7d:d1:4c:2d:cb:4d:81:b6:
8f:76:b8:cd:d0:16:9f:de:8c:74:1f:d8:21:a1:6f:
e7:61:53:18:2f:8b:bf:22:33:82:2d:01:22:03:b2:
06:69:d4:b0:f3:a9:f4:c3:20:58:57:97:26:71:61:
f8:9f:bf:ca:fc:c6:f3:b8:7a:1a:70:51:13:e1:61:
e6:7f:b2:ec:ef:c6:2b:a2:16:87:3b:ca:20:c5:77:
4b:27:67:12:28:f8:05:da:c7:b7:72:b1:7b:f9:9b:
b4:58:f6:b1:f2:82:54:41:de:9b:0c:d6:9c:c9:8d:
f3:f7:46:96:c7:ee:6a:d3:b2:95:f5:8b:a2:37:4b:
b8:3d:f2:9a:6e:68:70:3a:5b:20:f2:3a:b5:ec:43:
a0:b7:9d:e7:66:7a:bf:40:82:eb:07:7e:b7:72:82:
5e:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:FC:85:1C:48:BF:F5:5C:23:D4:12:4C:0C:B0:DC:75:D5:90:16:8B
X509v3 Authority Key Identifier:
keyid:75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/xvyFHEi_9Vwj1BJMDLDcddWQFos.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/dQhHX_DY7JYDNgFuDgQiGpjl7PI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.23.107.0/24
Signature Algorithm: sha256WithRSAEncryption
10:7c:ba:98:8e:a1:66:f6:3c:f3:cc:e4:e0:fe:d4:83:d3:a6:
d3:b3:a7:f1:59:d6:2e:01:09:1f:9d:4b:7e:b1:96:34:d0:53:
5d:8f:30:16:66:1a:5e:fc:08:9e:d2:3e:ad:d1:12:e5:9a:05:
96:1d:ac:dd:1a:9b:2b:e5:9c:fc:9e:ae:48:a3:b4:8c:c7:4a:
60:0e:97:ad:c0:05:20:15:3d:e7:f8:bd:64:4e:92:84:34:61:
9e:2a:2b:2e:61:50:8c:43:f9:68:08:57:15:17:9d:27:eb:b7:
74:b5:44:ac:df:7f:03:16:a2:69:66:50:42:43:4d:7b:6d:64:
d6:43:3e:4f:9f:c7:72:49:cc:11:b1:e1:b0:63:03:75:70:94:
c3:41:a6:06:84:c3:57:c7:6f:4c:09:7b:04:ea:a0:9c:dc:8f:
91:bb:96:8c:ce:dc:31:04:c0:cc:ad:9c:b9:04:5e:0c:26:e9:
81:df:40:05:5d:13:b2:8c:50:4c:c9:60:76:f3:39:bc:a0:2b:
5c:b8:ea:18:e6:a0:ff:52:7d:17:81:63:74:05:8c:71:31:88:
99:46:3a:6b:c4:36:da:94:85:1c:87:a0:aa:ee:5a:1f:ba:8b:
72:5f:8c:67:96:b8:85:ba:12:e9:47:7d:67:d6:52:90:b0:25:
66:ff:f2:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:33 2024 by rpki-client on console-ams.rpki-client.org