Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/zTACSol2RUqCEJdraDkgZHNV1IU.roa
File: zTACSol2RUqCEJdraDkgZHNV1IU.roa (raw, json)
Hash identifier: LLCwXT3ybEbC1WSj0ATHPmDKSKp4ph4w2sAHG2mRVa4=
Subject key identifier: CD:30:02:4A:89:76:45:4A:82:10:97:6B:68:39:20:64:73:55:D4:85
Certificate issuer: /CN=7508475ff0d8ec960336016e0e04221a98e5ecf2
Certificate serial: 018CA4335B3E081A2FCDEA7B79EA6C71802D
Authority key identifier: 75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/zTACSol2RUqCEJdraDkgZHNV1IU.roa
Signing time: Tue 26 Dec 2023 03:37:58 +0000
ROA not before: Tue 26 Dec 2023 03:37:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9123
IP address blocks: 89.23.112.0/24 maxlen: 24
89.23.118.0/24 maxlen: 24
89.23.119.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:30:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:a4:33:5b:3e:08:1a:2f:cd:ea:7b:79:ea:6c:71:80:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7508475ff0d8ec960336016e0e04221a98e5ecf2
Validity
Not Before: Dec 26 03:37:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cd30024a8976454a8210976b683920647355d485
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:2d:76:83:9a:5a:da:50:0d:62:2b:db:b1:a9:
b7:a1:9c:41:02:63:3a:ec:6c:a7:b2:bf:ef:3f:b7:
f9:7f:e5:65:f1:8b:48:d7:a1:fc:68:90:a3:16:65:
f8:f1:1f:f1:9a:0c:f2:51:eb:14:a0:8b:4b:2e:b4:
ac:14:e7:cc:80:ea:82:cd:fd:0e:51:35:7a:0d:f7:
7d:9d:e0:bc:0f:c4:2b:e5:36:b8:6d:ea:89:44:77:
07:bf:49:e8:5f:9c:bf:f1:94:4c:0c:73:ee:2f:2d:
14:9d:27:8d:ec:5f:18:e7:77:1d:05:54:ad:aa:5e:
f8:0f:53:00:0b:ed:9c:ea:e9:56:5f:15:8a:a3:ec:
67:0a:3b:fd:fd:0c:5c:80:66:c8:43:48:db:22:1c:
ed:0e:0c:5c:50:86:62:de:f3:14:a0:88:af:13:a7:
35:75:92:74:f7:69:fa:ad:e0:5e:bb:9b:7e:1f:cb:
73:a4:8f:4b:01:5b:75:52:f9:a7:e9:0e:22:18:cc:
e6:53:1a:0a:5e:7c:c6:f7:93:f1:d1:3f:ba:07:29:
48:c2:a0:9d:77:46:fe:70:64:0b:52:40:52:65:d4:
b5:e6:8c:89:bd:f9:a1:ab:25:c7:0e:c3:38:fc:b3:
54:8a:25:95:7f:70:c9:d8:1b:a2:93:81:52:a0:4e:
4d:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:30:02:4A:89:76:45:4A:82:10:97:6B:68:39:20:64:73:55:D4:85
X509v3 Authority Key Identifier:
keyid:75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/zTACSol2RUqCEJdraDkgZHNV1IU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/dQhHX_DY7JYDNgFuDgQiGpjl7PI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.23.112.0/24
89.23.118.0/23
Signature Algorithm: sha256WithRSAEncryption
30:ea:51:06:26:60:6e:5c:1c:0c:79:a9:0c:0f:b3:b5:0c:e4:
a0:e3:aa:0e:f9:db:ee:e5:8a:81:cd:1b:8c:f6:fa:ed:3e:11:
05:a2:ce:b3:00:02:b2:cf:89:c5:28:d0:ba:c0:7c:e3:0e:5d:
3c:56:38:a8:83:bd:d4:4d:16:7b:4f:87:ae:61:1b:c5:35:09:
0a:c0:e7:47:f1:84:8e:a5:de:2a:04:72:32:c4:28:d3:bf:e3:
b7:3f:f2:7f:a5:43:36:22:d0:0c:1b:a2:03:df:41:75:96:53:
32:f5:8d:d7:3a:87:90:68:bf:c4:5c:b1:e2:99:7e:79:44:a0:
2a:7b:71:23:d4:4f:28:00:d2:01:25:a9:fc:9a:7a:af:a6:8c:
50:87:a8:b1:c5:fa:97:b3:9a:ca:06:6c:b6:f2:8c:1d:f3:44:
8a:53:6d:be:ea:2a:ec:a1:a3:ec:9d:8e:8a:d2:8b:d3:ff:db:
97:3c:61:b7:7c:66:ac:ec:e7:5c:89:37:18:24:8a:5a:13:0b:
38:2a:de:69:7c:6a:2f:5b:c5:50:7a:a4:94:b3:47:92:9f:27:
80:13:4d:13:96:82:cc:14:56:bd:8d:fd:b5:7a:b3:a7:b6:75:
4c:0d:bf:3b:79:ad:86:6e:aa:bf:f5:c7:bc:22:fb:91:74:1e:
06:99:43:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:33 2024 by rpki-client on console-ams.rpki-client.org