Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/3r4kFtGae9B-7fY1LEsONRJnxYE.roa
File: 3r4kFtGae9B-7fY1LEsONRJnxYE.roa (raw, json)
Hash identifier: gAYAQuAKTMHiehDdQFDOoJe14kO//71dv08WC5T8dEs=
Subject key identifier: DE:BE:24:16:D1:9A:7B:D0:7E:ED:F6:35:2C:4B:0E:35:12:67:C5:81
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 01869B7C6295ED92C3BA71DCE3F0452AB8A3
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/3r4kFtGae9B-7fY1LEsONRJnxYE.roa
Signing time: Wed 01 Mar 2023 04:44:25 +0000
ROA not before: Wed 01 Mar 2023 04:44:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3507
IP address blocks: 89.37.193.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 08 Mar 2023 15:04:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:9b:7c:62:95:ed:92:c3:ba:71:dc:e3:f0:45:2a:b8:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Mar 1 04:44:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=debe2416d19a7bd07eedf6352c4b0e351267c581
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:99:51:c6:9f:6e:19:da:aa:ff:8d:08:94:a4:
ee:9b:55:b1:a2:03:7e:c0:04:79:a6:e8:95:e8:17:
b5:64:e1:11:30:14:14:f0:72:75:c2:57:e5:33:ce:
a4:d3:d0:40:ca:a1:4d:7b:49:e0:8b:b4:a4:d6:c7:
26:36:aa:dc:b7:87:f6:d6:cb:1a:49:7a:fb:c1:a9:
f7:05:6a:10:18:f2:49:a0:02:47:c1:6e:21:53:c6:
f5:c5:47:d6:15:b6:bd:8e:c4:4a:2a:27:b0:6a:96:
fc:94:0e:fd:eb:db:2a:d4:2e:05:74:38:98:c4:d4:
af:48:23:d4:17:74:5d:4e:e4:32:88:19:a3:7f:0e:
8e:43:9a:68:78:99:3b:db:ab:85:d1:75:73:b9:1f:
ec:95:e3:05:63:63:ef:5c:46:16:21:80:22:78:60:
e1:42:b5:47:97:aa:ba:94:ee:92:f7:b7:61:6d:a5:
32:b0:5a:f0:b3:37:cf:89:3e:1c:fb:e1:55:3b:1f:
db:22:4e:fc:d4:f5:8e:dd:b5:5b:f7:e2:6d:2b:d5:
2f:c6:5f:6c:d4:94:aa:18:7b:e2:f1:9b:43:c2:3f:
f6:59:ae:ea:54:bd:35:86:74:f8:0a:93:a0:ca:25:
3b:15:34:48:33:11:92:47:0f:fd:6b:f4:90:87:22:
99:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:BE:24:16:D1:9A:7B:D0:7E:ED:F6:35:2C:4B:0E:35:12:67:C5:81
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/3r4kFtGae9B-7fY1LEsONRJnxYE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.37.193.0/24
Signature Algorithm: sha256WithRSAEncryption
71:2f:95:e2:76:93:e9:0f:9e:d1:ac:f1:fc:71:a6:34:32:db:
ee:f9:d2:d7:70:9f:9a:fa:96:f2:5f:e2:f2:de:dc:9e:fa:54:
8c:a7:b5:06:d4:a0:fb:c9:82:88:cc:95:aa:0d:1f:ac:69:c5:
29:50:88:03:00:53:3d:4b:02:82:e6:45:46:a0:18:a8:a8:26:
69:cd:b6:e9:97:85:82:ea:78:80:3a:ed:ba:64:a1:21:0a:b1:
28:db:59:ed:2a:79:4d:38:07:79:99:85:1e:22:45:9b:e1:e8:
1f:dc:00:b3:bb:aa:50:90:40:f0:c5:10:04:c6:93:25:4b:c6:
dd:ec:a0:8e:c1:07:96:99:66:5c:b5:13:bc:68:ed:b2:e1:b0:
0e:07:60:25:4d:f3:ee:51:0d:0a:ee:8c:5a:19:65:73:a2:34:
4c:d8:ed:b0:62:6e:d4:63:4c:5e:2f:8f:12:7a:7c:e0:1a:e0:
19:78:62:e9:28:36:4f:3f:70:b8:29:79:86:9c:64:c0:1a:61:
24:82:ed:4c:25:0b:c3:7a:4b:c0:dc:ff:ca:bb:4e:19:c5:4c:
52:4f:e3:f8:b9:c9:dd:8d:4e:e3:2f:af:76:a1:a3:5e:b7:38:
2f:d3:80:d8:1f:0a:23:03:ee:b6:c8:e8:53:ff:ea:dc:d3:38:
ae:2c:4a:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:11 2024 by rpki-client on console-ams.rpki-client.org