Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/dVytE8utx9-sHk6rFs_oOzWROF4.roa
File: dVytE8utx9-sHk6rFs_oOzWROF4.roa (raw, json)
Hash identifier: IovRIO7xWyag6FEvnCvLgUANAukyAfcz12HaTcVkqto=
Subject key identifier: 75:5C:AD:13:CB:AD:C7:DF:AC:1E:4E:AB:16:CF:E8:3B:35:91:38:5E
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018A2C3A18E5D1BB4C8624DF754469B0CA9E
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/dVytE8utx9-sHk6rFs_oOzWROF4.roa
Signing time: Fri 25 Aug 2023 10:25:19 +0000
ROA not before: Fri 25 Aug 2023 10:25:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197450
IP address blocks: 188.212.121.0/24 maxlen: 24
89.35.73.0/24 maxlen: 24
188.213.0.0/24 maxlen: 24
92.114.32.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 18 Sep 2023 08:02:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:2c:3a:18:e5:d1:bb:4c:86:24:df:75:44:69:b0:ca:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Aug 25 10:25:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=755cad13cbadc7dfac1e4eab16cfe83b3591385e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:38:89:b1:6f:e6:5a:44:4b:67:4f:6b:79:bf:
2e:be:4e:e4:10:91:0c:42:4e:5f:ef:6b:fc:a5:5e:
33:d6:cb:be:58:f1:3a:9b:e9:4a:cb:b1:e8:70:0c:
7c:c1:ac:ca:94:0e:de:11:1e:35:39:73:d6:60:45:
eb:dc:e8:0a:0d:80:36:be:92:ef:c7:e0:6e:41:6d:
a2:f3:d4:06:bd:e8:f2:53:d9:f1:8f:ba:91:2a:de:
31:93:e8:91:3d:a5:ab:cb:37:df:92:e6:3f:27:81:
ce:53:d9:e9:24:85:3a:88:41:78:67:5f:96:55:b6:
0c:f0:6d:37:7f:41:92:0e:cd:2d:a6:29:43:72:4f:
1c:f9:5b:f3:31:ba:ca:6f:50:eb:b5:6e:43:50:13:
dc:d2:d5:d1:a1:3b:14:ae:8f:de:3d:91:4c:f1:63:
e2:b9:c6:82:b0:92:54:3e:59:5f:ee:97:dd:20:fa:
46:01:9a:1d:16:c7:49:23:bd:ce:fa:11:0b:e6:58:
35:ed:30:b8:61:bf:54:fe:8d:09:1c:93:2c:a2:61:
4c:01:57:79:c5:be:32:fd:81:2a:3e:16:ac:5c:62:
e5:61:9d:5c:f6:07:58:fa:14:c0:3f:80:b0:59:fc:
e1:25:b6:b1:ec:13:cb:aa:2b:d0:bb:74:06:b9:a8:
dc:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:5C:AD:13:CB:AD:C7:DF:AC:1E:4E:AB:16:CF:E8:3B:35:91:38:5E
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/dVytE8utx9-sHk6rFs_oOzWROF4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.35.73.0/24
92.114.32.0/24
188.212.121.0/24
188.213.0.0/24
Signature Algorithm: sha256WithRSAEncryption
10:8c:b8:96:62:44:73:04:2d:8e:87:8b:44:47:37:d5:02:f6:
26:96:bc:6d:64:89:64:e2:6f:07:62:4a:7c:18:71:1c:6e:42:
e0:0c:e0:61:4b:29:65:5d:7d:8f:c9:0a:c0:de:6a:17:e6:1e:
f5:76:2f:90:e6:68:af:d1:ca:f1:cc:a1:cc:48:7c:ba:9a:bd:
28:b9:ea:d8:e5:36:8c:13:c0:8d:c0:8e:34:7e:cd:2e:7b:36:
3e:3a:73:ad:95:87:72:51:d9:02:3c:2b:eb:69:48:9c:92:b5:
bc:ab:59:8c:fc:a2:fa:96:75:4d:d5:38:c9:5f:9b:08:b9:a0:
52:10:16:04:e0:ec:fc:64:2a:69:5b:74:63:2e:37:67:57:3b:
da:e3:79:7e:ec:62:0e:f5:3d:b6:4f:12:da:f7:83:01:3e:aa:
13:b2:0d:27:fa:84:6b:28:4f:14:02:50:13:de:2c:36:cd:c5:
fe:97:a4:94:1e:5a:52:aa:08:91:49:9d:2e:16:30:c5:41:8d:
ae:e3:de:33:49:02:84:94:28:73:d3:32:21:46:5c:71:86:61:
e6:4e:0b:81:f8:b5:6c:3c:46:1f:b4:99:1e:11:d9:d1:32:e1:
c5:55:b8:6e:72:1e:b9:51:c2:75:15:8a:4a:41:11:d3:e3:ad:
9f:3c:41:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:13 2024 by rpki-client on console-ams.rpki-client.org