Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/b09f74-179b-4ed2-acf8-56e6e2dc8885/1/1-n1dENpHZmBztSH7BfggM3NE0A8.roa
File: 1-n1dENpHZmBztSH7BfggM3NE0A8.roa (raw, json)
Hash identifier: ReWgIC8jp3k3DCI1y8SF2wNagC/Gc5CHIOCfALZIARY=
Subject key identifier: FA:7D:5D:10:DA:47:66:60:73:B5:21:FB:05:F8:20:33:73:44:D0:0F
Certificate issuer: /CN=9a97515657175a946cc8db6196ca1b2154e38114
Certificate serial: 018E50F2FB16ECDB07F39C67D0B3A46F244E
Authority key identifier: 9A:97:51:56:57:17:5A:94:6C:C8:DB:61:96:CA:1B:21:54:E3:81:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mpdRVlcXWpRsyNthlsobIVTjgRQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/b09f74-179b-4ed2-acf8-56e6e2dc8885/1/1-n1dENpHZmBztSH7BfggM3NE0A8.roa
Signing time: Mon 18 Mar 2024 09:44:45 +0000
ROA not before: Mon 18 Mar 2024 09:44:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 31126
IP address blocks: 89.40.28.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 18 Mar 2024 11:44:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:50:f2:fb:16:ec:db:07:f3:9c:67:d0:b3:a4:6f:24:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a97515657175a946cc8db6196ca1b2154e38114
Validity
Not Before: Mar 18 09:44:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fa7d5d10da47666073b521fb05f820337344d00f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:d3:b9:d3:0f:c5:b1:ee:ff:56:e8:a7:b4:82:
c4:43:ed:ee:70:a3:b8:19:a8:cc:da:49:9d:1b:df:
c3:ba:a6:27:08:a2:bb:80:7f:82:d7:71:8b:09:ff:
83:74:bb:1c:07:be:2f:7b:a2:72:6e:96:1b:4e:0b:
bf:db:1b:6f:9e:e5:c0:08:63:0f:81:07:9f:e1:41:
5d:65:3b:45:3b:12:8e:e9:82:60:67:40:2c:f3:ca:
56:57:25:aa:7f:cb:11:ac:7b:5c:fe:96:3a:4a:bb:
e9:6a:b8:bf:59:77:fd:64:2d:be:da:bf:56:50:cb:
29:78:b9:30:60:cb:71:a9:df:18:80:f2:ef:75:ff:
94:a9:f3:57:eb:b1:13:43:da:3a:21:b9:d1:94:fc:
36:30:6c:48:a0:8f:7e:f4:da:52:30:bd:95:17:d5:
98:2a:6f:7b:20:5f:2c:72:fd:bd:e6:62:6f:b1:d8:
f6:cc:fa:95:38:07:96:03:9c:5f:2d:cd:c6:78:74:
25:15:a2:11:29:c6:19:e4:83:24:de:a2:1c:c8:44:
a5:25:1e:03:79:c6:88:55:be:c4:4b:53:f6:f4:da:
71:68:bf:d9:51:39:b4:7e:46:58:b7:b6:0b:a2:47:
72:e8:e0:74:e2:84:67:74:13:a3:fa:e5:98:d9:2f:
79:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:7D:5D:10:DA:47:66:60:73:B5:21:FB:05:F8:20:33:73:44:D0:0F
X509v3 Authority Key Identifier:
keyid:9A:97:51:56:57:17:5A:94:6C:C8:DB:61:96:CA:1B:21:54:E3:81:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mpdRVlcXWpRsyNthlsobIVTjgRQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/b09f74-179b-4ed2-acf8-56e6e2dc8885/1/1-n1dENpHZmBztSH7BfggM3NE0A8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/b09f74-179b-4ed2-acf8-56e6e2dc8885/1/mpdRVlcXWpRsyNthlsobIVTjgRQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.40.28.0/24
Signature Algorithm: sha256WithRSAEncryption
42:7c:09:aa:59:cb:e4:99:1f:7b:b8:4f:a6:22:50:b9:5b:84:
7b:21:c6:26:89:62:25:9c:5d:15:b8:6a:be:de:50:62:06:ae:
76:68:0c:b3:35:e2:2d:4a:47:b8:d6:d8:e7:fb:96:97:3b:11:
41:01:b6:58:9a:2d:02:56:6a:37:d3:19:12:5b:f1:d7:93:78:
10:45:da:7f:b0:14:1a:a3:1f:1a:f2:2f:ea:d6:f1:fb:0f:4f:
af:98:3f:13:d9:a7:f8:6a:71:98:ef:ae:90:f1:c8:59:3c:47:
4d:3a:83:70:1f:ef:6d:68:50:d4:b6:65:72:28:d2:05:26:d1:
ca:0f:b3:31:f4:c2:c8:97:f8:89:fb:05:e6:54:c5:54:60:d2:
8e:55:61:c8:c6:f0:f6:5c:88:6d:6a:f3:a0:e3:79:c8:3f:00:
95:26:84:82:9a:73:ac:c9:f5:8b:35:bc:20:91:b9:94:54:16:
65:5a:cb:30:1f:98:db:67:1b:d9:dc:61:5e:5b:70:c6:01:89:
9a:70:c2:c7:5f:4b:19:c7:6a:30:71:c7:57:af:6c:95:78:80:
ed:9e:92:b9:5e:0b:51:ec:39:aa:08:31:9b:05:38:c7:3c:bc:
05:ae:27:e0:5e:98:2e:77:7b:4f:3d:97:e2:fa:7c:23:bb:3a:
81:bc:46:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 18 17:22:18 2024 by rpki-client on console.sobornost.net