Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/thbXa1fGkhEJ-hwKjQOwBJWofuI.roa
File: thbXa1fGkhEJ-hwKjQOwBJWofuI.roa (raw, json)
Hash identifier: yQ29N/4Dgo+hnuOF0l5Tv6YQwQVcO/f+/3PzZfXz8k8=
Subject key identifier: B6:16:D7:6B:57:C6:92:11:09:FA:1C:0A:8D:03:B0:04:95:A8:7E:E2
Certificate issuer: /CN=da00e981953061972c896bd6d27738d083aadb0e
Certificate serial: 0189198A3E6046CBCC5E0AEDEFA4CFD3EA3D
Authority key identifier: DA:00:E9:81:95:30:61:97:2C:89:6B:D6:D2:77:38:D0:83:AA:DB:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2gDpgZUwYZcsiWvW0nc40IOq2w4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/thbXa1fGkhEJ-hwKjQOwBJWofuI.roa
Signing time: Mon 03 Jul 2023 02:17:17 +0000
ROA not before: Mon 03 Jul 2023 02:17:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211975
IP address blocks: 89.37.106.0/24 maxlen: 24
89.44.210.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:19:8a:3e:60:46:cb:cc:5e:0a:ed:ef:a4:cf:d3:ea:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da00e981953061972c896bd6d27738d083aadb0e
Validity
Not Before: Jul 3 02:17:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b616d76b57c6921109fa1c0a8d03b00495a87ee2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:3d:ea:d3:45:31:98:57:8e:b1:34:c7:34:5d:
36:84:24:bf:d0:84:05:26:7e:23:97:bc:3d:2c:10:
ac:5e:1d:40:21:e5:95:55:9d:bb:95:96:08:77:e0:
b1:83:2c:b7:46:89:e5:7f:26:13:01:81:1e:9d:61:
98:47:d9:77:da:98:e3:3b:d8:22:9d:2d:33:55:84:
b0:33:23:12:fd:37:7a:0b:89:ab:3b:c5:cd:15:41:
ff:f0:50:f5:e8:35:e3:6b:6f:66:01:45:3d:0b:54:
54:a9:9a:e4:14:98:84:56:24:bf:53:0d:37:27:81:
09:a6:9b:b0:df:05:20:cb:f4:9b:2b:62:64:e3:32:
d5:bd:86:4d:0a:b5:cb:39:bd:e4:86:cf:ad:c9:bd:
56:53:00:a5:fb:3f:f4:3f:86:aa:91:5b:d2:99:4c:
87:74:a3:13:64:b3:c1:8f:03:90:7d:5c:2e:05:a8:
14:22:38:7f:aa:30:83:df:e2:77:3a:2e:94:16:63:
fb:81:49:6f:56:11:fc:c2:12:c5:24:7e:c2:78:76:
60:9d:4a:59:28:60:d0:63:51:47:b4:50:05:4a:aa:
fe:3d:61:b3:39:50:83:58:51:a4:e9:27:54:74:2e:
08:d0:14:cb:67:75:9f:6a:cd:68:a5:98:7a:82:31:
26:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:16:D7:6B:57:C6:92:11:09:FA:1C:0A:8D:03:B0:04:95:A8:7E:E2
X509v3 Authority Key Identifier:
keyid:DA:00:E9:81:95:30:61:97:2C:89:6B:D6:D2:77:38:D0:83:AA:DB:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2gDpgZUwYZcsiWvW0nc40IOq2w4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/thbXa1fGkhEJ-hwKjQOwBJWofuI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/2gDpgZUwYZcsiWvW0nc40IOq2w4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.37.106.0/24
89.44.210.0/24
Signature Algorithm: sha256WithRSAEncryption
64:0a:8f:62:86:26:93:03:ab:c3:f3:1c:e4:74:8f:a9:62:86:
65:59:5e:8a:4c:52:04:ee:95:fc:fe:e1:5d:91:32:c9:25:60:
e8:e9:e0:24:c9:57:fd:dc:8f:24:5a:2a:c4:76:80:b4:0f:53:
b8:87:6a:7c:3a:e5:e9:e1:24:30:1e:78:55:48:90:c2:c2:62:
61:63:bb:b0:d4:cc:e5:7a:fd:5d:7d:5e:56:4c:3c:0b:65:b6:
5e:d6:0d:c8:e1:cb:14:bb:c1:2d:a8:97:43:06:28:cd:d0:b4:
e9:ed:c7:1e:19:49:c6:d7:f9:73:7e:25:f6:37:4b:ed:97:d9:
09:bd:dc:18:55:79:50:f1:a3:32:ed:de:c7:7a:22:c0:c9:93:
08:34:61:40:f9:08:aa:23:cc:d0:e6:2f:4e:60:f1:9b:8d:10:
54:fb:5f:65:23:4b:4c:de:4c:d1:dc:78:7a:27:21:de:a8:23:
22:24:ec:4c:ad:dc:3d:c5:73:17:22:50:7a:dc:06:21:c1:a9:
63:fe:98:26:91:8f:59:de:e3:8e:08:bd:18:41:e4:bf:5b:b8:
e9:82:32:c5:3d:ac:e0:6c:42:12:3a:85:94:a1:71:e1:89:34:
69:bb:7c:e1:5d:7d:c0:2e:f4:8f:2a:1c:3f:c1:12:f2:e8:7e:
fa:8f:be:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 3 01:05:54 2023 by rpki-client on console-fra.rpki-client.org