Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/738179-cf67-4199-b532-2fb2958ab8bb/1/1-2FVlL9Extb9kawKvnfH0ZuQ7h4.roa
File: 1-2FVlL9Extb9kawKvnfH0ZuQ7h4.roa (raw, json)
Hash identifier: YhmMHFZtIOYX47t9Oc1JcAiD1kb0ew6x6eXjqmD64WU=
Subject key identifier: FB:61:55:94:BF:44:C6:D6:FD:91:AC:0A:BE:77:C7:D1:9B:90:EE:1E
Certificate issuer: /CN=07a32999c47eb31d5fbf16ecc3872eaefd43bad7
Certificate serial: 018CC64AE41858746823D126134D56052D31
Authority key identifier: 07:A3:29:99:C4:7E:B3:1D:5F:BF:16:EC:C3:87:2E:AE:FD:43:BA:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B6MpmcR-sx1fvxbsw4curv1Dutc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/738179-cf67-4199-b532-2fb2958ab8bb/1/1-2FVlL9Extb9kawKvnfH0ZuQ7h4.roa
Signing time: Mon 01 Jan 2024 18:30:45 +0000
ROA not before: Mon 01 Jan 2024 18:30:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16509
IP address blocks: 89.222.36.0/24 maxlen: 24
89.222.37.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 14 Feb 2024 14:13:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4a:e4:18:58:74:68:23:d1:26:13:4d:56:05:2d:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07a32999c47eb31d5fbf16ecc3872eaefd43bad7
Validity
Not Before: Jan 1 18:30:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fb615594bf44c6d6fd91ac0abe77c7d19b90ee1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:d2:b8:38:0b:32:12:5d:c7:82:11:22:8c:98:
25:d6:90:8f:20:48:9b:97:f6:59:09:82:74:19:89:
b4:23:0c:b6:5c:de:22:ee:5d:a0:07:7a:90:dd:3f:
2b:cc:c3:bb:21:21:08:f2:53:26:a2:01:05:05:9f:
90:7b:c9:a4:97:0e:cd:68:0a:c7:c5:17:c8:21:74:
39:b8:52:0e:ca:c2:5d:84:d8:9d:9d:f1:32:e4:2e:
05:4e:22:ed:c1:18:7b:45:ec:25:2c:82:6b:ca:54:
f7:1b:f3:2b:64:8d:98:8f:7a:04:f8:42:5d:7e:30:
f2:08:6e:02:78:1f:75:18:f2:72:25:db:07:38:f2:
b3:49:4d:d0:d5:d0:0b:d4:ef:49:33:38:ba:fc:e5:
9a:80:48:5e:93:66:64:12:e7:81:a7:12:06:cd:6a:
94:9d:28:71:28:29:7a:41:49:54:6b:88:26:41:72:
3a:45:1f:96:dd:ee:73:41:64:ba:ab:70:46:99:4b:
02:f7:1d:f6:a0:6e:d4:27:2f:f1:e3:b8:42:5d:05:
17:4f:5a:30:e1:a5:54:97:8a:1c:d5:aa:9d:cd:b4:
b5:52:2a:1e:e3:8b:ee:5e:24:22:47:a4:3a:87:cc:
7e:7a:a4:d8:c5:ee:83:45:6a:19:b4:0d:2d:dc:fd:
3f:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:61:55:94:BF:44:C6:D6:FD:91:AC:0A:BE:77:C7:D1:9B:90:EE:1E
X509v3 Authority Key Identifier:
keyid:07:A3:29:99:C4:7E:B3:1D:5F:BF:16:EC:C3:87:2E:AE:FD:43:BA:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B6MpmcR-sx1fvxbsw4curv1Dutc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/738179-cf67-4199-b532-2fb2958ab8bb/1/1-2FVlL9Extb9kawKvnfH0ZuQ7h4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/738179-cf67-4199-b532-2fb2958ab8bb/1/B6MpmcR-sx1fvxbsw4curv1Dutc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.222.36.0/23
Signature Algorithm: sha256WithRSAEncryption
01:dc:22:20:8b:5c:af:e2:d9:b2:20:c3:dd:4e:9c:62:23:bb:
96:47:32:0a:c3:77:07:5f:56:26:6c:14:6c:62:b6:d1:d5:4e:
ac:1e:b0:82:cb:01:e9:5d:af:3f:8c:10:71:74:97:ce:6c:c7:
96:bf:02:d6:b1:a5:8a:c8:f7:b5:be:f8:e6:0c:da:61:ba:0d:
55:4d:2c:f9:64:9f:b4:21:30:3a:4a:53:56:5a:3d:b2:b8:95:
09:72:45:ec:2d:0c:0b:3d:d6:9a:8e:d1:6f:cc:27:f3:14:3a:
3e:9f:ca:86:bb:9b:40:39:5b:83:3a:3b:21:b0:e7:e0:11:89:
3b:ea:38:7e:c1:c1:73:4f:a9:b3:f2:db:df:3b:eb:70:71:15:
b3:c7:af:b7:fc:ae:9c:a3:43:9d:7e:c5:87:08:64:82:73:75:
fd:91:cf:16:13:d2:f5:94:f5:af:32:18:cb:57:aa:2b:53:1a:
86:47:8b:1c:f0:25:4f:bd:a0:ed:f5:7a:ea:a4:53:1b:64:a2:
06:1e:3f:22:d5:98:f9:99:ff:4d:2a:94:75:68:25:f3:55:9d:
f7:ed:6b:31:1a:19:02:11:4c:12:e7:55:f8:80:95:20:b6:71:
6d:db:30:b9:4d:8d:27:7c:5e:34:a2:39:79:eb:83:92:1d:7e:
a6:18:95:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:07 2024 by rpki-client on console-fra.rpki-client.org