Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/PMIh9ipdxvNLUIuRUYs4_Gee_AA.roa
File: PMIh9ipdxvNLUIuRUYs4_Gee_AA.roa (raw, json)
Hash identifier: c6ZBYqfRqT7x/krXoHCNGDVPNQk5e5mge+Tbodl9LUY=
Subject key identifier: 3C:C2:21:F6:2A:5D:C6:F3:4B:50:8B:91:51:8B:38:FC:67:9E:FC:00
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018CC49334DA46F9EB75ACB025B3186C725B
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/PMIh9ipdxvNLUIuRUYs4_Gee_AA.roa
Signing time: Mon 01 Jan 2024 10:30:30 +0000
ROA not before: Mon 01 Jan 2024 10:30:30 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15731
IP address blocks: 89.35.119.0/24 maxlen: 24
89.35.130.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 03 Jun 2024 13:02:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:93:34:da:46:f9:eb:75:ac:b0:25:b3:18:6c:72:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Jan 1 10:30:30 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3cc221f62a5dc6f34b508b91518b38fc679efc00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:3e:37:d0:d0:69:ed:f9:d1:9e:2c:f0:a1:03:
86:4d:6b:9f:05:fa:a1:de:ce:80:a3:d1:82:b5:39:
04:11:62:69:59:a6:2e:cd:00:70:b6:13:4c:62:7e:
9c:8e:4f:cc:51:05:d6:76:55:f3:a6:cd:9e:79:71:
a5:87:61:13:cd:5c:4b:5e:85:d4:76:59:7b:da:31:
15:1b:df:fc:92:4b:a2:a7:05:47:05:42:a6:87:0d:
54:f6:ee:1c:78:0d:3f:2b:25:4c:5d:b5:e3:1b:34:
ac:ae:e3:69:42:af:3d:bc:5d:08:19:6a:e4:f8:26:
80:c4:38:0e:a4:fa:90:bf:e3:63:6f:1c:c1:d0:74:
81:ef:b4:88:10:2d:2b:8e:88:6e:30:f8:96:69:d4:
24:4e:64:56:6d:35:2d:48:31:97:ed:b2:54:f6:69:
30:b0:44:99:26:a7:fa:d5:e8:16:68:5b:f8:f9:bc:
0b:fa:42:fa:d6:81:dc:1b:48:a0:e5:39:de:b5:88:
43:df:d1:96:2b:f6:c5:5a:6c:74:7f:21:cb:f8:7f:
81:9d:be:34:54:70:fd:c0:c6:08:a7:65:a9:b2:d1:
69:7e:af:70:ac:48:76:02:a7:9f:47:ea:d6:b1:b6:
0c:a5:e4:36:bd:d1:d6:34:85:fe:fc:a8:95:a2:e7:
b4:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:C2:21:F6:2A:5D:C6:F3:4B:50:8B:91:51:8B:38:FC:67:9E:FC:00
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/PMIh9ipdxvNLUIuRUYs4_Gee_AA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.35.119.0/24
89.35.130.0/23
Signature Algorithm: sha256WithRSAEncryption
79:9a:62:d1:87:12:1e:82:5c:71:9d:f2:a1:10:28:4d:9f:41:
e4:19:fc:ed:24:04:fe:3a:04:62:f8:22:f7:fc:f2:eb:45:91:
0d:ad:4d:ad:3a:f7:59:dc:d2:da:cf:0a:05:68:3a:83:46:b1:
0d:6e:c1:d6:87:0f:95:ef:b4:10:a5:8b:57:f2:38:e7:d0:cf:
0f:68:1a:13:94:2d:fb:e7:36:fd:2f:17:65:f2:8c:44:e1:3b:
54:ab:8e:a1:b5:c5:71:4a:6c:d5:55:d4:34:4e:c3:10:d9:12:
60:8e:6d:fb:5c:cd:0d:70:cb:4a:d6:10:e0:cd:73:31:b1:31:
1c:ba:b8:a0:7b:67:c5:12:4b:44:8f:91:2e:b0:93:2b:5f:65:
97:68:9a:ac:74:b9:28:5e:f8:5e:84:f1:fa:b3:05:8e:9e:72:
54:7b:5f:ae:2f:6b:74:3a:ed:bf:b6:51:5e:86:3c:67:bb:50:
09:b3:88:3d:85:d4:d1:1f:41:ab:f4:c5:ca:49:d8:90:ca:fe:
46:8f:a3:72:9b:72:b5:8b:3d:08:f0:c1:a9:a2:cd:40:41:48:
14:d0:28:79:cf:35:19:2a:30:f4:f2:60:25:2e:18:de:88:30:
d3:15:70:49:4b:71:52:1f:f8:90:31:da:3f:b0:23:ae:b3:ec:
ff:8a:f1:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:13 2024 by rpki-client on console-ams.rpki-client.org