Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/pE4fb68m6vJQf3BHPEmxk3mjxSo.roa
File: pE4fb68m6vJQf3BHPEmxk3mjxSo.roa (raw, json)
Hash identifier: cfUoJimxVKta2dmhLJu7Lo61oSb7W9PKKs+1rQ0euVw=
Subject key identifier: A4:4E:1F:6F:AF:26:EA:F2:50:7F:70:47:3C:49:B1:93:79:A3:C5:2A
Certificate issuer: /CN=6ddb38b343da2d119309edaa19c7a78870327ebe
Certificate serial: 0192AD7AC506DDDE1D79660F1DAA792D02BD
Authority key identifier: 6D:DB:38:B3:43:DA:2D:11:93:09:ED:AA:19:C7:A7:88:70:32:7E:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bds4s0PaLRGTCe2qGceniHAyfr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/pE4fb68m6vJQf3BHPEmxk3mjxSo.roa
Signing time: Mon 21 Oct 2024 05:09:17 +0000
ROA not before: Mon 21 Oct 2024 05:09:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214857
IP address blocks: 89.42.47.0/24 maxlen: 24
188.212.99.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 16 Nov 2024 14:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:ad:7a:c5:06:dd:de:1d:79:66:0f:1d:aa:79:2d:02:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ddb38b343da2d119309edaa19c7a78870327ebe
Validity
Not Before: Oct 21 05:09:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a44e1f6faf26eaf2507f70473c49b19379a3c52a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:0d:c8:15:06:40:a4:cf:3d:f3:4c:03:7e:5e:
40:f0:80:af:8b:bb:f7:00:30:40:60:ce:ac:3b:2a:
b5:88:32:17:38:38:a1:63:f2:79:c4:8a:df:ce:38:
ff:42:7d:56:45:02:6c:f5:88:80:aa:55:a5:aa:2d:
48:db:b5:e1:c0:7c:31:0c:7b:96:a3:ed:40:dc:69:
22:fd:17:84:b0:27:fa:1f:0f:50:d4:4e:e1:1d:78:
83:6f:52:4c:68:02:12:71:cb:61:ef:c4:45:4d:73:
57:29:6e:5d:d7:4f:ee:94:a5:3e:de:18:54:c0:de:
b3:7b:90:b0:47:c3:87:91:84:59:b3:7d:fb:1b:37:
35:c3:9b:20:59:77:f0:0c:1b:ea:0e:8c:9d:68:01:
c5:2a:ce:d1:ac:52:ff:fc:16:b2:86:af:f7:2c:e0:
83:60:6e:43:98:96:60:d0:17:ba:bc:61:7a:a7:3e:
e4:e8:e1:74:f5:69:17:50:00:e6:65:d3:ba:ad:15:
d2:cf:e0:15:4b:3f:27:cb:82:73:c9:cd:91:5a:9a:
63:d2:af:6c:ea:ec:26:4d:8f:18:35:d4:8b:96:01:
ce:86:a4:b2:16:4c:29:f6:2c:f0:d2:9e:b0:d8:b6:
2e:5d:f1:97:8e:4f:bc:e8:c5:11:44:ea:e6:67:96:
93:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:4E:1F:6F:AF:26:EA:F2:50:7F:70:47:3C:49:B1:93:79:A3:C5:2A
X509v3 Authority Key Identifier:
keyid:6D:DB:38:B3:43:DA:2D:11:93:09:ED:AA:19:C7:A7:88:70:32:7E:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bds4s0PaLRGTCe2qGceniHAyfr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/pE4fb68m6vJQf3BHPEmxk3mjxSo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/bds4s0PaLRGTCe2qGceniHAyfr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.42.47.0/24
188.212.99.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:68:c4:8c:d8:47:9a:0a:65:d6:11:c1:39:60:58:93:76:5f:
fa:7f:f9:54:ff:81:b3:85:7e:a4:ff:ec:97:c4:01:59:db:52:
81:27:c5:ef:87:0e:7f:6e:68:b8:88:d1:02:c8:07:04:62:80:
8a:69:0f:f8:6c:1a:cd:95:be:27:f4:9a:23:43:e6:00:9a:f2:
68:7b:cb:a9:d6:6d:cc:80:f3:29:db:42:85:9a:8e:77:62:0e:
5b:35:aa:05:7e:af:7d:00:b8:bd:97:65:38:7f:b5:eb:6b:e8:
c7:05:47:22:72:77:49:cb:0d:5d:86:ad:a3:fd:86:a9:d0:68:
5e:29:30:31:ee:1f:77:61:dd:a2:f3:f2:20:db:0e:37:a0:16:
24:20:b7:ed:02:0d:a9:1f:97:8b:80:d5:3d:b3:ed:75:2f:39:
01:f2:44:fc:a9:25:77:34:40:8a:15:2d:28:fe:ad:0b:37:9b:
f4:3f:4c:67:b9:01:40:cd:62:d3:ff:c9:ae:2d:33:04:6a:31:
08:ca:cd:d1:a0:51:59:1d:26:12:d5:4b:2b:c3:a0:eb:c4:1a:
e5:d4:f7:c5:35:18:38:0b:ed:d7:a3:dd:6e:b7:17:9a:21:d5:
e5:d5:02:c8:7c:40:bf:c3:44:22:ae:fb:b2:11:66:11:33:99:
69:88:55:62
-----BEGIN CERTIFICATE-----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Generated at Sat Nov 16 15:49:13 2024 by rpki-client on console-fra.rpki-client.org