Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/D4K99vDhgE6MmFYU3iRUXlC-LpI.roa
File: D4K99vDhgE6MmFYU3iRUXlC-LpI.roa (raw, json)
Hash identifier: zPA3EZ0By9QUCF9y6f/J1cznQiTM1aZpPvGh5E4qCXQ=
Subject key identifier: 0F:82:BD:F6:F0:E1:80:4E:8C:98:56:14:DE:24:54:5E:50:BE:2E:92
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018CC493367B23B1EC5A64691FD0DD154896
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/D4K99vDhgE6MmFYU3iRUXlC-LpI.roa
Signing time: Mon 01 Jan 2024 10:30:31 +0000
ROA not before: Mon 01 Jan 2024 10:30:31 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 30058
IP address blocks: 89.34.219.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 16 Jan 2024 16:20:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:93:36:7b:23:b1:ec:5a:64:69:1f:d0:dd:15:48:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Jan 1 10:30:31 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0f82bdf6f0e1804e8c985614de24545e50be2e92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:64:ec:9a:9a:e3:81:4d:5d:e4:d8:74:f1:0b:
31:52:ac:44:fa:ab:19:c8:97:8d:e4:ad:55:a5:e1:
51:2e:6f:27:a0:49:81:82:0a:ab:5d:33:08:4a:53:
f6:47:ed:3e:cd:30:c3:33:f1:da:d1:4c:b3:11:d0:
d0:ba:5d:74:07:c3:b2:28:45:90:6f:62:96:f9:66:
1d:04:ec:f4:10:51:34:bb:27:92:01:54:a3:d9:39:
c9:bd:8b:2d:08:6a:37:53:04:c1:e4:16:28:84:aa:
6c:64:8f:7f:b7:b6:a8:c9:23:ae:f8:01:50:34:8c:
a6:77:f2:7d:15:61:c0:fc:71:c5:0b:cc:92:62:ee:
3f:6a:3b:68:fa:71:8e:c7:6e:c6:fe:db:3b:9d:2b:
b1:da:c8:70:80:e2:54:67:2a:8e:38:5a:0d:a1:80:
f8:1d:ea:d8:bd:38:da:84:a8:95:98:af:0d:26:56:
b8:1b:5e:57:c4:79:f4:0b:73:4e:ed:2b:14:76:3c:
83:a7:03:d2:97:92:05:9e:d9:1a:cc:7c:9f:3f:73:
45:44:92:2d:93:62:6d:4e:e0:0b:b4:07:2b:90:13:
05:6f:52:2f:1c:46:49:a8:44:f6:54:71:4b:60:d2:
73:f3:0e:97:e3:ce:65:6b:b2:8f:79:dd:a7:30:e3:
29:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:82:BD:F6:F0:E1:80:4E:8C:98:56:14:DE:24:54:5E:50:BE:2E:92
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/D4K99vDhgE6MmFYU3iRUXlC-LpI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.34.219.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:1b:ca:c7:60:50:cd:a1:f8:6c:8e:0e:88:39:eb:e4:3c:37:
70:08:f4:bc:a4:b9:de:95:79:28:99:ae:f9:1a:07:e8:3a:f9:
14:e7:05:b7:aa:04:9b:b8:a2:b8:59:04:8c:05:0a:8b:33:1e:
fa:95:0a:cf:5a:99:35:a1:f4:97:b7:00:a6:c3:f7:12:58:48:
74:8e:63:04:93:64:c2:f8:2b:55:6e:d0:28:7b:ee:da:6e:70:
02:0e:16:0e:20:46:33:fe:af:e0:ae:2a:51:4b:73:61:07:06:
dc:59:b2:df:01:73:a6:3f:60:3e:d2:29:57:10:d0:07:e6:ee:
f0:e7:84:1c:6d:91:7f:9f:46:a2:d2:d2:d0:ab:93:2a:e8:be:
5c:d1:6d:38:e4:98:28:08:5f:78:80:29:ed:52:99:89:ef:8f:
0e:7d:5c:4d:8d:40:b6:02:5d:c6:80:fd:d6:5a:a5:ab:7a:5d:
01:94:f1:68:6a:47:4c:ad:e5:a0:d5:7f:05:2b:b7:11:1c:29:
bd:53:a8:19:82:bd:87:f4:07:47:9b:5b:6c:7e:74:ce:c7:88:
f4:e6:f4:88:6a:b4:d4:a8:e1:aa:b6:8d:de:9c:77:03:b7:57:
c2:bf:85:19:cf:18:55:b0:bf:f6:93:1e:9b:79:55:49:fb:0b:
92:a2:cc:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:12 2024 by rpki-client on console-ams.rpki-client.org