Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/dXSNh6j7yKmhGPshO_-Q4dPTRlk.roa
File: dXSNh6j7yKmhGPshO_-Q4dPTRlk.roa (raw, json)
Hash identifier: GAGdF+D+nF6QMTLRRJ86tGavP/y2m7UCTFy2XqTTPTk=
Subject key identifier: 75:74:8D:87:A8:FB:C8:A9:A1:18:FB:21:3B:FF:90:E1:D3:D3:46:59
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018AEC8FC76EF596ABFFDE40B8E2C984C3D2
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/dXSNh6j7yKmhGPshO_-Q4dPTRlk.roa
Signing time: Sun 01 Oct 2023 18:46:00 +0000
ROA not before: Sun 01 Oct 2023 18:46:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30058
IP address blocks: 89.34.219.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 11 Oct 2023 16:02:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:ec:8f:c7:6e:f5:96:ab:ff:de:40:b8:e2:c9:84:c3:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Oct 1 18:46:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=75748d87a8fbc8a9a118fb213bff90e1d3d34659
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:7c:3c:d3:11:91:f8:66:01:b3:1d:9b:e7:42:
df:de:e6:ff:97:19:8c:d5:a2:80:d1:1e:7a:12:53:
c7:f0:a0:61:8f:f7:0a:62:28:77:b2:cc:63:8b:6e:
9b:a3:7f:53:84:27:58:91:7d:92:c3:5a:4c:12:95:
ce:06:57:eb:8d:22:8f:e5:cf:a1:b8:fe:2c:16:f2:
ab:9a:d4:2a:10:48:fc:9c:ba:42:5d:3e:5d:cb:f3:
07:0f:cd:19:57:51:27:b7:f8:d8:59:6b:bf:a2:a3:
1f:39:ff:bf:2d:d3:72:49:29:ab:e2:ce:6f:bb:c8:
49:77:0b:68:df:42:42:0b:4e:2b:0d:86:ff:c6:5a:
9c:ea:6e:2e:57:d2:aa:c8:1c:47:88:21:24:32:cc:
da:f5:e2:e7:ed:43:2a:1c:82:da:f2:81:ab:c4:bf:
c7:39:54:58:b6:e6:bc:26:fa:43:3e:a0:b2:f5:b5:
8d:55:15:37:5d:b0:9d:c1:9a:67:ff:42:47:80:b4:
5d:82:c0:27:ca:8c:7b:70:e1:fd:ae:fa:c3:54:c5:
4c:89:17:61:59:9c:fb:c0:10:2f:d2:21:81:04:91:
cb:0e:47:e9:cc:49:d3:ad:6e:3a:43:a5:9e:b1:42:
01:08:54:f6:77:34:0b:6a:16:03:db:ae:ac:26:88:
60:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:74:8D:87:A8:FB:C8:A9:A1:18:FB:21:3B:FF:90:E1:D3:D3:46:59
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/dXSNh6j7yKmhGPshO_-Q4dPTRlk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.34.219.0/24
Signature Algorithm: sha256WithRSAEncryption
51:b3:89:b5:e7:94:42:f7:45:65:f1:fc:ce:fa:29:9f:68:a1:
4a:74:6d:22:cb:8a:eb:ad:9f:58:5c:87:b1:dc:dc:1d:72:ca:
bb:92:f4:d6:9e:99:06:fd:6b:3d:cd:d0:f1:72:bc:6e:ec:55:
07:4a:88:d7:01:a5:9b:5b:cb:b5:e6:58:1d:b8:f4:0a:a6:b6:
cc:e6:f9:9c:e1:58:b2:4c:f4:73:82:b6:c6:66:45:b3:4d:3d:
33:af:f1:9b:72:41:a2:f3:45:22:0e:ba:c5:1a:4d:d4:a2:29:
61:cf:6b:9b:98:97:8d:03:6e:5a:5a:04:8c:91:ca:cb:2b:21:
6c:67:6a:67:49:fa:35:05:a9:71:69:72:7f:dc:4f:89:e1:da:
57:89:7a:06:10:91:0a:87:27:fb:22:ab:4d:0c:7a:20:2c:8b:
93:26:7f:30:19:ae:8a:db:61:14:7f:27:9c:82:ff:1a:89:8b:
26:9d:7a:17:0d:c4:27:37:27:08:b9:79:4e:66:0a:8e:6b:96:
11:75:f6:ad:82:d0:01:c3:0d:44:64:72:36:83:cb:c2:a1:5a:
32:b0:d1:23:3a:be:0e:8f:fd:fc:69:3c:d2:03:d8:57:0c:47:
13:ad:39:c3:e4:0d:8b:84:c2:e3:57:ba:c1:2e:b9:c7:c8:e8:
da:c4:4c:91
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYrsj8du9Zar/95AuOLJhMPSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkYTVkMzJkNWIwOWM5M2MxYjVlM2ZjNWEyYWEyMGQ3NDZm
Y2ZlZDEwHhcNMjMxMDAxMTg0NjAwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NTc0OGQ4N2E4ZmJjOGE5YTExOGZiMjEzYmZmOTBlMWQzZDM0NjU5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy3w80xGR+GYBsx2b50Lf3ub/lxmM
1aKA0R56ElPH8KBhj/cKYih3ssxji26bo39ThCdYkX2Sw1pMEpXOBlfrjSKP5c+h
uP4sFvKrmtQqEEj8nLpCXT5dy/MHD80ZV1Ent/jYWWu/oqMfOf+/LdNySSmr4s5v
u8hJdwto30JCC04rDYb/xlqc6m4uV9KqyBxHiCEkMsza9eLn7UMqHILa8oGrxL/H
OVRYtua8JvpDPqCy9bWNVRU3XbCdwZpn/0JHgLRdgsAnyox7cOH9rvrDVMVMiRdh
WZz7wBAv0iGBBJHLDkfpzEnTrW46Q6WesUIBCFT2dzQLahYD266sJohgNwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHV0jYeo+8ipoRj7ITv/kOHT00ZZMB8GA1UdIwQY
MBaAFH2l0y1bCck8G14/xaKqINdG/P7RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAt
ZTU4MzlmNDNlNTgzLzEvZFhTTmg2ajd5S21oR1BzaE9fLVE0ZFBUUmxrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAtZTU4MzlmNDNlNTgz
LzEvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWSLbMA0G
CSqGSIb3DQEBCwUAA4IBAQBRs4m155RC90Vl8fzO+imfaKFKdG0iy4rrrZ9YXIex
3Nwdcsq7kvTWnpkG/Ws9zdDxcrxu7FUHSojXAaWbW8u15lgduPQKprbM5vmc4Viy
TPRzgrbGZkWzTT0zr/GbckGi80UiDrrFGk3Uoilhz2ubmJeNA25aWgSMkcrLKyFs
Z2pnSfo1BalxaXJ/3E+J4dpXiXoGEJEKhyf7IqtNDHogLIuTJn8wGa6K22EUfyec
gv8aiYsmnXoXDcQnNycIuXlOZgqOa5YRdfatgtABww1EZHI2g8vCoVoysNEjOr4O
j/38aTzSA9hXDEcTrTnD5A2LhMLjV7rBLrnHyOjaxEyR
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:07 2024 by rpki-client on console-fra.rpki-client.org