Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/2DM7mygheWa5tqKKMJVVE-AgTx8.roa
File: 2DM7mygheWa5tqKKMJVVE-AgTx8.roa (raw, json)
Hash identifier: ngtocHfoFGzGEPPPWuBAq/yQp6JIho3wSkdBUhozRVQ=
Subject key identifier: D8:33:3B:9B:28:21:79:66:B9:B6:A2:8A:30:95:55:13:E0:20:4F:1F
Certificate issuer: /CN=6ddb38b343da2d119309edaa19c7a78870327ebe
Certificate serial: 0190C5B9039AED6FC9155EA8C3A4D3707815
Authority key identifier: 6D:DB:38:B3:43:DA:2D:11:93:09:ED:AA:19:C7:A7:88:70:32:7E:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bds4s0PaLRGTCe2qGceniHAyfr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/2DM7mygheWa5tqKKMJVVE-AgTx8.roa
Signing time: Thu 18 Jul 2024 12:02:34 +0000
ROA not before: Thu 18 Jul 2024 12:02:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215480
IP address blocks: 45.94.214.0/24 maxlen: 24
89.42.47.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 22 Jul 2024 08:51:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:c5:b9:03:9a:ed:6f:c9:15:5e:a8:c3:a4:d3:70:78:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ddb38b343da2d119309edaa19c7a78870327ebe
Validity
Not Before: Jul 18 12:02:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d8333b9b28217966b9b6a28a30955513e0204f1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:3b:71:d6:09:90:82:e9:6f:29:3d:d3:b3:d1:
34:9a:fc:0c:d5:78:d6:c3:90:3a:a9:42:09:4b:7d:
d1:0d:73:4e:74:81:98:26:69:84:78:eb:18:35:b7:
2c:b7:75:b9:6f:f4:15:52:2a:74:a8:63:a0:9e:50:
c1:37:9f:d3:29:d4:13:97:e9:37:43:10:d1:b7:bc:
f6:55:09:1f:95:95:9c:0e:53:4b:92:6d:4c:4f:20:
26:f6:a4:36:af:ea:5e:25:f0:5d:be:4a:00:2c:29:
34:56:53:68:13:f7:36:24:f3:3a:c2:16:ab:5b:fb:
6f:bb:d6:81:bf:a2:8c:96:d5:04:f6:82:64:7f:a8:
82:7e:52:1b:fe:31:ba:66:3d:61:d5:68:7d:4a:60:
9f:24:05:a5:35:7b:44:c1:69:e0:16:60:9c:9f:74:
bf:d7:f4:6a:cc:24:db:59:d9:73:f3:61:ed:64:e9:
96:ec:9f:a1:34:63:62:a9:9b:a1:ad:f7:ec:45:92:
5c:4f:13:a0:9e:dc:10:a8:a1:03:65:9a:15:b4:0c:
10:57:80:c1:bb:3b:e7:3e:75:b9:c5:46:39:e6:96:
09:67:80:83:5e:8e:d9:4c:08:83:49:5a:33:b9:32:
e5:91:e9:de:61:43:61:f2:76:6d:c4:e3:d8:26:c2:
26:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:33:3B:9B:28:21:79:66:B9:B6:A2:8A:30:95:55:13:E0:20:4F:1F
X509v3 Authority Key Identifier:
keyid:6D:DB:38:B3:43:DA:2D:11:93:09:ED:AA:19:C7:A7:88:70:32:7E:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bds4s0PaLRGTCe2qGceniHAyfr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/2DM7mygheWa5tqKKMJVVE-AgTx8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/bds4s0PaLRGTCe2qGceniHAyfr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.94.214.0/24
89.42.47.0/24
Signature Algorithm: sha256WithRSAEncryption
48:57:71:d2:a4:cf:40:af:f7:7f:32:4f:90:e2:58:43:c8:7b:
7b:5d:47:d1:7e:98:42:ab:d6:64:c2:5e:42:ea:8f:20:34:75:
d9:49:fc:5b:92:24:b6:cc:52:33:ed:ba:87:c8:c6:50:a4:db:
e3:f7:4c:ad:b3:74:83:3c:16:a2:4b:85:b5:2b:fd:b2:27:4d:
7c:85:87:64:42:5d:34:5e:cb:0a:9b:e4:f4:49:1e:51:63:51:
04:7f:49:e5:1f:12:15:03:f8:af:9c:00:c8:34:9d:2d:0e:59:
03:e4:7e:f7:e4:a6:8a:14:3b:f6:88:8d:f2:71:c5:8d:b2:72:
a0:39:b3:d2:b2:fa:46:9f:b9:d5:8d:f1:e5:ac:df:a1:3f:6d:
46:69:e2:b9:a7:d6:32:cb:63:c3:e0:5b:8d:53:20:cd:b4:2b:
ea:7d:ea:15:ca:36:7d:af:c1:98:ae:20:71:bb:a6:8c:32:cc:
bc:40:e8:6a:d9:4c:8e:ef:5b:2a:41:9f:f8:fa:ad:d7:15:94:
34:8b:18:ed:10:5e:f5:40:eb:bc:27:a4:f1:79:ad:3f:ec:19:
de:15:63:2b:96:b2:4a:45:80:c0:2d:7e:88:47:7f:de:d4:16:
04:d0:a8:dc:ea:ad:44:90:12:94:c4:fb:bf:0f:2f:3d:99:ee:
db:cc:85:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 22 10:50:31 2024 by rpki-client on console-fra.rpki-client.org