Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/3y4FvzanVsFW-FOWiPjR6vyCZwo.roa
File: 3y4FvzanVsFW-FOWiPjR6vyCZwo.roa (raw, json)
Hash identifier: 84M7c9a6CG2S/Nn5N/Lk3031maSi2kVz+6ZABKp2RI4=
Subject key identifier: DF:2E:05:BF:36:A7:56:C1:56:F8:53:96:88:F8:D1:EA:FC:82:67:0A
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 01880A2DBC30605577D18D3C8E17E203283B
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/3y4FvzanVsFW-FOWiPjR6vyCZwo.roa
Signing time: Thu 11 May 2023 09:39:09 +0000
ROA not before: Thu 11 May 2023 09:39:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3507
IP address blocks: 2.57.241.0/24 maxlen: 24
89.35.73.0/24 maxlen: 24
93.90.75.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 08 Jun 2023 05:58:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:0a:2d:bc:30:60:55:77:d1:8d:3c:8e:17:e2:03:28:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: May 11 09:39:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=df2e05bf36a756c156f8539688f8d1eafc82670a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:df:83:02:9f:43:a9:3b:00:63:4e:cd:68:13:
ee:48:0e:1a:2b:ca:9b:81:10:ce:e4:29:2a:64:56:
d1:44:bb:db:60:29:75:5b:ea:7a:80:70:de:4e:3e:
a4:61:3b:4a:19:97:8f:7c:e8:ee:7b:92:77:86:56:
2b:de:06:95:b2:1b:6c:13:38:35:6f:13:d9:dc:a4:
1f:43:b5:8e:38:68:57:65:0b:dd:69:63:fd:fa:ee:
b6:41:10:5e:37:f4:2f:88:f7:56:42:7b:1f:a8:2f:
fb:3d:0f:53:d5:6e:90:de:64:df:4d:c7:03:08:06:
c1:76:a5:ee:5f:16:ae:b3:d7:2d:96:5d:16:10:5f:
22:08:32:ab:b7:40:8c:78:23:c8:1a:48:77:82:51:
b2:b4:cd:f3:a7:f9:81:94:b7:03:6e:eb:2d:40:db:
82:36:7c:e9:ee:8a:ab:9a:5a:54:cc:a1:23:05:c4:
95:47:bd:db:71:a9:cd:4d:5d:1d:4c:a7:58:10:a8:
bf:eb:d6:06:3c:35:d1:63:51:88:20:40:63:13:9b:
2c:87:78:b5:74:ad:37:90:5b:1a:1b:13:d3:d2:2a:
eb:0d:16:96:9d:6a:5e:1f:66:74:8a:45:25:e6:2c:
bd:cd:1d:c7:73:c1:19:80:2c:fc:50:f5:4c:9f:44:
a7:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:2E:05:BF:36:A7:56:C1:56:F8:53:96:88:F8:D1:EA:FC:82:67:0A
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/3y4FvzanVsFW-FOWiPjR6vyCZwo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.57.241.0/24
89.35.73.0/24
93.90.75.0/24
Signature Algorithm: sha256WithRSAEncryption
18:17:e4:f2:b1:be:ea:f1:8c:80:73:4b:a2:42:9c:3e:cb:87:
c1:36:8c:4d:96:d8:8d:fa:c3:58:e5:59:87:b9:2c:0a:89:1b:
87:1c:3f:4e:c4:d4:45:b3:9d:8e:04:68:9b:f7:b0:bf:59:d5:
be:4d:00:b2:14:fd:7f:be:6d:d4:6f:fd:c6:48:d3:cf:14:20:
d0:e1:b2:2a:8b:73:9d:42:3c:bd:ed:51:e9:0d:fc:23:fc:00:
09:05:69:5c:79:3c:44:4a:01:66:1e:40:a4:e8:ac:51:45:be:
bc:68:2c:8f:91:a7:db:c7:69:29:40:d4:88:fc:c2:6b:f9:0b:
95:3e:3e:9c:bb:ea:5d:98:bc:28:2e:03:69:68:21:4f:06:ba:
c7:a2:01:03:f5:ae:e4:0b:b0:9d:76:d7:d7:d8:d6:fa:4e:3e:
14:c8:cf:f0:5c:ff:c9:aa:6d:f9:f3:2a:a2:00:37:ae:6c:72:
66:45:4e:11:ff:69:ac:48:72:ad:4f:3d:32:da:76:1b:0c:ed:
30:2e:fc:77:8c:1f:d5:9a:5e:01:71:0e:6b:60:60:f8:05:10:
9b:d0:ee:ae:80:30:8a:01:6e:fa:f3:fc:60:9a:0c:ba:46:ed:
cf:5a:bf:19:6d:79:e0:76:d2:59:6a:63:8b:ed:70:aa:6d:b5:
b9:2c:46:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:11 2024 by rpki-client on console-ams.rpki-client.org