Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/RMWgjvnNlIzCmYOXlCkaDwBD8GA.roa
File: RMWgjvnNlIzCmYOXlCkaDwBD8GA.roa (raw, json)
Hash identifier: IF1jxieVquMtEyCeDCtjs8YnkQeeKCQJf4/PMEnL3ig=
Subject key identifier: 44:C5:A0:8E:F9:CD:94:8C:C2:99:83:97:94:29:1A:0F:00:43:F0:60
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018D8C0C57CC61A45A9A7FC67414DFFAE0B9
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/RMWgjvnNlIzCmYOXlCkaDwBD8GA.roa
Signing time: Fri 09 Feb 2024 04:07:15 +0000
ROA not before: Fri 09 Feb 2024 04:07:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47516
IP address blocks: 89.35.73.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 28 Feb 2024 05:18:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:8c:0c:57:cc:61:a4:5a:9a:7f:c6:74:14:df:fa:e0:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Feb 9 04:07:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=44c5a08ef9cd948cc299839794291a0f0043f060
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:77:15:b6:95:13:8b:10:38:e4:32:5d:81:2f:
9a:a3:70:a9:66:fe:f9:f2:f1:be:dc:96:14:16:b1:
24:69:3b:df:58:bf:ad:8f:10:2d:a9:77:b5:01:45:
5c:39:54:7d:da:3a:cf:95:19:66:96:c8:97:3c:21:
76:26:74:d1:45:46:47:53:44:1f:20:0c:88:3d:8c:
04:99:72:b0:d2:98:4c:18:da:97:a2:99:b6:7e:17:
da:b1:64:fa:05:ba:04:05:2e:e5:ed:83:b2:88:1c:
04:be:3f:9a:0d:a4:c1:f7:a8:ba:cf:32:24:36:57:
70:6f:9e:66:b4:17:ee:03:02:e8:8d:9a:9c:79:20:
e2:2c:39:61:aa:4e:9a:9c:81:d9:c4:73:4a:58:9b:
df:15:ac:13:ef:52:d9:1e:f1:eb:74:8d:f8:79:af:
c9:ce:d8:9d:05:de:8f:10:bb:b4:c8:68:d0:c8:43:
24:a9:fe:85:4b:68:d4:f2:2c:de:2c:59:eb:4c:db:
b9:7c:4f:b5:3d:41:2e:dd:cb:28:86:8d:3c:99:1f:
a1:84:df:9c:33:91:10:ae:e9:b1:8b:a7:06:94:7e:
77:0f:a9:7f:59:c7:12:05:72:a6:75:f3:34:76:14:
69:cc:fe:b6:4a:ff:e7:13:8f:ed:21:25:25:ce:bb:
97:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:C5:A0:8E:F9:CD:94:8C:C2:99:83:97:94:29:1A:0F:00:43:F0:60
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/RMWgjvnNlIzCmYOXlCkaDwBD8GA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.35.73.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:b6:be:5b:9e:a5:d0:7b:c7:9f:65:06:c1:ac:8c:47:8e:2f:
5f:5b:07:6c:c8:11:a8:43:da:e1:06:36:86:68:4e:6e:fc:03:
01:32:12:7b:43:76:8e:7d:e9:b5:4c:5f:27:c6:a0:34:d5:3f:
d9:74:ed:10:f9:4f:0b:6b:b2:05:27:61:f2:50:1b:75:dd:0e:
7e:73:02:4f:17:4f:16:8a:a4:0e:92:c4:e3:28:91:08:2e:4e:
72:8f:ff:80:6e:7b:04:42:37:74:e3:0d:8d:29:88:e0:70:e2:
da:6b:2b:ff:e9:a4:2a:db:00:af:fc:fd:8b:89:b2:73:ed:73:
32:d0:7b:75:3f:95:88:ea:d7:fa:d7:6d:f8:8c:12:ba:bd:f9:
8d:3a:ce:62:e3:af:a3:91:0d:d1:a6:71:a5:62:02:c3:34:86:
ed:b4:29:e8:71:83:b1:9f:2c:85:f4:1f:e9:24:df:22:dc:25:
d1:2f:2c:9a:f6:5e:5f:56:18:f1:30:05:33:8c:14:16:c3:a2:
0b:2d:0f:8c:5c:49:b7:bd:32:2e:91:f2:e4:b6:45:7d:eb:9a:
0e:a3:0b:d1:a0:3a:21:4c:76:a0:73:d2:43:a1:a4:f2:06:1a:
96:fe:75:fd:c1:b5:36:5c:ca:5f:49:bf:18:89:33:87:0f:c6:
19:41:11:21
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY2MDFfMYaRamn/GdBTf+uC5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkYTVkMzJkNWIwOWM5M2MxYjVlM2ZjNWEyYWEyMGQ3NDZm
Y2ZlZDEwHhcNMjQwMjA5MDQwNzE1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0NGM1YTA4ZWY5Y2Q5NDhjYzI5OTgzOTc5NDI5MWEwZjAwNDNmMDYwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn3cVtpUTixA45DJdgS+ao3CpZv75
8vG+3JYUFrEkaTvfWL+tjxAtqXe1AUVcOVR92jrPlRlmlsiXPCF2JnTRRUZHU0Qf
IAyIPYwEmXKw0phMGNqXopm2fhfasWT6BboEBS7l7YOyiBwEvj+aDaTB96i6zzIk
Nldwb55mtBfuAwLojZqceSDiLDlhqk6anIHZxHNKWJvfFawT71LZHvHrdI34ea/J
ztidBd6PELu0yGjQyEMkqf6FS2jU8izeLFnrTNu5fE+1PUEu3csoho08mR+hhN+c
M5EQrumxi6cGlH53D6l/WccSBXKmdfM0dhRpzP62Sv/nE4/tISUlzruXJQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFETFoI75zZSMwpmDl5QpGg8AQ/BgMB8GA1UdIwQY
MBaAFH2l0y1bCck8G14/xaKqINdG/P7RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAt
ZTU4MzlmNDNlNTgzLzEvUk1XZ2p2bk5sSXpDbVlPWGxDa2FEd0JEOEdBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAtZTU4MzlmNDNlNTgz
LzEvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWSNJMA0G
CSqGSIb3DQEBCwUAA4IBAQB+tr5bnqXQe8efZQbBrIxHji9fWwdsyBGoQ9rhBjaG
aE5u/AMBMhJ7Q3aOfem1TF8nxqA01T/ZdO0Q+U8La7IFJ2HyUBt13Q5+cwJPF08W
iqQOksTjKJEILk5yj/+AbnsEQjd04w2NKYjgcOLaayv/6aQq2wCv/P2LibJz7XMy
0Ht1P5WI6tf61234jBK6vfmNOs5i46+jkQ3RpnGlYgLDNIbttCnocYOxnyyF9B/p
JN8i3CXRLyya9l5fVhjxMAUzjBQWw6ILLQ+MXEm3vTIukfLktkV965oOowvRoDoh
THagc9JDoaTyBhqW/nX9wbU2XMpfSb8YiTOHD8YZQREh
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:13 2024 by rpki-client on console-ams.rpki-client.org