Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/Ui3Ot8eUnOEfJHcoC6cgWbARGbY.roa
File: Ui3Ot8eUnOEfJHcoC6cgWbARGbY.roa (raw, json)
Hash identifier: j6c5c5EyFfu0gByrOTGtErP6wKhqqO0/esMhmVQNHng=
Subject key identifier: 52:2D:CE:B7:C7:94:9C:E1:1F:24:77:28:0B:A7:20:59:B0:11:19:B6
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 0193397CA5D548BB9AD16B2A8F5966DD5BB6
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/Ui3Ot8eUnOEfJHcoC6cgWbARGbY.roa
Signing time: Sun 17 Nov 2024 09:38:10 +0000
ROA not before: Sun 17 Nov 2024 09:38:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215224
IP address blocks: 89.40.70.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 29 Nov 2024 04:30:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:39:7c:a5:d5:48:bb:9a:d1:6b:2a:8f:59:66:dd:5b:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Nov 17 09:38:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=522dceb7c7949ce11f2477280ba72059b01119b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:46:6f:a9:ee:84:c6:5a:2c:b1:8e:c4:bb:4c:
c7:11:f2:7a:fa:66:bd:79:82:19:bb:be:59:f1:2b:
b1:7a:ec:65:6d:a5:8a:cc:a3:8f:9e:54:9a:5b:89:
e1:1b:b7:05:d4:a2:a5:f3:72:b4:fd:5e:38:85:44:
84:34:66:dc:12:b9:ec:0f:80:16:97:a6:5c:1f:6b:
24:94:96:1b:fb:8f:3e:f9:52:27:d6:bf:7b:5f:13:
48:09:6c:aa:e6:c0:17:5e:14:a6:2d:94:39:ba:8f:
da:9e:44:ff:51:77:80:0c:cc:5b:6b:4e:2f:32:f7:
22:01:d8:18:20:ee:b5:41:96:27:0a:33:93:d8:2b:
8b:a9:59:d9:a0:fb:45:27:21:a3:d8:c6:83:9d:4f:
15:ca:26:4d:a1:ad:43:8f:c4:e3:4e:43:0a:62:51:
ca:e9:70:03:9b:59:f0:76:06:a3:13:bf:c1:63:47:
6f:e0:1b:48:02:60:3b:ea:b4:78:f0:ad:2c:18:a3:
26:ef:2a:8b:b8:3e:11:12:aa:df:7d:4d:0b:bc:12:
1b:23:91:cc:37:d9:bb:19:3d:2e:78:6c:8b:23:ea:
69:84:ff:b1:41:52:29:ee:6e:2b:98:c1:26:59:08:
e4:aa:51:04:77:cf:09:84:b8:3e:eb:c3:bb:4e:dd:
ca:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:2D:CE:B7:C7:94:9C:E1:1F:24:77:28:0B:A7:20:59:B0:11:19:B6
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/Ui3Ot8eUnOEfJHcoC6cgWbARGbY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.40.70.0/24
Signature Algorithm: sha256WithRSAEncryption
94:6a:c9:9d:8a:ef:35:c9:7e:e6:5d:00:a9:4d:aa:3c:b6:23:
23:1f:58:16:35:ae:00:7c:6d:e5:5e:e4:c2:ae:de:9f:8c:6e:
88:f5:16:99:8d:ef:aa:39:5a:46:93:08:bb:ba:97:4a:9a:b9:
ca:cb:29:ef:99:b7:ec:4c:8b:b5:76:98:1a:65:db:f2:ef:c9:
36:9d:3e:6c:d6:7a:67:a9:f0:81:0c:d9:13:4e:a7:f0:9a:3c:
a6:6a:fa:73:65:f6:42:3d:da:ca:6d:a9:e9:65:e8:16:3e:86:
04:6d:83:54:a4:b6:2f:71:c0:b5:55:b9:59:db:96:93:14:be:
89:d8:6c:70:43:24:24:86:ee:dc:de:0d:f2:f3:57:52:d5:02:
9d:a6:72:ff:32:41:db:17:1d:46:38:b1:e6:70:1e:e9:ba:72:
cf:58:be:96:7d:d3:16:9b:4f:32:8a:f5:8f:c0:bf:b6:f8:ae:
19:d4:f9:1f:fa:10:05:29:a2:60:3c:20:64:c6:84:4b:b5:67:
fb:7f:4d:d5:4d:c7:c3:19:52:2b:c8:58:91:c9:b4:8c:74:ed:
db:d4:e2:51:ab:8a:4e:59:1d:f7:ce:34:5c:cd:57:7b:49:13:
1b:a9:3f:45:95:94:e7:33:7f:b9:8c:a6:6b:d2:34:36:2b:fa:
01:af:0c:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:43:17 2025 by rpki-client