Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/W7UvtxSgG2fw_2FCc1cFmIpHfD4.roa
File: W7UvtxSgG2fw_2FCc1cFmIpHfD4.roa (raw, json)
Hash identifier: jeQNWhxxNdRXOL9P4m/ynAlXkCLI99f9Rj4kpHKEMFc=
Subject key identifier: 5B:B5:2F:B7:14:A0:1B:67:F0:FF:61:42:73:57:05:98:8A:47:7C:3E
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018A211591FD483DE2F13489BE9F7FBCE3CB
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/W7UvtxSgG2fw_2FCc1cFmIpHfD4.roa
Signing time: Wed 23 Aug 2023 06:29:36 +0000
ROA not before: Wed 23 Aug 2023 06:29:36 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15731
IP address blocks: 45.88.13.0/24 maxlen: 24
188.214.107.0/24 maxlen: 24
89.35.130.0/23 maxlen: 23
89.35.131.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 26 Aug 2023 12:25:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:21:15:91:fd:48:3d:e2:f1:34:89:be:9f:7f:bc:e3:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Aug 23 06:29:36 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5bb52fb714a01b67f0ff6142735705988a477c3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:8a:91:31:62:5c:9d:0c:26:32:fd:8e:6c:28:
6e:54:db:a9:aa:11:56:5a:22:88:00:7e:33:9c:73:
57:58:3f:bd:6f:29:17:8a:13:03:07:88:a1:12:cd:
fc:ba:d9:4d:18:86:d3:c9:93:0f:be:2c:60:5f:4a:
34:2e:da:54:37:45:a7:c0:de:87:c7:2d:f9:c5:98:
32:53:54:8d:10:51:1e:5c:64:7b:84:e6:ac:4f:06:
b4:a2:c3:c4:65:ed:31:49:a1:20:3d:fd:51:9d:07:
a0:82:8b:64:24:cf:de:78:19:1d:8b:66:c9:ae:5d:
40:8b:3f:63:45:31:a8:e2:88:39:0a:2e:7a:ac:6f:
6a:59:cc:53:af:75:1c:32:82:c0:01:7c:d2:ed:b6:
e5:f9:00:e0:cd:ae:55:5f:47:46:61:ef:9e:61:53:
e5:cf:40:78:7a:22:21:1a:40:a3:bd:8f:a3:fb:08:
c6:e9:6d:ee:e0:a1:98:49:20:f5:e3:cc:c0:04:3e:
4f:41:0a:58:1f:0b:c7:4f:90:0b:5b:d2:2b:7b:ad:
21:8a:86:6a:5f:d9:1d:ba:27:f9:d2:8a:40:ed:11:
e2:81:ef:d8:3e:c1:48:d1:18:45:54:f6:72:1c:d2:
30:36:09:a2:de:7e:3b:02:b6:49:24:52:f3:b4:32:
31:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:B5:2F:B7:14:A0:1B:67:F0:FF:61:42:73:57:05:98:8A:47:7C:3E
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/W7UvtxSgG2fw_2FCc1cFmIpHfD4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.88.13.0/24
89.35.130.0/23
188.214.107.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:35:0d:83:fc:4f:c6:31:f2:8d:7f:7d:67:d7:c2:45:13:15:
82:0b:fe:16:d5:7b:90:5a:77:08:f6:99:1a:56:5d:26:50:28:
68:d1:84:fe:8a:e3:56:82:26:ae:b5:f5:e8:6b:a3:b9:ff:ac:
08:cd:30:9f:de:3c:ca:4e:c0:fd:fd:77:2a:62:b7:21:64:52:
96:e1:f2:8f:ff:25:5e:0e:f4:a4:92:d5:ba:a2:94:1f:f4:8b:
34:87:28:f9:13:22:94:70:f5:3e:75:ba:25:48:f3:fe:7f:df:
e0:6d:5c:f1:29:e0:fa:d3:ca:2d:88:38:00:f5:4a:ef:08:7d:
b9:ba:ee:3f:df:9b:95:8a:f2:6a:77:08:6c:77:31:5a:c7:3d:
7f:c9:59:8a:1f:a3:66:6c:b7:b7:2b:3e:f9:83:13:4b:4b:31:
29:2d:0b:dc:55:31:9f:4b:89:e4:99:f2:55:8b:0a:cb:2c:59:
a0:a7:9d:e4:8e:19:11:33:89:3e:bb:c6:55:65:90:1c:3e:f7:
14:eb:74:71:7f:3f:ef:36:4e:90:0f:3d:13:f9:19:99:15:88:
71:c0:5f:a1:3f:9c:7d:b1:6c:b5:a1:3b:ec:11:d0:2e:3b:66:
fd:ea:3e:c8:cb:c3:c1:51:42:60:33:6e:ac:c8:fe:21:eb:07:
4e:c7:fb:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:07 2024 by rpki-client on console-fra.rpki-client.org