Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/9tRqPxRtbb_tMEcsQ4sWhTZgcM4.roa
File: 9tRqPxRtbb_tMEcsQ4sWhTZgcM4.roa (raw, json)
Hash identifier: 4PGV/3yo22fqCDDsB7fSbesM7ZaFElCsz4woyiScI9E=
Subject key identifier: F6:D4:6A:3F:14:6D:6D:BF:ED:30:47:2C:43:8B:16:85:36:60:70:CE
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 0191C83D8D667615A03E81DA719B670E8893
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/9tRqPxRtbb_tMEcsQ4sWhTZgcM4.roa
Signing time: Fri 06 Sep 2024 16:49:22 +0000
ROA not before: Fri 06 Sep 2024 16:49:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215224
IP address blocks: 89.40.70.0/24 maxlen: 24
93.113.255.0/24 maxlen: 24
93.115.104.0/24 maxlen: 24
185.141.218.0/24 maxlen: 24
185.198.235.0/24 maxlen: 24
188.241.136.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 16 Sep 2024 04:15:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:c8:3d:8d:66:76:15:a0:3e:81:da:71:9b:67:0e:88:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Sep 6 16:49:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f6d46a3f146d6dbfed30472c438b1685366070ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:42:fd:e5:cf:06:63:d6:e8:c1:42:78:89:30:
df:37:b9:3b:6c:8f:4e:50:7b:77:33:7a:83:23:1c:
13:c8:65:26:cf:8b:58:7b:ea:ca:c1:87:8e:71:5f:
0c:0d:af:bb:7e:7b:2e:f1:3a:10:86:0d:57:86:17:
67:3f:a1:d7:98:f3:14:db:be:a4:1d:ab:87:39:0c:
38:c9:62:aa:01:9b:f0:04:75:e3:9a:32:ac:ec:dc:
8e:1c:6f:11:93:60:65:72:55:69:e5:6f:00:24:05:
c1:c3:50:49:de:68:f1:29:0a:a8:20:44:78:fe:63:
ba:0d:98:61:94:ea:a0:fe:f1:34:e7:91:6f:b9:b3:
e3:51:ef:8d:c0:8d:18:d6:70:f7:b1:c5:da:24:f5:
a7:13:5d:bb:51:5f:5e:76:61:0f:15:dc:6b:d7:6b:
08:68:42:cb:d9:cf:0c:6c:af:d0:14:24:1d:fa:86:
71:c0:97:ac:a5:3f:e0:a6:21:bc:b4:df:38:ea:93:
de:0a:60:3b:7a:7a:07:7e:5a:0c:31:dc:b1:fe:eb:
71:15:ae:a0:2b:6c:a3:a4:80:e6:bf:3a:dc:03:e2:
b5:70:df:9f:d3:68:f9:8a:4f:61:fc:8d:07:2f:21:
3b:de:4b:e5:f6:77:a9:e7:fd:6b:6b:7a:d7:74:49:
04:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:D4:6A:3F:14:6D:6D:BF:ED:30:47:2C:43:8B:16:85:36:60:70:CE
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/9tRqPxRtbb_tMEcsQ4sWhTZgcM4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.40.70.0/24
93.113.255.0/24
93.115.104.0/24
185.141.218.0/24
185.198.235.0/24
188.241.136.0/24
Signature Algorithm: sha256WithRSAEncryption
71:a0:20:d9:55:55:0b:ed:87:33:16:ca:e6:a4:3b:a8:0d:7d:
7c:3f:c4:e3:bd:6c:9f:da:d4:cf:d5:35:a5:17:f8:85:40:1a:
04:d0:4d:c2:d5:5f:44:2f:55:a3:af:d0:36:e2:be:8e:ec:55:
62:54:83:53:4d:44:c7:39:25:45:86:3d:c7:ba:a8:d2:f3:1e:
81:c0:aa:dc:e5:77:21:c2:36:4d:60:55:bc:a9:39:10:db:1c:
e1:65:c1:23:e2:c1:eb:7f:f7:95:fd:9c:aa:04:17:2d:9b:3a:
95:0a:1b:42:81:93:f1:89:ff:c9:69:9e:24:3b:36:b2:3f:79:
58:6e:75:1e:0f:72:13:b8:71:36:b3:a8:98:f5:9d:ab:e4:e6:
79:8c:b9:d9:22:0b:c9:5f:49:f8:45:73:a0:22:d6:f1:f1:89:
d3:2b:05:15:d5:7f:17:b3:1c:32:bd:e0:ec:f4:af:d7:6a:06:
d9:a3:87:e9:0b:4b:1a:49:b1:10:24:10:08:c1:8f:c4:7c:44:
7a:03:b8:00:84:dc:d2:8a:c5:a1:62:1d:3f:07:e9:46:68:04:
9b:45:1c:4e:45:ff:36:6d:18:dc:54:f5:76:f9:e0:ed:a2:eb:
a7:01:5c:80:d0:81:d1:1f:6d:3f:ec:42:7f:67:74:50:41:bf:
ec:c8:29:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 16 08:56:54 2024 by rpki-client on console-ams.rpki-client.org