Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/91kN8YVzhV3f6BC3r1jkL1VqVXs.roa
File: 91kN8YVzhV3f6BC3r1jkL1VqVXs.roa (raw, json)
Hash identifier: wEyWk/5Bufrm668swevPHkGoeJVOPjD6uf0yJ8PFfLU=
Subject key identifier: F7:59:0D:F1:85:73:85:5D:DF:E8:10:B7:AF:58:E4:2F:55:6A:55:7B
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 0187C21278121AD4E6A26FD55D3BBCC219B9
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/91kN8YVzhV3f6BC3r1jkL1VqVXs.roa
Signing time: Thu 27 Apr 2023 09:36:42 +0000
ROA not before: Thu 27 Apr 2023 09:36:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212219
IP address blocks: 89.35.119.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 27 Jun 2023 09:33:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:c2:12:78:12:1a:d4:e6:a2:6f:d5:5d:3b:bc:c2:19:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Apr 27 09:36:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f7590df18573855ddfe810b7af58e42f556a557b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:f4:90:f5:b1:65:b2:a1:3b:e1:bf:3a:a1:fa:
c5:2f:ea:8b:20:e7:a0:90:ae:e3:53:ce:d9:55:11:
e9:0d:38:e3:06:be:cc:e6:ae:50:c8:e0:dd:c1:8e:
8d:67:cc:c3:ab:ff:db:b2:91:87:c1:8e:4f:12:3a:
e3:e2:e8:74:a7:89:ff:e6:df:dd:c2:d4:04:42:89:
37:12:1a:e9:c0:3a:27:72:cd:c6:a1:07:19:db:04:
df:9f:4c:c5:6e:ed:e6:02:e2:59:c3:52:05:3d:5c:
d6:5a:34:fd:07:e1:5c:d4:cd:8a:10:a4:81:43:84:
98:20:62:2d:34:87:1a:5b:9d:4b:8b:d6:c2:e7:e4:
0d:90:21:05:bd:a2:ce:50:4e:27:02:aa:1a:43:ac:
c4:74:20:db:2e:7a:51:6c:58:f6:44:9a:cc:5d:3c:
7a:53:bb:7f:e4:f8:07:93:d8:b9:6b:a5:9e:f2:23:
77:55:56:50:23:db:3f:19:6f:4b:ff:78:ec:dd:5a:
9a:c7:4d:cf:ee:f0:75:53:f6:59:56:69:77:78:e7:
5c:1f:d2:50:cb:2f:3a:b8:5d:ae:4e:1a:d8:05:aa:
04:70:09:ee:29:43:a3:82:8e:03:28:f1:7b:61:fb:
43:99:cd:cf:36:ab:07:b2:8f:ec:9c:f8:5d:d8:fe:
74:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:59:0D:F1:85:73:85:5D:DF:E8:10:B7:AF:58:E4:2F:55:6A:55:7B
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/91kN8YVzhV3f6BC3r1jkL1VqVXs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.35.119.0/24
Signature Algorithm: sha256WithRSAEncryption
76:93:b9:db:cf:84:0b:08:4e:8f:60:69:03:70:f7:95:cf:fe:
e1:28:81:fc:51:86:ed:06:66:b5:b2:ec:7d:ea:cc:79:82:ec:
92:10:91:db:07:4f:fd:bc:6c:80:9a:f4:b0:7b:8a:8a:32:58:
4c:a8:c5:79:bb:01:0c:c0:18:8a:67:a7:76:01:6b:f0:2a:70:
73:cd:73:83:30:35:3b:41:b3:ed:f0:2c:2a:5b:fe:51:ee:b5:
96:18:32:47:5a:78:e1:94:f4:96:24:ad:40:25:c3:23:f1:86:
59:eb:07:e1:67:66:de:e5:6b:8b:10:33:6f:1d:e8:35:4a:1d:
33:7b:d2:fa:19:4e:4a:2d:aa:2f:0d:f9:15:84:d3:27:da:75:
a7:af:b9:71:3b:8e:d3:c1:c3:6a:98:2d:e4:85:8c:a5:7f:52:
a0:f2:ba:ad:af:c1:80:a8:d9:a6:95:fa:cc:2d:71:70:2b:6b:
70:ba:eb:b7:52:27:46:0f:37:88:57:9e:90:5b:c8:d7:e8:24:
1a:cf:2a:35:a8:7f:97:de:d1:87:53:9a:53:08:2f:8e:1e:3d:
b3:27:5c:2b:e5:48:0e:ee:0a:c0:73:23:bd:1c:1f:73:90:4b:
34:7c:60:13:7f:f7:50:83:0a:94:47:ea:88:22:b0:ab:90:03:
e7:53:47:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:06 2024 by rpki-client on console-fra.rpki-client.org