Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/dFgtvMrcXX4fRrcKLoUuja7SAlg.roa
File: dFgtvMrcXX4fRrcKLoUuja7SAlg.roa (raw, json)
Hash identifier: xQaXwjohVEUWaW70wyUO/btm9nqKiU/3EsBFUsIQ1Rs=
Subject key identifier: 74:58:2D:BC:CA:DC:5D:7E:1F:46:B7:0A:2E:85:2E:8D:AE:D2:02:58
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 019072F4B890969A197522191DB2F8056F32
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/dFgtvMrcXX4fRrcKLoUuja7SAlg.roa
Signing time: Tue 02 Jul 2024 10:19:18 +0000
ROA not before: Tue 02 Jul 2024 10:19:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 56322
IP address blocks: 89.45.44.0/24 maxlen: 24
93.113.57.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 07 Jul 2024 12:59:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:72:f4:b8:90:96:9a:19:75:22:19:1d:b2:f8:05:6f:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Jul 2 10:19:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=74582dbccadc5d7e1f46b70a2e852e8daed20258
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:22:b3:57:ae:b5:4d:7e:cc:8c:60:1d:14:82:
24:f5:c5:ab:b8:93:75:83:04:c0:2f:d8:96:79:38:
9b:c6:68:92:58:b5:fd:30:27:b6:e9:df:b1:22:17:
d3:54:98:2f:47:7f:3d:5c:73:ab:7e:22:3a:39:d2:
da:87:f1:f2:c9:a8:d7:4f:d1:4a:be:96:f5:63:b3:
a1:5a:74:13:a3:b0:83:41:26:08:9c:1f:08:62:ab:
1f:43:29:a8:09:de:1b:c8:7e:b4:28:87:3f:0b:8c:
9c:a5:40:9c:e7:a5:be:7d:fd:70:e4:35:13:86:86:
24:37:c2:7d:60:c1:8e:88:26:b1:95:48:15:90:d3:
e0:90:2d:dd:99:f8:cd:e6:cf:1d:2b:4f:11:e5:ad:
5c:b7:18:0d:ae:4a:10:8f:f5:37:c6:8e:bc:a8:93:
e1:37:1d:ed:47:eb:33:c3:13:3d:64:f2:a9:f3:a2:
4b:07:4a:ba:df:71:bd:c2:48:08:6e:71:2c:75:e4:
df:0b:10:14:5a:d6:1b:6a:b6:f2:5d:a3:1d:97:9d:
a8:75:4c:08:f2:7a:2a:05:13:5b:b7:09:2f:72:b6:
fc:dd:e9:ac:0e:ac:c9:f2:99:f4:a2:08:1c:53:12:
c9:3b:17:b4:76:66:01:e5:b4:f4:9c:a8:35:51:46:
c3:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:58:2D:BC:CA:DC:5D:7E:1F:46:B7:0A:2E:85:2E:8D:AE:D2:02:58
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/dFgtvMrcXX4fRrcKLoUuja7SAlg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.45.44.0/24
93.113.57.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:cb:00:e6:1d:f5:fd:48:69:64:9e:91:25:aa:28:16:11:30:
93:d6:12:ae:ab:8b:70:5b:69:a2:72:2b:2f:90:ef:9c:bc:d3:
24:81:dc:c5:73:86:1d:25:d1:e6:30:d2:dc:e1:00:11:cd:c0:
f0:f5:39:dc:d5:2c:b0:a5:fc:69:d0:cf:4e:de:c2:b5:66:77:
5c:4c:99:d6:9c:70:41:7a:8c:39:d9:3c:43:b0:73:22:aa:21:
70:2f:67:e8:b1:aa:33:bf:54:a1:12:45:a7:7a:5f:46:68:db:
90:0d:8e:aa:f1:b1:5f:f8:bd:b8:f3:5e:ff:e2:d0:7b:d2:5a:
96:8a:e7:e0:c2:77:b1:fa:84:01:db:a5:37:95:89:15:19:dd:
73:83:1c:76:c4:af:4e:b2:ea:e8:32:1a:e4:b4:a6:2a:9a:e4:
69:ef:03:54:62:50:b7:0e:3c:04:cc:6d:4b:31:02:c9:a3:a0:
22:94:be:55:b7:4c:e6:13:6b:43:6d:2e:06:8a:c6:f1:6a:47:
c2:3e:ca:0f:7b:1b:72:fd:36:94:b5:df:de:fd:47:4e:6d:fb:
2d:8e:a5:ba:b0:f5:f1:e2:d6:d8:41:d3:9b:34:88:bf:6f:5f:
03:55:25:e9:5c:e1:24:10:c8:17:62:f4:74:c8:8a:7d:9b:9c:
fb:7b:72:4f
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAZBy9LiQlpoZdSIZHbL4BW8yMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkYTVkMzJkNWIwOWM5M2MxYjVlM2ZjNWEyYWEyMGQ3NDZm
Y2ZlZDEwHhcNMjQwNzAyMTAxOTE4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NDU4MmRiY2NhZGM1ZDdlMWY0NmI3MGEyZTg1MmU4ZGFlZDIwMjU4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjCKzV661TX7MjGAdFIIk9cWruJN1
gwTAL9iWeTibxmiSWLX9MCe26d+xIhfTVJgvR389XHOrfiI6OdLah/HyyajXT9FK
vpb1Y7OhWnQTo7CDQSYInB8IYqsfQymoCd4byH60KIc/C4ycpUCc56W+ff1w5DUT
hoYkN8J9YMGOiCaxlUgVkNPgkC3dmfjN5s8dK08R5a1ctxgNrkoQj/U3xo68qJPh
Nx3tR+szwxM9ZPKp86JLB0q633G9wkgIbnEsdeTfCxAUWtYbarbyXaMdl52odUwI
8noqBRNbtwkvcrb83emsDqzJ8pn0oggcUxLJOxe0dmYB5bT0nKg1UUbDiwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFHRYLbzK3F1+H0a3Ci6FLo2u0gJYMB8GA1UdIwQY
MBaAFH2l0y1bCck8G14/xaKqINdG/P7RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAt
ZTU4MzlmNDNlNTgzLzEvZEZndHZNcmNYWDRmUnJjS0xvVXVqYTdTQWxnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAtZTU4MzlmNDNlNTgz
LzEvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAWS0sAwQA
XXE5MA0GCSqGSIb3DQEBCwUAA4IBAQBtywDmHfX9SGlknpElqigWETCT1hKuq4tw
W2micisvkO+cvNMkgdzFc4YdJdHmMNLc4QARzcDw9Tnc1Sywpfxp0M9O3sK1Zndc
TJnWnHBBeow52TxDsHMiqiFwL2fosaozv1ShEkWnel9GaNuQDY6q8bFf+L24817/
4tB70lqWiufgwnex+oQB26U3lYkVGd1zgxx2xK9OsuroMhrktKYqmuRp7wNUYlC3
DjwEzG1LMQLJo6AilL5Vt0zmE2tDbS4GisbxakfCPsoPexty/TaUtd/e/UdObfst
jqW6sPXx4tbYQdObNIi/b18DVSXpXOEkEMgXYvR0yIp9m5z7e3JP
-----END CERTIFICATE-----
Generated at Sun Jul 7 15:03:50 2024 by rpki-client on console-fra.rpki-client.org