Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/_yfaMs3vHZMVaVhLVPkelIrJTC4.roa
File: _yfaMs3vHZMVaVhLVPkelIrJTC4.roa (raw, json)
Hash identifier: CUkr7yUoFF/mThQiwG4N7rXbzB2PbYFKZrg31xD22vQ=
Subject key identifier: FF:27:DA:32:CD:EF:1D:93:15:69:58:4B:54:F9:1E:94:8A:C9:4C:2E
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 0189343057DC5EC2C07454697F8EE0B27272
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/_yfaMs3vHZMVaVhLVPkelIrJTC4.roa
Signing time: Sat 08 Jul 2023 06:28:50 +0000
ROA not before: Sat 08 Jul 2023 06:28:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 399471
IP address blocks: 89.40.70.0/24 maxlen: 24
91.132.51.0/24 maxlen: 24
128.0.41.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 27 Jul 2023 19:02:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:34:30:57:dc:5e:c2:c0:74:54:69:7f:8e:e0:b2:72:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Jul 8 06:28:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ff27da32cdef1d931569584b54f91e948ac94c2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:9a:57:65:67:4f:f4:4e:5c:87:2b:ec:dc:62:
d5:0a:89:98:27:8a:a5:c4:ec:cc:b3:04:94:c3:f7:
0d:8e:6f:5e:9e:ed:47:84:65:51:d2:21:8a:77:d3:
a8:ca:5e:ea:ee:69:cf:38:47:9a:af:9d:66:07:26:
b5:0d:33:68:ba:39:23:2e:ff:5d:9e:d8:24:95:41:
66:6d:58:6b:38:b7:65:df:b7:8a:e7:55:02:39:9a:
05:9f:82:f4:d6:14:55:04:33:73:c6:16:cf:39:b6:
b1:97:e9:00:12:9f:15:64:b5:5e:fd:de:0b:ae:85:
2b:ab:a9:2c:79:63:d8:75:8a:86:37:2e:60:4f:b3:
4d:ae:e3:89:8a:f6:49:79:be:00:0d:ef:9c:52:2f:
28:e0:66:5b:9f:53:b8:40:06:81:25:63:a9:cf:bc:
9c:ef:fc:c8:54:bb:27:6a:d9:9d:77:9f:75:7e:d7:
be:c3:7a:14:c0:80:4e:5b:a7:bc:f1:98:d5:7f:49:
1e:41:aa:8f:6e:39:7a:b7:e9:2a:45:05:e2:6d:ce:
01:db:d9:20:e3:27:1b:4d:4e:be:00:af:8c:91:f8:
79:c0:92:aa:10:2a:a8:9e:48:ff:23:cf:66:91:c2:
d1:5e:23:b2:8c:29:ff:3a:b0:bc:93:18:27:57:b9:
ab:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:27:DA:32:CD:EF:1D:93:15:69:58:4B:54:F9:1E:94:8A:C9:4C:2E
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/_yfaMs3vHZMVaVhLVPkelIrJTC4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.40.70.0/24
91.132.51.0/24
128.0.41.0/24
Signature Algorithm: sha256WithRSAEncryption
24:1f:a9:b0:c8:10:21:f2:c7:f0:aa:58:41:7a:fd:7d:05:a8:
dd:a5:37:65:92:e7:1b:3b:b7:32:1f:89:c6:f4:37:18:ae:cd:
7b:d1:ba:72:cf:2c:18:ef:85:9e:e9:7c:5d:0a:ee:9e:84:15:
67:82:0f:d2:ea:34:45:40:59:b6:e2:0c:05:22:cf:a2:41:b0:
b5:16:84:af:d9:54:d2:7e:d7:dd:a7:7f:83:f2:0a:75:78:90:
8a:48:bc:02:46:a0:0c:14:aa:3e:1b:e7:e8:10:e6:e0:e8:11:
da:84:6f:3e:5b:18:4a:c9:59:47:bf:3e:87:29:e6:0f:92:4a:
2f:06:a9:9c:4c:ec:e4:76:f1:0b:37:f3:e1:42:f9:e0:30:50:
3f:70:80:c1:73:82:27:0b:16:42:50:0f:d8:b8:f6:af:7e:ec:
83:85:8c:39:c6:46:0c:42:0d:8f:f3:8e:be:ba:09:62:9e:c4:
9d:58:e6:15:a1:fa:8d:92:67:43:dc:bd:68:b9:8b:1a:80:9a:
00:27:dd:5c:b7:fb:30:28:7c:c8:f5:70:74:d4:75:2a:36:bf:
10:20:5f:d5:a9:d9:1e:ec:8b:4a:49:88:1e:aa:8e:c0:8e:3a:
0d:49:28:3e:59:3f:80:45:ae:c1:5d:14:a4:31:f9:5a:68:89:
20:7c:b9:e0
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAYk0MFfcXsLAdFRpf47gsnJyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkYTVkMzJkNWIwOWM5M2MxYjVlM2ZjNWEyYWEyMGQ3NDZm
Y2ZlZDEwHhcNMjMwNzA4MDYyODUwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmZjI3ZGEzMmNkZWYxZDkzMTU2OTU4NGI1NGY5MWU5NDhhYzk0YzJlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuppXZWdP9E5chyvs3GLVComYJ4ql
xOzMswSUw/cNjm9enu1HhGVR0iGKd9Ooyl7q7mnPOEear51mBya1DTNoujkjLv9d
ntgklUFmbVhrOLdl37eK51UCOZoFn4L01hRVBDNzxhbPObaxl+kAEp8VZLVe/d4L
roUrq6kseWPYdYqGNy5gT7NNruOJivZJeb4ADe+cUi8o4GZbn1O4QAaBJWOpz7yc
7/zIVLsnatmdd591fte+w3oUwIBOW6e88ZjVf0keQaqPbjl6t+kqRQXibc4B29kg
4ycbTU6+AK+Mkfh5wJKqECqonkj/I89mkcLRXiOyjCn/OrC8kxgnV7mr6wIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFP8n2jLN7x2TFWlYS1T5HpSKyUwuMB8GA1UdIwQY
MBaAFH2l0y1bCck8G14/xaKqINdG/P7RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAt
ZTU4MzlmNDNlNTgzLzEvX3lmYU1zM3ZIWk1WYVZoTFZQa2VsSXJKVEM0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAtZTU4MzlmNDNlNTgz
LzEvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQAWShGAwQA
W4QzAwQAgAApMA0GCSqGSIb3DQEBCwUAA4IBAQAkH6mwyBAh8sfwqlhBev19Bajd
pTdlkucbO7cyH4nG9DcYrs170bpyzywY74We6XxdCu6ehBVngg/S6jRFQFm24gwF
Is+iQbC1FoSv2VTSftfdp3+D8gp1eJCKSLwCRqAMFKo+G+foEObg6BHahG8+WxhK
yVlHvz6HKeYPkkovBqmcTOzkdvELN/PhQvngMFA/cIDBc4InCxZCUA/YuPavfuyD
hYw5xkYMQg2P846+uglinsSdWOYVofqNkmdD3L1ouYsagJoAJ91ct/swKHzI9XB0
1HUqNr8QIF/Vqdke7ItKSYgeqo7AjjoNSSg+WT+ARa7BXRSkMflaaIkgfLng
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:07 2024 by rpki-client on console-fra.rpki-client.org