Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/a0aya2PTKslCnhpnrxyw-0AxU4M.roa
File: a0aya2PTKslCnhpnrxyw-0AxU4M.roa (raw, json)
Hash identifier: StvlBABXZE7Omt6KgnU7RRQCvASRw20iJc3wXqNEaoQ=
Subject key identifier: 6B:46:B2:6B:63:D3:2A:C9:42:9E:1A:67:AF:1C:B0:FB:40:31:53:83
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018A279AF070E2F0901DCB34F83B0B32B991
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/a0aya2PTKslCnhpnrxyw-0AxU4M.roa
Signing time: Thu 24 Aug 2023 12:53:00 +0000
ROA not before: Thu 24 Aug 2023 12:53:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60721
IP address blocks: 89.36.140.0/24 maxlen: 24
89.40.36.0/24 maxlen: 24
86.105.4.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 05 Sep 2023 14:21:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:27:9a:f0:70:e2:f0:90:1d:cb:34:f8:3b:0b:32:b9:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Aug 24 12:53:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6b46b26b63d32ac9429e1a67af1cb0fb40315383
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:ec:30:2b:61:f8:b1:be:54:dc:38:5c:40:fe:
63:da:3f:bc:17:21:78:a6:0e:a4:46:cd:0a:bb:51:
fd:e3:3d:80:71:fe:78:f5:1d:30:d7:8c:d2:d7:9a:
fe:44:12:59:e3:e2:b3:54:6f:3d:b1:4a:a0:cf:2b:
d7:db:23:55:26:b0:37:9a:4d:63:01:b1:e4:a0:f2:
bc:b6:4c:b0:f8:81:ab:61:53:68:74:d7:dd:bf:30:
65:9e:62:ae:c9:f4:f5:c9:68:ee:c9:73:5b:c5:5a:
0f:f1:7f:6d:f4:8f:e5:52:7d:43:03:90:c2:ca:f2:
32:16:78:b5:49:b2:ac:bc:54:ef:bd:ff:d8:63:2a:
0e:52:d4:7f:a2:c6:50:69:59:3f:c4:4b:28:09:4b:
ac:17:68:14:e2:17:86:f1:2a:23:e0:90:e0:19:ab:
dd:41:5b:86:db:59:e4:57:51:d9:18:09:91:2e:41:
cd:8e:c9:af:19:a7:72:49:78:2b:17:42:d3:13:20:
37:3b:62:c1:0c:36:eb:31:59:76:98:db:49:9b:d9:
3d:4c:31:ad:e1:01:ac:4c:91:26:9e:aa:ec:3d:03:
f2:9d:c4:e0:8e:56:58:bf:51:f8:0b:38:84:51:6a:
8e:e4:6b:6f:bf:77:6c:71:d1:0c:13:42:2b:0b:8b:
69:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:46:B2:6B:63:D3:2A:C9:42:9E:1A:67:AF:1C:B0:FB:40:31:53:83
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/a0aya2PTKslCnhpnrxyw-0AxU4M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.105.4.0/24
89.36.140.0/24
89.40.36.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:db:e9:5a:ce:6a:25:8f:0e:1c:9b:cc:8b:a9:2e:77:01:b5:
e6:89:e4:7c:16:10:62:85:8b:64:6a:e1:3c:bd:74:fb:b5:5d:
ef:48:f3:c2:d2:f4:cc:1d:62:e7:cc:9a:7e:2a:08:07:ad:c5:
1b:0b:dd:d9:52:5e:67:d1:f2:a0:d9:51:2d:1d:80:12:5b:38:
d2:6f:78:1a:8a:ce:64:1e:a4:3b:3b:e4:52:94:6f:e9:77:ad:
e1:92:f9:a1:21:b1:76:de:cb:a5:66:fd:fd:e4:ce:87:da:d3:
8d:cb:80:d9:fc:e2:a2:68:51:91:2c:4e:b8:b5:68:d4:83:17:
fe:38:e0:4e:53:53:dc:0e:e4:2f:ec:6d:c1:13:8a:0d:8c:89:
cc:3f:cb:ce:81:56:37:4d:89:99:a2:96:43:88:6c:0a:67:cd:
83:17:6a:9f:b0:2e:f8:a6:19:10:90:b3:6b:4d:86:98:82:62:
fc:c6:c6:da:f6:f1:82:5b:41:b3:d9:95:36:30:bf:e3:f0:79:
7e:12:be:22:dc:fd:62:b4:1f:bd:76:dc:fb:5e:de:eb:45:87:
a4:ee:c1:5a:25:5d:bd:07:40:8d:3f:03:5e:e5:76:62:79:8b:
b1:3a:ee:70:ec:5a:7b:f1:a6:9b:56:55:92:48:f6:7a:04:d4:
f3:b2:80:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:07 2024 by rpki-client on console-fra.rpki-client.org