Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/738179-cf67-4199-b532-2fb2958ab8bb/1/d_xb3S8Fz_W_WHg0_mxDdtPcAvg.roa
File: d_xb3S8Fz_W_WHg0_mxDdtPcAvg.roa (raw, json)
Hash identifier: qkqnMOL5Q4uwRwMwzB+USfv8PkCq2CpmkXY68W7GXyo=
Subject key identifier: 77:FC:5B:DD:2F:05:CF:F5:BF:58:78:34:FE:6C:43:76:D3:DC:02:F8
Certificate issuer: /CN=07a32999c47eb31d5fbf16ecc3872eaefd43bad7
Certificate serial: 018DA7F70BF25ABDF3C991E117153E6724F7
Authority key identifier: 07:A3:29:99:C4:7E:B3:1D:5F:BF:16:EC:C3:87:2E:AE:FD:43:BA:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B6MpmcR-sx1fvxbsw4curv1Dutc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/738179-cf67-4199-b532-2fb2958ab8bb/1/d_xb3S8Fz_W_WHg0_mxDdtPcAvg.roa
Signing time: Wed 14 Feb 2024 14:13:21 +0000
ROA not before: Wed 14 Feb 2024 14:13:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16509
IP address blocks: 89.222.36.0/24 maxlen: 24
89.222.37.0/24 maxlen: 24
89.222.38.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 15 Feb 2024 09:50:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:a7:f7:0b:f2:5a:bd:f3:c9:91:e1:17:15:3e:67:24:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07a32999c47eb31d5fbf16ecc3872eaefd43bad7
Validity
Not Before: Feb 14 14:13:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=77fc5bdd2f05cff5bf587834fe6c4376d3dc02f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:b4:2f:fa:8e:f3:d0:58:9b:3c:c5:ef:54:7c:
b8:93:32:a5:15:a1:90:99:53:22:49:9c:4d:1e:dc:
ed:5b:65:7e:54:29:f8:3e:16:10:33:2d:29:5e:ee:
09:96:90:8a:78:45:0f:fc:5e:f3:ea:4b:93:75:ec:
3d:1a:74:f7:4d:1a:f0:2a:05:73:bd:76:48:ab:c7:
3b:df:00:94:86:df:fb:c2:1c:77:ca:3b:64:2c:82:
1a:27:32:20:74:a7:cb:a2:38:18:4d:bb:48:ce:d4:
97:d1:7d:67:2f:30:4d:bb:b5:b9:21:02:90:60:9c:
85:1e:c2:38:34:87:f4:f9:50:8b:e2:06:95:a7:10:
15:ca:67:1a:d8:af:0b:a0:91:1e:e6:cb:f9:60:55:
d1:79:2e:84:18:6d:73:d7:80:22:07:c7:b6:88:0b:
75:70:46:4a:7a:84:28:00:d2:6d:f4:9c:dd:49:8b:
75:b3:ed:02:6f:d1:4c:c1:20:cb:c1:8c:a3:3a:49:
30:7a:a3:50:ad:80:12:5d:e9:cb:44:67:4c:db:e9:
9e:27:67:dc:9d:b8:50:ee:05:36:bc:f7:72:57:95:
84:8d:78:72:0d:f5:37:43:d0:94:d0:1b:31:d3:9c:
c5:70:77:2f:48:41:56:e3:57:52:94:ff:63:35:1b:
da:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:FC:5B:DD:2F:05:CF:F5:BF:58:78:34:FE:6C:43:76:D3:DC:02:F8
X509v3 Authority Key Identifier:
keyid:07:A3:29:99:C4:7E:B3:1D:5F:BF:16:EC:C3:87:2E:AE:FD:43:BA:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B6MpmcR-sx1fvxbsw4curv1Dutc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/738179-cf67-4199-b532-2fb2958ab8bb/1/d_xb3S8Fz_W_WHg0_mxDdtPcAvg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/738179-cf67-4199-b532-2fb2958ab8bb/1/B6MpmcR-sx1fvxbsw4curv1Dutc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.222.36.0-89.222.38.255
Signature Algorithm: sha256WithRSAEncryption
4e:25:46:36:63:c2:a4:39:0b:71:a4:3f:a5:c2:3a:50:75:99:
b6:f9:1f:9d:5e:57:cc:6b:14:a2:34:b3:32:47:70:82:31:46:
12:c7:c5:bb:40:8c:3a:c9:5b:68:a7:f5:7f:de:7f:c3:71:72:
1a:36:bb:9b:cb:b1:07:97:13:0f:58:2a:97:eb:a0:c6:3c:3a:
3b:e4:4e:98:6c:6c:15:ac:17:11:57:61:a4:54:05:6b:b2:f4:
65:08:74:54:0c:8b:ee:62:a2:14:b9:7b:8f:45:2e:ac:b5:c7:
d9:2a:a1:b5:3c:27:1f:e8:84:58:12:18:de:ae:1a:99:8a:04:
d6:a9:58:7d:71:59:1d:41:a9:10:6e:84:87:d8:ef:30:70:31:
cc:50:89:fb:b1:2b:cb:66:a4:ed:fe:85:7d:cd:8c:08:24:68:
82:e6:26:80:73:03:ae:d1:05:a0:a5:a3:c5:8e:e8:28:b7:72:
85:62:25:a9:b6:77:32:cd:75:73:a0:bd:b3:cb:69:70:aa:69:
5b:73:b4:71:36:95:c0:ef:03:fd:8f:83:5b:bf:2e:87:ea:12:
33:66:a2:ba:15:97:98:c2:32:09:51:39:97:3b:fb:c8:a1:f8:
73:ab:67:fe:c2:97:32:da:5b:49:3a:8c:e9:0a:1e:89:d4:b9:
8e:bb:15:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:07 2024 by rpki-client on console-fra.rpki-client.org