Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/AdEpPpfkMeSzeAMoBTxTSSFFpf8.roa
File: AdEpPpfkMeSzeAMoBTxTSSFFpf8.roa (raw, json)
Hash identifier: k5dHKIj2v5r2en87V7Hvba2GKOxF62HVlkPNyqraHuU=
Subject key identifier: 01:D1:29:3E:97:E4:31:E4:B3:78:03:28:05:3C:53:49:21:45:A5:FF
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018B2899B9B1B0E32D5A96097A3AC819CE12
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/AdEpPpfkMeSzeAMoBTxTSSFFpf8.roa
Signing time: Fri 13 Oct 2023 10:34:05 +0000
ROA not before: Fri 13 Oct 2023 10:34:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216159
IP address blocks: 89.35.130.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:28:99:b9:b1:b0:e3:2d:5a:96:09:7a:3a:c8:19:ce:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Oct 13 10:34:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=01d1293e97e431e4b3780328053c53492145a5ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:5a:f4:30:0a:8f:03:f7:f6:62:d0:5c:f3:01:
f4:a5:f9:da:c9:42:1c:ef:07:fb:25:a3:28:af:ca:
14:11:50:17:d8:e5:38:1a:a0:f1:1c:2b:cf:0a:0d:
02:bd:55:0c:c0:64:f7:c7:20:0a:e4:67:a8:8d:fc:
9a:fc:c2:fe:67:d8:ef:b7:83:06:36:dd:25:e7:ce:
b2:50:3e:b7:63:fa:50:9c:4e:4a:67:12:a0:88:62:
be:85:3b:99:e7:89:4b:22:96:79:b2:35:7f:1d:44:
83:38:45:8a:7c:07:d6:20:be:00:34:11:cd:6c:58:
72:a4:ab:8a:c3:a0:a1:87:67:be:17:39:0b:e6:f5:
93:7a:42:f8:d5:5a:a2:2b:8c:97:c1:cd:a2:06:8c:
d0:b0:db:c8:33:48:51:23:d2:e9:57:ea:81:9d:58:
ee:c8:27:15:d7:d5:1a:9b:7c:64:5a:a2:e6:6a:fe:
d0:95:3c:94:14:aa:41:b6:7a:14:f3:90:0b:87:64:
96:00:a1:d6:b8:da:df:e3:9f:bc:b8:45:b0:0c:03:
2e:57:b6:12:1f:9b:29:9a:eb:1c:d1:60:b9:4e:0b:
8a:dc:ed:36:66:ea:d6:82:4a:56:b1:27:0c:19:93:
7e:cc:32:5c:d7:13:b3:e7:0c:88:8d:05:c4:5e:7d:
5f:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:D1:29:3E:97:E4:31:E4:B3:78:03:28:05:3C:53:49:21:45:A5:FF
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/AdEpPpfkMeSzeAMoBTxTSSFFpf8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.35.130.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:1f:bf:14:cd:b5:01:fe:49:3d:06:a3:e1:01:3a:95:c0:d8:
52:19:c2:02:91:29:a4:7d:9d:53:bc:d2:00:a6:ed:c7:77:2d:
c5:cf:ed:8d:c3:69:60:d9:24:3d:ce:bc:c2:15:c1:91:c4:c9:
bb:7e:b9:7f:7a:9a:94:78:08:d4:36:4d:03:f4:f4:8f:ce:04:
66:7c:28:ff:21:57:05:a5:1f:65:ed:e3:47:e0:84:0e:f1:60:
3f:67:f2:49:5f:59:ab:7e:84:7a:82:23:9c:cb:89:88:29:1f:
5e:d4:66:13:1e:d4:75:30:c0:97:d2:a2:dc:41:aa:47:d9:4b:
9f:26:15:0c:2d:be:24:d2:05:1f:aa:c8:75:73:6e:75:52:56:
ad:ed:68:09:7f:4b:86:7f:78:7b:e4:d6:7d:02:65:56:1c:42:
e5:22:6e:9f:11:04:2d:95:fa:d7:69:2d:bf:94:91:10:2a:a0:
79:8e:c4:96:6c:d3:69:c2:6b:7a:4f:0a:e3:8d:56:9f:a2:04:
04:d9:7a:5f:91:cb:25:ea:58:15:b1:88:ae:ad:af:6d:3b:47:
d2:16:34:29:7e:57:07:2d:1a:6d:3b:5e:a6:37:81:18:06:6b:
f8:64:a6:2f:38:44:c6:39:dd:02:05:55:09:2e:09:ba:ac:36:
ba:a0:45:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:12 2024 by rpki-client on console-ams.rpki-client.org