Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/_UELAYH1kVVjeRO527z1S4YbZUQ.roa
File: _UELAYH1kVVjeRO527z1S4YbZUQ.roa (raw, json)
Hash identifier: s9PGklS2TD7v624QWrRyg3HuvJxrjQ7MUL60Asa7l9w=
Subject key identifier: FD:41:0B:01:81:F5:91:55:63:79:13:B9:DB:BC:F5:4B:86:1B:65:44
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 01874541D30AE18AE6B0BEF59DF2B838FB64
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/_UELAYH1kVVjeRO527z1S4YbZUQ.roa
Signing time: Mon 03 Apr 2023 03:55:54 +0000
ROA not before: Mon 03 Apr 2023 03:55:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 138687
IP address blocks: 92.114.32.0/24 maxlen: 24
45.88.14.0/24 maxlen: 24
94.177.106.0/24 maxlen: 24
89.45.162.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 28 Apr 2023 07:43:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:45:41:d3:0a:e1:8a:e6:b0:be:f5:9d:f2:b8:38:fb:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Apr 3 03:55:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fd410b0181f59155637913b9dbbcf54b861b6544
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:ca:c4:49:12:61:fb:69:f6:16:48:11:8b:99:
2b:01:b2:ec:91:3d:52:e5:51:c3:73:38:00:c3:d7:
08:10:1b:fb:05:40:cc:20:bf:42:07:02:f6:b8:d7:
a5:b4:22:c4:8c:60:a6:50:dd:a0:70:a0:b5:86:0e:
1d:d2:8b:c1:bd:c5:d4:31:47:2e:db:31:89:fc:d6:
88:e0:45:f2:1e:d1:d7:1c:be:df:21:3e:82:e6:36:
de:10:93:d2:71:05:59:61:d7:31:3d:e7:e8:7b:19:
39:a2:64:74:af:4c:d4:49:c0:06:ae:5b:03:4b:fa:
85:d4:8f:85:1b:c8:36:1f:43:35:12:52:ad:13:5e:
d3:fd:26:fc:e6:81:d7:41:a8:20:37:d1:41:00:d4:
50:9d:d7:46:f8:a4:66:72:69:13:42:1f:08:6f:98:
b1:00:a8:63:30:3c:95:a1:9a:bd:04:57:81:0f:cc:
07:05:c5:ab:61:6b:b1:39:f8:40:67:b5:d2:69:7f:
c2:38:a7:8a:6f:16:e6:ba:b3:85:c3:58:76:a4:c1:
a3:b4:3e:e2:e7:f4:72:36:e5:74:3c:ef:5a:22:89:
81:43:b9:d9:69:68:44:bd:52:6c:d4:63:85:dd:2a:
d4:05:d5:a7:60:9d:5b:a4:49:ab:5b:dc:e8:c5:91:
76:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:41:0B:01:81:F5:91:55:63:79:13:B9:DB:BC:F5:4B:86:1B:65:44
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/_UELAYH1kVVjeRO527z1S4YbZUQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.88.14.0/24
89.45.162.0/24
92.114.32.0/24
94.177.106.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:ff:47:ba:45:9c:d7:c6:a7:34:1e:24:f9:0e:ec:82:c2:10:
47:83:d0:2f:99:bb:64:7e:03:46:4d:28:06:db:8b:51:08:fa:
7c:9a:f2:b8:a3:0f:84:0e:e3:ff:d2:9e:03:4a:6e:8d:44:3c:
a1:2a:e6:02:75:c1:e3:c1:c0:e7:ac:a3:47:87:78:fb:58:98:
f4:66:6e:e0:b5:19:af:d2:b7:d8:34:cb:a7:78:67:67:df:7c:
b0:74:94:f9:4f:4e:ef:a0:73:ea:99:bb:f0:e2:e7:17:93:8b:
8b:13:a6:c0:28:8d:5f:4d:8c:5b:74:63:b0:1c:e5:13:d1:cc:
28:12:2b:1d:9f:c4:c3:f1:87:08:bc:0a:0a:0b:b9:2a:c0:ca:
84:71:26:48:cf:dc:cb:35:f3:69:07:94:47:64:38:4a:26:4b:
e8:e5:3e:6e:76:6a:eb:f1:ff:62:fd:be:bb:24:0c:d7:79:9f:
2f:6f:cf:05:95:f2:f9:e5:b1:aa:80:cc:0c:ed:49:88:3d:e2:
28:3a:2e:e3:c4:9e:bb:27:1c:07:0b:ae:0d:f3:79:6b:86:a3:
77:a4:21:b4:a0:ba:a3:1d:3d:19:32:ec:b7:ae:b4:97:11:ec:
76:17:dc:e8:52:db:db:e0:39:49:ac:f1:e1:1d:0b:0f:a9:ad:
2b:82:b5:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:07 2024 by rpki-client on console-fra.rpki-client.org