Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/XXTxIAQeGEjgKgsIFUxxQAMKWg0.roa
File: XXTxIAQeGEjgKgsIFUxxQAMKWg0.roa (raw, json)
Hash identifier: DxIjMe8sH6p7Nf9R3IQ5z1hneuu7fDTSpBSv2HIewTQ=
Subject key identifier: 5D:74:F1:20:04:1E:18:48:E0:2A:0B:08:15:4C:71:40:03:0A:5A:0D
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018822C6BC6EE29A2AB951C4FB2346658698
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/XXTxIAQeGEjgKgsIFUxxQAMKWg0.roa
Signing time: Tue 16 May 2023 04:17:09 +0000
ROA not before: Tue 16 May 2023 04:17:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60721
IP address blocks: 89.34.202.0/24 maxlen: 24
188.213.216.0/24 maxlen: 24
89.45.35.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 30 May 2023 04:04:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:22:c6:bc:6e:e2:9a:2a:b9:51:c4:fb:23:46:65:86:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: May 16 04:17:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5d74f120041e1848e02a0b08154c7140030a5a0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:5a:4c:7e:42:19:84:c7:47:89:57:0e:c4:3e:
47:12:a7:87:d8:f2:c2:28:0f:32:0a:c2:e8:ed:20:
37:b3:fc:bf:b7:fe:c6:b7:58:f9:ed:63:f4:c6:03:
a7:9e:fe:e3:03:21:ef:e1:00:e7:56:4d:80:89:eb:
94:dd:f3:11:8a:ef:f1:e2:c8:28:70:0b:16:7d:26:
42:4b:5d:f0:25:52:1e:11:aa:80:41:1b:fe:f6:35:
0b:a3:b6:c4:f7:df:89:74:0f:6b:78:ed:28:77:b7:
60:87:0f:e0:a2:2e:b4:0a:4e:ad:6c:0f:af:92:c2:
48:57:fb:81:ce:48:f5:01:83:62:21:7d:11:3f:b1:
cf:b4:99:71:ba:94:4d:02:85:6a:3e:b1:dc:c7:17:
03:d1:c5:80:84:72:5d:b9:77:43:b1:da:1d:ad:86:
0e:e8:f3:4b:d0:06:ac:ae:52:92:67:01:fb:f3:c9:
83:10:f7:2b:7b:3a:a2:0c:c5:97:4d:d9:0e:42:dc:
3b:11:cc:c8:b6:89:45:8f:b8:35:20:09:4e:ae:95:
18:20:f8:58:96:71:0d:24:19:6e:30:85:9e:6e:c0:
88:ce:cd:a1:d9:20:1f:55:ab:a6:a8:80:44:79:92:
98:b6:15:6b:08:a1:e1:d2:34:31:b8:b1:2e:31:13:
4b:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:74:F1:20:04:1E:18:48:E0:2A:0B:08:15:4C:71:40:03:0A:5A:0D
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/XXTxIAQeGEjgKgsIFUxxQAMKWg0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.34.202.0/24
89.45.35.0/24
188.213.216.0/24
Signature Algorithm: sha256WithRSAEncryption
17:47:63:8f:8c:d1:1e:ea:48:63:0e:f3:c4:79:a6:24:10:84:
9e:d2:d9:7e:13:2c:d6:04:40:c9:d7:77:a7:fe:83:1f:2b:1e:
ce:37:55:a0:e8:42:31:9f:b9:9e:c5:26:ef:36:c8:23:ce:9e:
79:8b:d3:8d:34:d2:4d:35:ce:a8:87:87:df:ed:9a:2b:21:22:
a7:78:71:96:72:e3:ef:3e:ab:5d:30:33:9a:97:ad:90:73:6e:
a5:c7:09:10:db:f3:b9:af:4e:a9:96:79:ef:74:da:01:91:12:
aa:b1:67:bd:fd:4b:d2:3d:ba:45:af:e5:9b:0b:04:b2:06:87:
22:07:6b:88:45:97:a7:1c:9d:c6:65:99:d5:21:3e:b9:e5:b2:
2e:75:eb:5a:d4:2f:3a:dd:58:73:63:e5:a1:92:5d:09:26:ae:
2c:aa:a0:53:8a:74:6f:fc:0e:0d:37:a2:33:f9:eb:57:9e:37:
02:26:6a:e5:a3:83:12:94:28:9f:e5:9e:e9:fa:6b:eb:66:94:
ae:80:3f:74:3a:1c:fd:cd:ec:29:9a:d8:06:3a:ab:da:6b:f2:
98:35:0d:2e:c4:aa:a6:60:ae:94:ea:ac:dc:42:52:bd:41:e7:
fb:99:e6:ee:18:e5:7e:f8:96:bf:5f:e9:cc:4b:a9:42:2f:91:
4b:41:fe:37
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAYgixrxu4poquVHE+yNGZYaYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkYTVkMzJkNWIwOWM5M2MxYjVlM2ZjNWEyYWEyMGQ3NDZm
Y2ZlZDEwHhcNMjMwNTE2MDQxNzA5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1ZDc0ZjEyMDA0MWUxODQ4ZTAyYTBiMDgxNTRjNzE0MDAzMGE1YTBkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAplpMfkIZhMdHiVcOxD5HEqeH2PLC
KA8yCsLo7SA3s/y/t/7Gt1j57WP0xgOnnv7jAyHv4QDnVk2AieuU3fMRiu/x4sgo
cAsWfSZCS13wJVIeEaqAQRv+9jULo7bE99+JdA9reO0od7dghw/goi60Ck6tbA+v
ksJIV/uBzkj1AYNiIX0RP7HPtJlxupRNAoVqPrHcxxcD0cWAhHJduXdDsdodrYYO
6PNL0AasrlKSZwH788mDEPcrezqiDMWXTdkOQtw7EczItolFj7g1IAlOrpUYIPhY
lnENJBluMIWebsCIzs2h2SAfVaumqIBEeZKYthVrCKHh0jQxuLEuMRNL7wIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFF108SAEHhhI4CoLCBVMcUADCloNMB8GA1UdIwQY
MBaAFH2l0y1bCck8G14/xaKqINdG/P7RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAt
ZTU4MzlmNDNlNTgzLzEvWFhUeElBUWVHRWpnS2dzSUZVeHhRQU1LV2cwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAtZTU4MzlmNDNlNTgz
LzEvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQAWSLKAwQA
WS0jAwQAvNXYMA0GCSqGSIb3DQEBCwUAA4IBAQAXR2OPjNEe6khjDvPEeaYkEISe
0tl+EyzWBEDJ13en/oMfKx7ON1Wg6EIxn7mexSbvNsgjzp55i9ONNNJNNc6oh4ff
7ZorISKneHGWcuPvPqtdMDOal62Qc26lxwkQ2/O5r06plnnvdNoBkRKqsWe9/UvS
PbpFr+WbCwSyBociB2uIRZenHJ3GZZnVIT655bIudeta1C863VhzY+Whkl0JJq4s
qqBTinRv/A4NN6Iz+etXnjcCJmrlo4MSlCif5Z7p+mvrZpSugD90Ohz9zewpmtgG
Oqvaa/KYNQ0uxKqmYK6U6qzcQlK9Qef7mebuGOV++Ja/X+nMS6lCL5FLQf43
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:07 2024 by rpki-client on console-fra.rpki-client.org