Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/tG7w44w_Bw6cofJl6elmjr6wzVs.roa
File: tG7w44w_Bw6cofJl6elmjr6wzVs.roa (raw, json)
Hash identifier: aSLghag/Q6ocx+ndztCUiOXRZzEVhUrIKOMPrVtwJ1o=
Subject key identifier: B4:6E:F0:E3:8C:3F:07:0E:9C:A1:F2:65:E9:E9:66:8E:BE:B0:CD:5B
Certificate issuer: /CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Certificate serial: 018973900AADCAE6145188F176DA11BE392F
Authority key identifier: FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/tG7w44w_Bw6cofJl6elmjr6wzVs.roa
Signing time: Thu 20 Jul 2023 13:49:27 +0000
ROA not before: Thu 20 Jul 2023 13:49:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6762
IP address blocks: 85.204.127.0/24 maxlen: 24
93.113.158.0/24 maxlen: 24
89.33.163.0/24 maxlen: 24
89.39.252.0/24 maxlen: 24
89.45.34.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 20 Jul 2023 13:56:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:73:90:0a:ad:ca:e6:14:51:88:f1:76:da:11:be:39:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Validity
Not Before: Jul 20 13:49:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b46ef0e38c3f070e9ca1f265e9e9668ebeb0cd5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:e9:cc:36:63:f5:ce:cd:b3:cf:18:42:0e:f2:
4b:ca:8a:ff:36:ca:86:20:5e:29:cf:98:80:71:22:
e2:48:ef:8c:cc:a4:1f:5e:98:34:4a:2a:50:a2:ea:
41:fd:17:13:98:55:a2:f6:5c:07:7a:87:eb:d0:58:
95:7b:10:95:e1:65:92:0f:84:46:92:23:ab:75:33:
6b:10:e2:91:1d:f1:2a:61:be:24:8a:da:86:de:97:
a3:3a:5b:01:55:d8:c8:3e:2a:a1:e0:b8:a6:8f:88:
48:02:2b:43:67:5e:7b:51:84:cc:61:29:18:5b:48:
48:c7:62:ec:d8:bc:6b:33:05:d7:bd:93:95:53:17:
54:29:2d:9b:c4:41:09:92:de:ae:ce:36:d9:7a:c2:
82:75:a5:17:00:0d:8e:a9:5a:41:71:38:ca:bb:19:
9f:49:84:0f:b4:a1:58:4f:9d:d4:ef:bf:29:d4:45:
a3:a0:15:f3:d8:48:ae:ee:34:45:c2:24:37:58:00:
01:81:93:99:2d:36:70:e7:f5:68:34:f7:e9:9d:e3:
49:6c:da:c2:b9:7d:51:6c:af:f2:d9:97:af:16:bc:
63:1e:84:e8:4f:eb:e7:45:4d:08:6c:b4:15:8d:54:
5c:1d:14:21:1b:cb:e8:ad:98:86:44:7d:35:6a:a9:
33:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:6E:F0:E3:8C:3F:07:0E:9C:A1:F2:65:E9:E9:66:8E:BE:B0:CD:5B
X509v3 Authority Key Identifier:
keyid:FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/tG7w44w_Bw6cofJl6elmjr6wzVs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/_liVLTk5NfDTvOgU_ZF40EaTrrk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.204.127.0/24
89.33.163.0/24
89.39.252.0/24
89.45.34.0/24
93.113.158.0/24
Signature Algorithm: sha256WithRSAEncryption
03:21:44:c7:11:b5:a1:77:71:1c:81:f2:23:88:be:e4:84:6f:
87:33:f9:dc:48:83:b9:a1:76:06:a2:0a:be:b5:f8:9f:54:69:
7c:72:54:2e:4a:08:84:9b:e5:c3:68:10:a6:ac:0f:e0:29:4c:
84:29:7e:fe:bb:e2:87:03:d9:3d:31:38:91:a5:75:2c:58:19:
73:d0:78:52:52:e8:ea:23:43:71:93:80:97:fe:b9:5c:00:7a:
a9:c8:87:df:80:59:de:63:c2:61:33:26:d6:bb:6c:dd:82:4a:
f8:59:e4:aa:78:fe:25:58:7f:71:2f:c9:47:4c:e8:26:b7:4d:
18:a9:f2:d6:61:93:2c:85:ef:46:6a:0b:94:10:21:ae:f9:3c:
cd:33:1f:34:63:b9:52:33:16:be:03:bb:2c:5f:b1:7a:bf:57:
65:fb:33:a0:e2:b7:2c:a6:2d:c9:80:d3:44:9e:3e:de:1f:21:
7b:c8:a7:9e:58:cf:71:d1:c5:95:a8:04:4e:37:76:e7:ac:89:
b2:70:1c:58:8d:fb:2f:fa:ab:1b:b9:1f:af:ad:e4:c8:e6:2a:
80:66:84:63:d6:c1:42:ab:c2:6a:bb:28:d7:c7:ce:0a:2d:bf:
05:2a:92:47:9e:78:ea:2d:79:8b:8a:e4:73:29:e1:93:c6:47:
17:7e:0d:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:38 2024 by rpki-client on console-ams.rpki-client.org