Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/T8zhFxldvYx3yajdGA2o6-fturU.roa
File: T8zhFxldvYx3yajdGA2o6-fturU.roa (raw, json)
Hash identifier: QTgRNlaxTrfypwDFbOPaEZqt6Pd5sMjBW5hR7q8kvMc=
Subject key identifier: 4F:CC:E1:17:19:5D:BD:8C:77:C9:A8:DD:18:0D:A8:EB:E7:ED:BA:B5
Certificate issuer: /CN=6ddb38b343da2d119309edaa19c7a78870327ebe
Certificate serial: 0190B13A1E13FED122AFE981F156521F48DC
Authority key identifier: 6D:DB:38:B3:43:DA:2D:11:93:09:ED:AA:19:C7:A7:88:70:32:7E:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bds4s0PaLRGTCe2qGceniHAyfr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/T8zhFxldvYx3yajdGA2o6-fturU.roa
Signing time: Sun 14 Jul 2024 12:31:34 +0000
ROA not before: Sun 14 Jul 2024 12:31:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204203
IP address blocks: 45.94.215.0/24 maxlen: 24
89.44.240.0/24 maxlen: 24
185.239.1.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 18 Jul 2024 12:02:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:b1:3a:1e:13:fe:d1:22:af:e9:81:f1:56:52:1f:48:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ddb38b343da2d119309edaa19c7a78870327ebe
Validity
Not Before: Jul 14 12:31:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4fcce117195dbd8c77c9a8dd180da8ebe7edbab5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:17:15:4e:30:c2:44:0b:b1:83:05:c2:a2:64:
d8:c8:60:1c:99:67:ff:4d:54:45:b6:ad:ea:95:97:
4a:9b:9e:e3:46:de:37:fb:48:0d:c9:65:e5:57:a1:
2e:e5:c9:db:e0:5d:73:99:5d:92:d2:3e:6d:97:c1:
93:dc:f8:4e:7e:43:c8:53:c8:0f:47:90:f0:d6:ad:
ce:d2:01:d1:0e:b1:56:97:ec:98:41:ed:87:b4:d5:
84:2d:d4:38:cd:7e:8c:5b:6e:fa:8b:04:90:68:5f:
d3:20:ac:79:b1:a9:11:5b:3b:51:5c:f8:82:5a:91:
89:04:67:28:85:e5:0a:ac:7d:e1:be:35:a1:d9:29:
7c:94:64:32:9b:16:55:74:f5:c5:48:cf:ca:97:74:
23:d4:d3:59:ee:36:0e:6f:16:79:be:bd:73:a7:a9:
06:0c:ca:fe:f5:b0:4f:15:26:62:d8:5d:1b:13:b0:
3c:ad:16:2c:66:fc:f3:27:b4:b3:13:8f:1f:1c:7c:
e6:c2:d7:f6:1e:72:b4:ef:32:dd:f2:5b:70:ab:43:
bb:c9:a0:7a:90:58:24:26:4e:31:08:a4:e2:19:2e:
3a:f1:7b:fb:47:3e:3f:fb:6e:ec:de:48:0e:a4:6d:
a6:93:4d:e0:18:86:46:9e:bd:c0:6e:ce:da:df:8a:
4c:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:CC:E1:17:19:5D:BD:8C:77:C9:A8:DD:18:0D:A8:EB:E7:ED:BA:B5
X509v3 Authority Key Identifier:
keyid:6D:DB:38:B3:43:DA:2D:11:93:09:ED:AA:19:C7:A7:88:70:32:7E:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bds4s0PaLRGTCe2qGceniHAyfr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/T8zhFxldvYx3yajdGA2o6-fturU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/bds4s0PaLRGTCe2qGceniHAyfr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.94.215.0/24
89.44.240.0/24
185.239.1.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:ab:3e:f4:fb:17:be:ec:7c:34:98:05:78:14:92:13:ca:60:
44:56:63:8d:e4:3c:d4:b6:42:8b:e3:6a:c2:09:cc:1d:08:1b:
90:5e:0a:d1:ba:ab:c6:5e:b4:33:1c:eb:52:f0:ad:6e:30:f8:
e8:8b:8d:8d:db:7d:b5:de:93:23:c5:bf:60:4c:a1:e5:d4:c3:
9a:16:e8:8f:63:4a:2b:7a:56:90:b7:a5:bd:f6:91:be:d4:fd:
be:56:08:35:fb:10:79:c0:74:ca:9c:5d:d6:ea:cf:2a:40:f6:
22:ac:e9:95:89:94:a2:50:13:78:5b:6b:2d:a5:c2:28:a9:77:
64:c5:d1:3c:4b:85:7b:d0:3c:e2:49:c4:df:b7:74:29:54:9e:
04:cc:de:eb:96:cd:fd:20:78:71:b3:62:d2:cc:8b:9c:c6:09:
84:14:2a:87:7b:04:51:ac:6f:89:64:a4:5b:e1:d1:be:de:c1:
8a:b3:ef:bd:74:56:73:2e:e3:9b:4f:a8:5b:6b:7d:3f:3c:3b:
43:c0:81:94:97:e3:ac:93:cb:29:b6:72:7c:3e:0f:0d:d2:2d:
23:03:58:ab:38:a8:5c:75:3f:9e:0a:1a:32:86:29:55:01:86:
7b:13:55:d8:8d:1a:03:7c:0e:0f:ae:c7:93:19:e4:68:49:fb:
ef:2e:7c:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 18 16:37:41 2024 by rpki-client on console-fra.rpki-client.org