Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/QFzzm194sykbuZY_JckXuIZYCY0.roa
File: QFzzm194sykbuZY_JckXuIZYCY0.roa (raw, json)
Hash identifier: NhAYO61iReyRsHnvFKxJ1MJjXEHE1ZgC4m96SHRUENQ=
Subject key identifier: 40:5C:F3:9B:5F:78:B3:29:1B:B9:96:3F:25:C9:17:B8:86:58:09:8D
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018B4B61654DBECB1B447A379A5B7E541195
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/QFzzm194sykbuZY_JckXuIZYCY0.roa
Signing time: Fri 20 Oct 2023 04:39:15 +0000
ROA not before: Fri 20 Oct 2023 04:39:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30058
IP address blocks: 89.34.219.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:4b:61:65:4d:be:cb:1b:44:7a:37:9a:5b:7e:54:11:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Oct 20 04:39:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=405cf39b5f78b3291bb9963f25c917b88658098d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:ac:27:5e:28:fc:30:f0:47:3d:f9:cf:b0:a3:
41:22:85:2b:16:ee:82:19:a8:4d:05:44:fa:d3:7f:
39:a0:69:41:c2:1c:ea:5d:e8:f4:1a:1b:14:1b:b1:
b8:ab:4d:55:28:90:48:7d:92:a5:7f:44:f6:44:2f:
47:21:2a:09:a3:2a:76:78:a6:0f:cf:57:d3:92:56:
69:20:64:61:bb:e7:50:87:41:1e:fa:0e:dd:63:5f:
8f:c3:47:37:89:88:37:e8:c3:31:c3:35:02:f1:c3:
14:62:49:00:4c:6d:5f:d7:9b:9b:2b:e0:eb:7b:cf:
6e:de:67:d4:e7:b5:fe:38:94:31:61:1f:01:af:c5:
45:c0:9e:4e:da:92:e6:83:30:68:d9:74:5b:12:21:
d9:0b:d6:2c:86:ad:c2:55:07:0f:29:25:62:af:ea:
bc:9c:9c:99:87:f4:e8:d6:bc:c3:8c:f9:47:df:69:
13:48:54:71:f4:e8:e2:56:90:71:1c:a4:8b:dd:d9:
0a:27:7d:f9:59:c2:a7:ff:82:a4:0a:db:b6:84:d2:
44:6f:dd:c6:11:81:bb:12:ac:ee:06:4e:36:8d:c3:
63:97:68:e4:34:d6:ce:c9:f9:4f:79:11:6a:75:ed:
0b:b4:20:9e:92:f9:b3:19:53:c1:a4:66:46:23:4d:
de:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:5C:F3:9B:5F:78:B3:29:1B:B9:96:3F:25:C9:17:B8:86:58:09:8D
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/QFzzm194sykbuZY_JckXuIZYCY0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.34.219.0/24
Signature Algorithm: sha256WithRSAEncryption
89:5b:3a:55:8c:0b:ce:b6:60:4f:1f:c9:f5:04:03:86:9a:91:
8f:35:cc:f9:f9:d7:98:80:9c:64:f1:11:54:16:b8:0e:98:8f:
68:35:ea:5c:71:ae:bf:1b:fc:b8:b4:f7:ed:7b:d0:e8:c0:cc:
a4:5c:9d:04:01:cd:2c:4b:87:5b:e9:ca:b9:2d:1e:5a:bf:97:
24:e3:94:cb:06:93:bd:13:36:23:f5:52:3d:a3:93:18:36:78:
38:b3:22:dc:18:72:48:3b:72:8c:e1:dc:48:5c:3b:a9:51:ba:
6e:5f:77:0a:df:22:e3:81:34:04:a9:6b:7f:a7:d4:c5:c3:6f:
1c:72:f5:89:f1:e0:59:30:d0:c7:d0:57:42:ed:ed:43:f9:3e:
98:69:a6:68:01:c6:bd:93:45:28:38:bb:fd:b5:15:45:a6:0f:
d7:02:e0:59:96:09:18:b0:6e:50:2b:6b:98:cb:ea:a7:98:8d:
20:57:56:2c:6d:c7:d5:79:4f:ba:9c:94:41:9a:3f:33:36:80:
b6:32:4d:fb:00:ac:5f:ef:cd:1c:5a:89:28:fa:1f:34:a4:35:
82:2e:a9:ef:c1:c1:06:7d:68:a6:36:ff:3f:0f:f4:d4:80:df:
48:ab:b3:03:1c:48:a3:b0:9c:e4:8f:57:df:ad:24:44:66:16:
2d:9d:3b:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:13 2024 by rpki-client on console-ams.rpki-client.org