Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/ZhU16Z5hOnRpBpfHnEy9uqJqSgM.roa
File: ZhU16Z5hOnRpBpfHnEy9uqJqSgM.roa (raw, json)
Hash identifier: NEbv076tL0jU/BoHJbugRiLEQN7hozZUYkVRPro+2oM=
Subject key identifier: 66:15:35:E9:9E:61:3A:74:69:06:97:C7:9C:4C:BD:BA:A2:6A:4A:03
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018A6A67FD0E7438968C97136E667F6EE601
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/ZhU16Z5hOnRpBpfHnEy9uqJqSgM.roa
Signing time: Wed 06 Sep 2023 12:11:54 +0000
ROA not before: Wed 06 Sep 2023 12:11:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 36113
IP address blocks: 89.43.62.0/24 maxlen: 24
89.40.215.0/24 maxlen: 24
45.88.14.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 06 Sep 2023 15:24:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:6a:67:fd:0e:74:38:96:8c:97:13:6e:66:7f:6e:e6:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Sep 6 12:11:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=661535e99e613a74690697c79c4cbdbaa26a4a03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:5c:50:e3:eb:72:1b:b0:b8:4a:aa:5b:52:ac:
cd:e7:b9:45:34:a4:a7:d5:bf:3a:b5:b9:92:a1:71:
40:11:e2:c2:1e:cf:bc:f0:23:a9:9d:7f:91:39:76:
e5:ac:db:63:b4:6b:c8:1a:06:33:cd:71:61:e0:7b:
65:cc:d6:bb:fd:95:86:d0:3d:9d:91:3f:8a:3b:e3:
0b:1a:d7:45:34:ff:11:88:4c:ab:9a:29:88:fb:56:
45:8e:50:bd:92:11:5e:44:8f:5e:e6:39:69:6e:d3:
73:34:0b:02:3a:96:ea:d4:a1:60:74:2c:59:81:4e:
f6:3b:d9:ca:30:8d:62:f9:fa:80:d5:40:35:9e:50:
83:6d:cf:c0:27:c2:a4:05:53:4a:7d:ed:e1:57:77:
1d:39:f3:72:a3:8e:5c:4e:30:a9:38:70:56:f8:37:
97:fc:42:ce:09:a7:1f:ec:e9:3f:86:85:0e:9b:89:
4b:ce:0c:81:3d:9a:f9:55:80:63:98:18:32:58:e0:
39:9a:0e:02:0a:3a:5d:a5:03:b2:ae:61:18:94:a0:
75:aa:9e:9c:1c:b9:94:92:a5:d0:65:2b:88:32:fe:
58:ad:e3:bd:4a:96:8f:5b:e8:1e:68:47:fe:d7:cb:
39:79:12:55:ee:ee:20:c0:1d:4f:e1:e3:cb:5f:66:
cf:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:15:35:E9:9E:61:3A:74:69:06:97:C7:9C:4C:BD:BA:A2:6A:4A:03
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/ZhU16Z5hOnRpBpfHnEy9uqJqSgM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.88.14.0/24
89.40.215.0/24
89.43.62.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:ba:00:c9:f8:0b:58:5d:30:cd:0d:39:c2:1c:f6:64:2e:4a:
44:60:c1:58:bf:ab:56:40:e7:d5:2a:31:1d:d9:e3:f9:94:6f:
4a:08:16:ac:e1:0e:75:8f:d5:47:a6:cb:0a:ec:36:f0:c4:96:
90:da:64:0b:f9:98:60:c2:c6:6d:8e:91:8d:38:09:d9:79:f9:
a8:71:79:ce:ba:ba:7c:60:b2:44:f8:00:d4:83:5c:af:a1:df:
fd:b0:6e:3b:49:08:3c:95:49:6c:93:d1:5a:64:b5:72:85:48:
70:67:41:3e:02:70:11:11:d4:db:a4:20:79:8b:50:c3:e9:e6:
d0:d5:37:d3:cb:a6:d5:9c:72:8e:13:74:29:fa:11:17:d9:ef:
8e:03:4d:38:76:27:9c:22:3b:39:27:fc:a1:33:5d:82:5f:a2:
41:de:d9:38:78:7f:06:14:3d:40:4a:41:f0:35:b7:f0:0d:3f:
b8:da:71:5f:c7:c2:f8:0e:24:23:00:2c:d5:f4:e2:e5:28:46:
de:19:99:68:66:f1:66:32:03:6e:67:ee:e7:61:a9:39:79:1e:
4c:0c:ad:a3:a7:df:36:87:20:43:23:03:a9:0e:5a:68:a1:d4:
e1:da:bc:12:30:f5:11:00:e1:fc:63:5f:6d:89:9f:0a:c1:15:
dc:0d:bf:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:13 2024 by rpki-client on console-ams.rpki-client.org