Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/ffTmVk1LdjvWzS8NyO10AI2mdKA.roa
File: ffTmVk1LdjvWzS8NyO10AI2mdKA.roa (raw, json)
Hash identifier: wYU7Clifm34owiP1/XmuGGBHIg2juPYHFRgsBgBNmUo=
Subject key identifier: 7D:F4:E6:56:4D:4B:76:3B:D6:CD:2F:0D:C8:ED:74:00:8D:A6:74:A0
Certificate issuer: /CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Certificate serial: 018FC2707BE59C0D9C54F4E863E84088481F
Authority key identifier: 83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/ffTmVk1LdjvWzS8NyO10AI2mdKA.roa
Signing time: Wed 29 May 2024 03:41:42 +0000
ROA not before: Wed 29 May 2024 03:41:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 152179
IP address blocks: 89.251.26.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 16 Jul 2024 12:23:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:c2:70:7b:e5:9c:0d:9c:54:f4:e8:63:e8:40:88:48:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Validity
Not Before: May 29 03:41:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7df4e6564d4b763bd6cd2f0dc8ed74008da674a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:22:d7:fa:36:f3:e9:ac:66:b7:36:e6:44:42:
00:8b:5c:ff:7d:ff:1d:25:0a:03:e7:dd:51:88:11:
a4:51:19:12:89:21:1d:b3:67:66:c3:59:a5:40:51:
fe:dd:87:28:72:9d:27:3b:24:f9:c1:08:39:64:f0:
be:c5:c9:7a:de:87:34:55:e6:32:a3:09:12:90:fc:
71:7a:5c:1f:03:e3:2a:5f:58:0b:4d:0d:2a:d6:21:
36:44:ad:d1:6a:eb:b7:c4:55:9f:f3:5d:57:22:a6:
8c:d4:a9:76:42:33:27:1b:cf:f4:d4:46:b8:fe:90:
43:2a:58:54:8b:e5:d3:b4:13:76:af:12:8c:aa:7b:
d6:b6:19:b4:56:db:8b:6c:90:eb:27:38:5b:7d:72:
29:9e:0f:a4:b4:62:cc:3d:4c:35:a8:f0:9c:b1:cd:
ee:09:a6:fd:cf:68:b5:fd:81:0c:7a:83:d1:d6:ac:
3e:f5:f2:2f:bb:2f:6b:09:c6:37:81:2a:32:45:2f:
f3:0e:62:32:93:86:cb:f4:ae:b3:a7:42:f3:6f:eb:
c0:24:b4:0b:f5:ac:c0:97:f9:31:4a:d5:d1:49:fb:
57:3f:50:0b:91:93:d0:04:ee:c5:19:d1:3d:24:b7:
2f:a1:1b:91:5f:4a:67:89:f2:aa:5a:5f:e5:a3:aa:
3a:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:F4:E6:56:4D:4B:76:3B:D6:CD:2F:0D:C8:ED:74:00:8D:A6:74:A0
X509v3 Authority Key Identifier:
keyid:83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/ffTmVk1LdjvWzS8NyO10AI2mdKA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/gz4_XvglVWsBSghdMlZbsMvFrI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.251.26.0/24
Signature Algorithm: sha256WithRSAEncryption
06:33:ea:28:b7:29:ed:95:66:8f:a1:31:22:7d:83:3d:8e:a5:
00:61:2d:20:42:30:3d:ce:d4:3c:a3:f0:9a:1b:a4:42:c0:58:
b9:ed:9d:2d:50:6a:7c:25:15:11:14:e6:19:4b:52:26:0d:05:
ae:25:00:1c:1b:ae:fb:05:00:83:1e:a3:1e:2a:ad:4a:62:a2:
ab:bd:d1:3c:71:db:0a:79:41:98:52:d0:4e:7c:b0:ca:b6:1d:
64:14:0c:8f:a6:68:aa:1f:65:bc:06:fd:b2:58:a4:7c:3f:77:
22:fb:80:88:db:55:71:84:c9:12:44:dc:83:c3:2f:6a:ec:fa:
6a:e8:9c:9c:42:94:22:43:56:b5:e6:c2:7a:1c:f2:65:67:45:
ec:d7:e2:5c:89:8b:e2:e6:91:34:c3:85:20:89:85:55:7e:8f:
ee:cb:52:ba:9d:8f:7f:04:d6:2a:91:fb:64:18:4f:a9:d5:5d:
21:d4:4e:b2:fc:b0:fa:07:95:c4:24:04:b3:76:f9:4c:d8:58:
4e:90:cc:1b:ce:05:cf:f1:fd:83:fd:93:1a:dd:80:93:06:e2:
9c:5b:fc:40:65:eb:95:e9:f0:55:ad:dd:f2:36:c7:09:d0:9c:
59:a3:a3:e4:75:4d:4e:45:b0:1a:9a:40:f9:38:a5:72:6c:97:
8d:2e:c8:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 16 15:47:46 2024 by rpki-client on console-fra.rpki-client.org