Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/4vMGBRaDy2LAIqpz6bTKyEcXrOc.roa
File: 4vMGBRaDy2LAIqpz6bTKyEcXrOc.roa (raw, json)
Hash identifier: CkjhqCRo6mf7KCLpVwg+alEtcdXc31+FnNeSoBuJwiU=
Subject key identifier: E2:F3:06:05:16:83:CB:62:C0:22:AA:73:E9:B4:CA:C8:47:17:AC:E7
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018CC4934262D6C37037362CD683041B583F
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/4vMGBRaDy2LAIqpz6bTKyEcXrOc.roa
Signing time: Mon 01 Jan 2024 10:30:34 +0000
ROA not before: Mon 01 Jan 2024 10:30:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216159
IP address blocks: 89.35.130.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 13 Feb 2024 11:47:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:93:42:62:d6:c3:70:37:36:2c:d6:83:04:1b:58:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Jan 1 10:30:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e2f306051683cb62c022aa73e9b4cac84717ace7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:70:85:c8:2c:a3:7f:b9:d2:77:55:28:7d:71:
06:0f:40:e3:2a:9d:93:d8:9d:bb:71:dc:2f:a2:8a:
e3:81:bb:a9:dc:32:27:db:23:1a:10:8f:4f:d4:9f:
8c:c2:b4:b6:8b:78:1e:6f:cf:06:c5:d4:43:6d:c9:
bc:5d:82:4b:18:db:a2:02:d0:9e:6a:1a:38:63:2b:
d5:2c:5a:1e:51:62:6b:6d:3b:1e:c4:95:3f:91:67:
a5:c8:2c:b8:c6:4c:76:96:96:fa:c1:12:14:74:37:
1a:11:08:af:89:bf:a2:96:87:d9:7e:35:9b:9c:0a:
94:a2:9d:1d:dd:30:4d:72:99:7f:53:ec:8f:25:4d:
ae:95:e7:40:5d:c5:1d:1a:26:ad:6d:ff:54:25:14:
01:bd:ba:a2:56:c7:b6:cb:03:2c:60:ac:cb:f6:cd:
3a:d9:d3:a4:33:75:e5:07:95:65:9e:20:38:a6:e1:
15:67:77:28:8e:37:4c:a6:de:e1:f6:d7:11:f5:ae:
5e:30:61:da:f0:d2:df:eb:eb:34:81:62:39:60:a7:
c2:f4:17:cb:b1:21:67:c0:79:30:b1:e5:9a:e9:16:
0e:bc:fb:11:8e:19:79:49:74:e7:12:d0:82:4f:6b:
43:ef:42:c5:b1:f8:c2:ec:68:82:49:64:b7:12:64:
c3:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:F3:06:05:16:83:CB:62:C0:22:AA:73:E9:B4:CA:C8:47:17:AC:E7
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/4vMGBRaDy2LAIqpz6bTKyEcXrOc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.35.130.0/24
Signature Algorithm: sha256WithRSAEncryption
92:a4:e9:15:6c:86:41:bd:61:cb:21:2e:38:49:e0:99:e7:92:
f7:0c:a1:5e:8a:d4:27:b4:d5:f3:79:b4:bf:93:5d:47:c4:1a:
9b:7d:df:35:57:97:ca:46:57:25:be:c9:17:b4:1c:6d:e3:e4:
2b:86:26:2b:ff:eb:15:5e:8a:00:a8:b1:33:c6:2f:5d:f0:0c:
9b:29:11:64:63:f2:8c:97:49:c1:4e:01:4b:81:a4:a6:30:e5:
a8:c1:e1:0f:03:68:d1:56:e1:1a:60:57:34:b7:01:41:72:d1:
48:0a:4d:f5:22:14:48:12:59:98:27:16:9b:06:67:be:fa:17:
21:2f:ec:3e:c5:12:e9:2e:a2:30:ea:0c:ca:c2:1a:fc:8b:5a:
1e:53:f7:49:95:44:b2:ab:8a:84:8a:d8:af:71:b6:27:bc:2a:
ce:fa:ce:c2:4f:69:ea:ee:42:00:c2:75:30:1e:33:40:67:0e:
fa:08:6b:48:2b:cf:e2:2a:46:e0:51:96:06:dc:4b:a2:80:8d:
fb:5a:91:04:62:35:9d:e6:1a:7b:2a:30:a4:e7:e4:12:3e:f3:
e8:01:bb:78:21:18:c0:37:7f:9c:3a:d3:41:f6:c5:91:60:c4:
34:85:ec:5f:cd:41:56:db:b1:4a:7c:44:50:a3:58:ac:c9:77:
72:1d:66:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:12 2024 by rpki-client on console-ams.rpki-client.org