Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/c2788f-8c8c-47bb-b922-aa6ed4dafb3b/1/n47yR-yL1-ND2E6j8wPJkWAw23I.roa
File: n47yR-yL1-ND2E6j8wPJkWAw23I.roa (raw, json)
Hash identifier: eJ0U28gmX2eiQVn3F7lf36ac1N8QmyaolPkI0jXMofY=
Subject key identifier: 9F:8E:F2:47:EC:8B:D7:E3:43:D8:4E:A3:F3:03:C9:91:60:30:DB:72
Certificate issuer: /CN=12be29c956894c49c6d4be0ed98882b90d1bc77f
Certificate serial: 018F38CCCBB466880FFFBE3F22AEF4EB9C60
Authority key identifier: 12:BE:29:C9:56:89:4C:49:C6:D4:BE:0E:D9:88:82:B9:0D:1B:C7:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Er4pyVaJTEnG1L4O2YiCuQ0bx38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/c2788f-8c8c-47bb-b922-aa6ed4dafb3b/1/n47yR-yL1-ND2E6j8wPJkWAw23I.roa
Signing time: Thu 02 May 2024 10:14:56 +0000
ROA not before: Thu 02 May 2024 10:14:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198160
IP address blocks: 89.36.32.0/24 maxlen: 24
185.121.132.0/24 maxlen: 24
185.121.133.0/24 maxlen: 24
185.121.134.0/24 maxlen: 24
185.121.135.0/24 maxlen: 24
2a14:6780::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 06 May 2024 13:33:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:38:cc:cb:b4:66:88:0f:ff:be:3f:22:ae:f4:eb:9c:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12be29c956894c49c6d4be0ed98882b90d1bc77f
Validity
Not Before: May 2 10:14:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9f8ef247ec8bd7e343d84ea3f303c9916030db72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:39:9e:a7:2b:a0:2c:a5:b9:76:29:35:a7:23:
7e:23:4a:b4:8d:bf:f5:de:c3:61:ce:1b:29:21:9e:
c6:bf:b1:52:62:55:bf:94:50:22:81:83:ac:d6:2a:
a4:4f:c6:b3:fd:f5:6a:59:f5:b3:97:b2:fc:40:6d:
bf:70:75:ba:dc:98:05:63:3f:c8:47:27:74:6a:8e:
a3:1c:39:9f:c9:2d:cd:9f:4c:47:de:13:18:21:04:
86:21:bf:27:ef:06:37:cd:cc:ed:b4:b4:c8:fa:65:
86:7b:5c:7d:3c:5b:df:78:9a:0a:03:ed:7e:f4:c8:
6c:4e:65:56:8c:04:e3:6a:36:53:5d:77:47:f3:7b:
f5:37:d1:92:82:0f:bc:44:4b:ed:bd:8d:3e:b1:b2:
17:4d:b4:57:78:69:23:52:1e:18:83:00:2e:80:77:
e9:6a:33:d6:65:b2:60:c2:f8:ca:78:6b:cd:1a:e1:
e4:27:5c:5a:15:c4:3f:62:67:e4:21:d5:9e:52:a6:
13:ac:b0:e5:8d:b1:2a:22:0d:98:e8:15:a2:c6:b0:
c4:cd:1c:4d:22:eb:51:91:75:2b:04:d1:1e:b8:96:
03:93:43:cf:d8:f4:5e:62:0e:ab:17:59:9f:0b:d6:
11:ab:6c:74:6c:dc:70:67:52:98:79:ff:db:b0:00:
49:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:8E:F2:47:EC:8B:D7:E3:43:D8:4E:A3:F3:03:C9:91:60:30:DB:72
X509v3 Authority Key Identifier:
keyid:12:BE:29:C9:56:89:4C:49:C6:D4:BE:0E:D9:88:82:B9:0D:1B:C7:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Er4pyVaJTEnG1L4O2YiCuQ0bx38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/c2788f-8c8c-47bb-b922-aa6ed4dafb3b/1/n47yR-yL1-ND2E6j8wPJkWAw23I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/c2788f-8c8c-47bb-b922-aa6ed4dafb3b/1/Er4pyVaJTEnG1L4O2YiCuQ0bx38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.36.32.0/24
185.121.132.0/22
IPv6:
2a14:6780::/29
Signature Algorithm: sha256WithRSAEncryption
9d:79:42:cb:09:c6:12:67:25:92:78:d7:a0:56:4c:be:b8:73:
e4:e7:b7:e4:fd:d4:90:a2:b3:1b:9a:97:df:e7:3a:73:c8:c7:
eb:77:e6:72:aa:8f:5f:23:04:94:35:e2:1a:b1:fc:30:f3:89:
29:80:4a:eb:16:cb:da:9d:5a:c3:5c:1a:4f:7d:3f:55:0a:cb:
05:0c:20:a3:a8:c0:db:2c:5f:65:53:1c:d2:52:71:d4:23:b3:
08:ae:7a:9d:3d:74:e7:fb:c2:c8:2b:43:d9:bc:68:bf:40:3c:
36:42:59:a9:17:1f:e1:fc:37:22:37:d2:4d:92:47:47:68:c4:
35:8a:ef:94:6f:df:64:b0:a7:2c:62:3a:1b:f0:8e:55:06:7f:
08:91:85:68:d6:35:e2:7b:7b:c4:79:44:62:01:2b:fa:ce:fb:
27:08:9a:19:db:e6:7c:60:b8:4e:70:e7:21:fa:3f:05:17:16:
95:ed:73:bc:d8:98:27:d9:fa:33:89:f9:e1:eb:40:99:54:f2:
57:4d:13:78:73:2f:ed:bd:4b:37:16:8d:1d:7a:5a:46:e6:78:
63:34:3d:b3:6c:2a:86:89:e0:fa:d3:eb:b3:6e:17:46:81:e2:
62:3a:1c:b6:38:ed:81:4c:7d:11:40:c0:51:a3:36:49:87:21:
d0:ca:cf:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:44 2024 by rpki-client on console-fra.rpki-client.org