Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/UqW39erxjPEM7g-knBXxs4Jqf5U.roa
File: UqW39erxjPEM7g-knBXxs4Jqf5U.roa (raw, json)
Hash identifier: C/Nhz31F+W2M3RqWXH98BCeIoj5OWatEMDPCROZdznM=
Subject key identifier: 52:A5:B7:F5:EA:F1:8C:F1:0C:EE:0F:A4:9C:15:F1:B3:82:6A:7F:95
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018CFDDFF05427952BE9CD880F70C1CFD248
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/UqW39erxjPEM7g-knBXxs4Jqf5U.roa
Signing time: Fri 12 Jan 2024 13:32:40 +0000
ROA not before: Fri 12 Jan 2024 13:32:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215727
IP address blocks: 89.35.130.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 13 Feb 2024 11:47:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:fd:df:f0:54:27:95:2b:e9:cd:88:0f:70:c1:cf:d2:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Jan 12 13:32:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=52a5b7f5eaf18cf10cee0fa49c15f1b3826a7f95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:0e:e3:8b:97:4e:7a:b1:ef:b9:74:cb:38:4c:
4f:eb:17:ac:ea:a5:21:c2:bb:4c:60:11:93:48:52:
b9:c0:d7:34:67:30:d4:05:68:06:01:39:1c:b2:ac:
9a:21:66:a8:05:c6:60:71:24:4a:c4:8a:77:e1:60:
e5:9e:59:87:d8:4b:88:90:d7:ad:5c:de:43:04:d3:
9f:ce:10:7a:7e:a9:88:b6:a5:ac:52:ac:da:cf:a3:
66:87:53:85:b9:1f:0b:7c:ee:2e:a5:64:6f:b9:a2:
6f:f7:ca:cd:e6:59:b9:68:11:64:01:26:fe:ef:10:
dc:71:c3:74:27:ac:74:7a:4c:eb:a2:96:b1:a1:06:
0b:28:b5:09:ad:6c:fd:37:b7:66:ae:27:17:4d:4e:
ca:ec:a1:fc:7e:ec:7d:ad:7e:67:7e:0e:af:02:53:
65:cd:bc:6c:2a:d3:30:a9:ba:ba:da:27:76:d8:7a:
9a:5c:be:61:9e:b5:88:4e:a8:69:8d:72:f1:4f:f5:
4b:61:e2:79:a4:39:5d:d1:6f:42:1a:07:70:29:79:
57:03:02:54:84:a5:b9:78:0c:8d:67:07:07:d5:12:
25:d4:c3:dd:72:16:9e:c8:13:64:d1:34:3a:c1:9c:
c5:b2:dd:2c:1c:3f:bb:7d:d3:88:00:89:63:8f:9b:
8f:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:A5:B7:F5:EA:F1:8C:F1:0C:EE:0F:A4:9C:15:F1:B3:82:6A:7F:95
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/UqW39erxjPEM7g-knBXxs4Jqf5U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.35.130.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:e6:ae:9f:88:77:ef:83:21:ee:95:06:84:ab:c7:b0:b7:b2:
e6:36:a0:f3:9c:3f:5e:3f:0b:b2:27:2e:79:b5:7d:4b:d2:92:
3b:23:d8:59:f6:8e:ee:8b:17:0a:68:45:f4:74:8e:da:96:ce:
2b:3a:58:08:30:2c:0f:dc:a9:50:5d:0f:0c:36:14:22:e9:b2:
95:f0:18:bb:0c:64:fd:68:1d:da:92:5f:37:65:23:a6:28:e4:
63:2a:49:bc:a1:3c:e1:a2:4a:f9:21:68:44:70:e2:c6:73:20:
3c:06:e7:84:26:7a:c9:36:c2:e2:fd:9a:3b:b5:f8:5b:e7:29:
c2:1a:a6:60:6c:1c:b4:c4:24:69:7b:04:d3:ff:33:65:6a:0e:
18:a8:19:72:69:e8:13:8f:24:26:85:e2:f1:58:e9:b6:52:d9:
74:66:b1:3e:7f:bd:29:24:b9:36:ef:e6:db:01:fa:29:3c:07:
42:47:8f:fe:f2:63:72:40:6b:ac:6a:79:ff:77:2f:d7:de:4f:
42:7e:d0:83:b9:4d:d6:d7:1a:d1:f4:79:f2:ec:8f:8b:b6:51:
3b:4d:67:fd:31:74:86:21:79:d6:67:f2:ea:8b:0c:16:7c:33:
3a:10:7f:03:2f:a0:52:02:f1:6e:27:c4:bd:56:18:57:ce:5d:
cb:30:eb:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:13 2024 by rpki-client on console-ams.rpki-client.org