Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/075d2f-46bd-4bde-9835-95ff5c5dbb50/1/provrk72EyPVvkZYClcm8nWHg2w.roa
File: provrk72EyPVvkZYClcm8nWHg2w.roa (raw, json)
Hash identifier: 10JrigFzTxN25MPKp39I1Vaa5gGQ51T62di7Oy/QwyY=
Subject key identifier: A6:BA:2F:AE:4E:F6:13:23:D5:BE:46:58:0A:57:26:F2:75:87:83:6C
Certificate issuer: /CN=fd658693ec327ead4fe83a57b82601cc2552aabd
Certificate serial: 018E6B587DB2F7F7A993DD761CC81E11CD2B
Authority key identifier: FD:65:86:93:EC:32:7E:AD:4F:E8:3A:57:B8:26:01:CC:25:52:AA:BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_WWGk-wyfq1P6DpXuCYBzCVSqr0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/075d2f-46bd-4bde-9835-95ff5c5dbb50/1/provrk72EyPVvkZYClcm8nWHg2w.roa
Signing time: Sat 23 Mar 2024 12:45:45 +0000
ROA not before: Sat 23 Mar 2024 12:45:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 185.130.89.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 26 Mar 2024 20:29:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:6b:58:7d:b2:f7:f7:a9:93:dd:76:1c:c8:1e:11:cd:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd658693ec327ead4fe83a57b82601cc2552aabd
Validity
Not Before: Mar 23 12:45:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a6ba2fae4ef61323d5be46580a5726f27587836c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:3f:c0:97:18:f2:5c:44:2c:1e:55:90:10:12:
63:ac:81:b8:1b:18:4d:86:79:3e:48:70:c9:3f:c8:
ed:ea:3f:9e:4f:75:5e:f0:31:81:24:bb:2c:db:03:
3f:7c:20:23:ef:be:68:f1:07:50:ef:50:2a:82:23:
5c:01:99:23:0a:cc:a2:d2:d2:a6:3c:81:c5:0c:7f:
5c:dc:8b:c2:ac:50:25:18:a5:97:7a:5e:04:77:04:
2b:28:c0:58:7b:21:f1:e6:94:f2:ea:37:8f:86:fc:
e2:15:d4:61:30:ea:41:38:98:82:ac:09:c6:bf:6c:
8b:13:d2:18:35:6c:f0:35:ec:5f:ef:f3:21:44:3e:
23:a2:85:aa:80:26:bb:1b:ad:96:11:05:a9:1d:49:
85:5c:58:2b:24:28:33:a9:ad:73:01:be:64:37:28:
47:6a:1e:0e:60:c9:d1:3f:98:48:ff:7d:72:d0:b8:
6d:bd:aa:e1:fd:bc:fb:39:b6:78:fd:15:ce:ee:bb:
f4:d6:aa:2b:b1:ed:1b:50:ad:f9:c2:f2:61:af:23:
7f:78:46:fb:5f:e3:a7:64:8f:61:67:03:69:bf:53:
74:0a:5e:e5:ca:78:49:3c:7d:d6:b6:bc:2e:f4:40:
18:f2:7c:21:28:d7:45:a4:cf:b8:cf:60:25:05:4e:
f4:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:BA:2F:AE:4E:F6:13:23:D5:BE:46:58:0A:57:26:F2:75:87:83:6C
X509v3 Authority Key Identifier:
keyid:FD:65:86:93:EC:32:7E:AD:4F:E8:3A:57:B8:26:01:CC:25:52:AA:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_WWGk-wyfq1P6DpXuCYBzCVSqr0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/075d2f-46bd-4bde-9835-95ff5c5dbb50/1/provrk72EyPVvkZYClcm8nWHg2w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/075d2f-46bd-4bde-9835-95ff5c5dbb50/1/_WWGk-wyfq1P6DpXuCYBzCVSqr0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.130.89.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:04:49:08:a7:0e:01:84:a4:cf:39:6d:dd:c8:ae:9e:a9:e6:
1b:ab:1a:44:b1:5e:e8:6a:ee:a6:5e:2a:b5:19:af:0e:18:ae:
7d:0a:05:ac:9c:81:c5:5f:a0:33:c1:30:41:aa:d1:f4:73:71:
64:b1:18:1b:64:38:04:f4:ab:7c:fa:52:16:ae:3e:d6:1c:e0:
7c:f1:72:40:49:1a:25:60:8a:6a:21:8c:f7:01:fd:45:21:d8:
dc:6d:07:ba:93:f6:d8:a0:f5:1e:a8:c8:de:45:36:60:fb:ef:
29:5e:d8:38:68:c9:1f:53:1f:35:10:7a:ec:df:22:89:55:89:
12:b2:cc:4d:9e:81:a5:5c:33:67:1c:27:7d:18:99:cd:57:2d:
ec:2b:94:13:19:df:05:55:47:89:6e:d8:34:6e:aa:37:07:2c:
f4:3e:d6:a3:83:21:00:cc:e1:30:4b:eb:f8:bf:7b:00:40:b5:
38:67:3e:53:0c:e6:a7:93:d2:1e:bc:9f:ca:48:5a:1b:ee:6d:
0f:ac:8e:66:38:f4:a7:ed:3f:c7:b0:38:85:98:50:6e:fa:e1:
6f:71:4c:68:45:85:92:a5:21:51:81:1d:3f:3d:3b:4d:62:84:
85:85:fe:eb:dc:b6:62:a9:2d:3d:86:c5:00:00:5a:b5:c5:01:
80:6d:7c:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:01:10 2024 by rpki-client on console-fra.rpki-client.org