Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/UBTAfwKkT4Nv8uKW6Lqe91TC8eM.roa
File: UBTAfwKkT4Nv8uKW6Lqe91TC8eM.roa (raw, json)
Hash identifier: WIFzJOrT/ky/pFqaqOZKtasc0Ku9ohyADxVlKCwUql8=
Subject key identifier: 50:14:C0:7F:02:A4:4F:83:6F:F2:E2:96:E8:BA:9E:F7:54:C2:F1:E3
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018DA0CC544EC556E217B8F4476D9200DB69
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/UBTAfwKkT4Nv8uKW6Lqe91TC8eM.roa
Signing time: Tue 13 Feb 2024 04:49:21 +0000
ROA not before: Tue 13 Feb 2024 04:49:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212042
IP address blocks: 89.34.219.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 14 Feb 2024 05:23:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:a0:cc:54:4e:c5:56:e2:17:b8:f4:47:6d:92:00:db:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Feb 13 04:49:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5014c07f02a44f836ff2e296e8ba9ef754c2f1e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:05:ec:86:7d:09:2b:26:6f:54:31:62:8f:8c:
a6:23:e3:52:2d:c3:98:b3:e6:ba:09:f1:4d:bc:66:
20:cc:8f:4b:4c:c8:cc:60:18:f3:96:34:63:84:d0:
49:1b:e9:9a:a5:ce:03:b5:8e:3c:fc:cf:1c:45:52:
62:20:3c:a4:c3:d1:73:4c:d4:95:b7:30:21:9b:c1:
71:dd:11:92:63:29:00:1b:bf:14:40:83:ca:85:81:
d2:6b:bd:1e:67:78:8f:de:cc:cc:dc:e2:52:49:a1:
87:8a:f8:18:2f:01:07:a7:e2:60:ea:0d:d6:2c:29:
f3:33:eb:9d:9c:2e:f3:3a:0b:79:e6:1b:33:2d:67:
7d:5a:3c:2b:5e:dd:e7:65:e7:01:15:c4:cb:1e:83:
6c:f6:9f:c3:6f:78:e1:ed:05:c5:c4:ae:4f:97:7c:
73:0a:2a:70:64:74:1a:9f:ee:a1:f3:00:d2:66:53:
20:31:e6:ce:2b:0f:f8:f3:f0:49:8c:f1:7d:95:f7:
a6:06:67:e8:9b:8a:bf:af:af:67:68:8b:4d:46:90:
5f:eb:bc:2e:a8:c2:77:f1:90:75:e7:4e:02:a9:d7:
68:15:80:14:68:68:94:e9:3a:ca:ea:3d:0e:c9:82:
aa:75:37:41:8b:c2:5d:bd:39:5b:5a:93:25:7c:fb:
4f:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:14:C0:7F:02:A4:4F:83:6F:F2:E2:96:E8:BA:9E:F7:54:C2:F1:E3
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/UBTAfwKkT4Nv8uKW6Lqe91TC8eM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.34.219.0/24
Signature Algorithm: sha256WithRSAEncryption
69:f6:52:4c:57:41:12:d3:61:ae:2f:a4:e6:3e:5c:9a:d3:64:
71:71:c1:6c:33:83:a0:ab:f4:03:2c:4d:b9:2b:29:71:41:71:
1d:84:c6:14:07:fc:f8:85:df:92:d0:11:79:9e:a2:51:83:fa:
4e:6e:82:e2:7c:1c:71:ed:a6:71:c0:c3:5f:da:62:b1:50:31:
2b:3e:5c:88:63:bd:bd:b5:76:59:e5:73:fb:1c:73:a9:2b:45:
71:41:05:c8:d4:c9:63:5f:66:a7:51:22:dc:d0:cb:a6:7b:8d:
9e:d1:fa:7b:df:df:a8:03:6a:08:7b:8f:28:e8:d4:f3:ad:00:
54:7b:4d:a2:5e:e1:26:13:03:bf:73:08:a0:6b:d8:90:4f:b0:
d0:0d:48:44:8f:0c:d0:53:2d:da:eb:f6:7a:4f:8b:c3:43:dc:
4f:e8:30:50:a1:8e:0c:1b:2b:5d:4b:51:56:28:b9:19:fe:40:
15:8e:37:11:b6:ef:79:72:0e:2b:31:93:fc:dd:1a:8d:66:4c:
a4:03:80:98:33:94:e8:6b:94:2c:3d:16:a1:84:38:ec:33:e8:
7a:c8:e9:28:40:e8:0c:24:55:0f:51:5f:68:f3:f9:15:b3:a4:
2a:7b:d9:57:34:55:47:d5:66:04:6e:25:e2:0e:90:ef:6e:ed:
d7:5d:1c:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:13 2024 by rpki-client on console-ams.rpki-client.org