Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/07JJWugbqCvqlZz0m-4cPj7WJtY.roa
File: 07JJWugbqCvqlZz0m-4cPj7WJtY.roa (raw, json)
Hash identifier: T3rnm7wUu+MoLbPwpKk6mGmiHaP620CHsJxkxRyZbSg=
Subject key identifier: D3:B2:49:5A:E8:1B:A8:2B:EA:95:9C:F4:9B:EE:1C:3E:3E:D6:26:D6
Certificate issuer: /CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Certificate serial: 018FC565A034FC258DDFC028F7FB3921C854
Authority key identifier: FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/07JJWugbqCvqlZz0m-4cPj7WJtY.roa
Signing time: Wed 29 May 2024 17:28:42 +0000
ROA not before: Wed 29 May 2024 17:28:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216039
IP address blocks: 89.43.73.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 26 Jun 2024 09:11:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:c5:65:a0:34:fc:25:8d:df:c0:28:f7:fb:39:21:c8:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Validity
Not Before: May 29 17:28:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d3b2495ae81ba82bea959cf49bee1c3e3ed626d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:b5:1c:3e:5d:b7:f4:5b:48:3d:4e:7f:48:bb:
cd:87:57:af:b2:8a:35:ea:22:2b:bd:0d:59:cd:0c:
6d:fe:60:ab:6c:fa:54:0f:e5:63:77:7f:c6:74:00:
7d:55:60:f2:22:06:f1:4d:75:12:e3:3b:24:12:dd:
5d:73:62:bc:5d:e1:01:c6:45:db:7b:1e:0c:29:c3:
8e:b3:af:96:ae:ce:3c:dc:ce:64:5b:11:b3:a4:27:
b0:de:19:5f:cc:1e:5d:93:0d:06:13:2b:ac:2b:97:
79:7e:66:7b:3f:73:7b:fe:86:04:31:7a:c8:a5:8e:
9d:bc:71:4a:eb:dd:3a:fe:ad:b4:cc:7b:45:95:fc:
7b:e5:9b:5b:11:25:e6:27:b7:3e:05:b9:bc:9f:87:
de:d4:a4:92:cb:b7:bb:32:87:9a:9d:70:16:fd:97:
ca:b4:a9:a3:b8:bb:60:06:09:a1:05:03:c4:ec:75:
8b:21:c2:76:b3:ff:81:c7:0d:63:aa:c7:47:8a:48:
0c:cf:07:ff:21:6c:9c:37:33:14:f9:fc:8e:15:2e:
f8:82:ef:54:b6:4b:d8:2a:7c:34:02:f1:79:50:9c:
6a:91:02:11:64:06:02:84:ac:3c:fd:31:d1:3c:0e:
24:8e:37:70:02:7b:f4:e5:b7:0d:ca:33:6b:72:b0:
af:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:B2:49:5A:E8:1B:A8:2B:EA:95:9C:F4:9B:EE:1C:3E:3E:D6:26:D6
X509v3 Authority Key Identifier:
keyid:FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/07JJWugbqCvqlZz0m-4cPj7WJtY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/_liVLTk5NfDTvOgU_ZF40EaTrrk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.43.73.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:73:e8:8d:35:40:cb:d3:71:2c:b7:b6:b6:8e:46:6b:03:d6:
0f:8e:92:f1:d5:51:cd:08:25:10:f1:ef:4f:5e:d0:25:01:97:
69:84:a9:ab:1a:32:30:d1:46:87:de:bb:d9:66:29:5b:72:a8:
f9:c3:80:77:e5:78:0e:5a:99:80:20:9a:8b:c9:52:2c:4d:9b:
c1:93:28:2e:66:56:ef:61:ba:7c:91:8d:05:52:f6:96:f6:f8:
9d:29:dd:62:e0:7d:8e:ad:a1:ef:32:a2:35:33:14:6a:80:0b:
03:f4:93:5d:e2:80:0a:0b:37:b9:c5:83:5d:52:1b:80:da:b7:
a9:23:d4:88:c0:63:24:15:70:f0:ea:a1:a9:73:88:02:23:10:
e0:0f:92:0a:c4:59:32:71:82:2c:72:1c:a0:77:b8:a4:f6:f2:
0f:9f:42:32:43:ce:24:d6:b2:c8:16:f5:d6:64:3c:34:6b:0a:
9c:ff:04:ad:59:8f:a0:10:7b:d6:72:4d:e4:0d:d8:54:1a:e4:
e2:ba:22:bd:17:bb:c8:67:81:70:fd:b0:7f:f0:d3:d9:e4:a9:
1d:d9:07:5d:02:14:fd:86:1a:94:72:be:15:cd:67:1d:49:71:
8e:eb:2a:62:e3:58:e1:30:d5:04:17:e6:15:88:2f:cc:38:9c:
36:5d:ef:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 26 14:22:48 2024 by rpki-client on console-ams.rpki-client.org