Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/dm_8s-b48cW_0xLhst9K0TKNkYA.roa
File: dm_8s-b48cW_0xLhst9K0TKNkYA.roa (raw, json)
Hash identifier: DyckhpZGHQzPJZc41iv9kRGr2lIATSAu/WJn0d6jYKA=
Subject key identifier: 76:6F:FC:B3:E6:F8:F1:C5:BF:D3:12:E1:B2:DF:4A:D1:32:8D:91:80
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018C51BCDC944EFA6036977F4B10EEABD004
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/dm_8s-b48cW_0xLhst9K0TKNkYA.roa
Signing time: Sun 10 Dec 2023 03:19:40 +0000
ROA not before: Sun 10 Dec 2023 03:19:40 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60647
IP address blocks: 89.35.73.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:51:bc:dc:94:4e:fa:60:36:97:7f:4b:10:ee:ab:d0:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Dec 10 03:19:40 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=766ffcb3e6f8f1c5bfd312e1b2df4ad1328d9180
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:90:05:f7:46:7f:53:c3:d6:16:72:a2:0f:73:
59:06:1d:4c:ec:d2:85:31:f8:de:5e:0a:d4:5f:33:
c5:54:12:64:08:ae:d9:0a:74:8d:fa:5e:02:91:27:
de:11:fe:25:41:dc:28:00:d0:19:30:7a:66:05:03:
9c:88:c0:d4:bc:54:e0:4e:37:d9:f8:cd:78:45:c8:
fe:50:d0:b3:27:8e:13:63:cf:f6:8d:fa:bc:0b:15:
95:ad:96:2d:d7:02:1d:20:f5:76:ef:46:35:4b:31:
29:94:31:6f:cf:e0:81:98:0c:02:7e:ca:5b:61:0f:
a3:13:22:b3:08:00:83:d5:47:be:23:69:4d:49:75:
90:e3:30:3e:da:ad:8f:cd:07:6f:21:d1:f8:85:3e:
ba:62:26:d1:4a:bf:4c:a4:17:f8:07:fb:b4:9e:8e:
4b:be:ba:05:f5:8e:cc:ab:ad:9d:e5:6b:12:98:3f:
65:3f:12:a2:5c:44:ef:ed:e1:58:5c:c1:2b:a6:a9:
ea:b8:14:89:19:1a:33:d4:c0:e4:4c:62:09:37:01:
d7:85:24:bb:fc:6f:6a:65:ff:6b:fc:d8:c4:bf:0e:
5c:fd:b1:0d:0d:72:13:a4:4d:e7:d9:28:bb:7e:a6:
a0:3a:d1:e1:b9:d2:80:b5:e0:af:63:6f:bd:84:4b:
a0:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:6F:FC:B3:E6:F8:F1:C5:BF:D3:12:E1:B2:DF:4A:D1:32:8D:91:80
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/dm_8s-b48cW_0xLhst9K0TKNkYA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.35.73.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:c1:20:a0:dd:33:26:b5:25:91:16:d9:8b:10:6f:ec:0b:43:
79:9b:05:1b:0f:82:3c:3b:8b:fb:b8:e4:89:17:60:ef:d4:de:
1b:62:78:2b:3e:fe:1c:81:5a:66:00:c7:64:31:c1:94:05:74:
58:55:2e:35:04:08:39:12:d7:5e:e1:15:c6:ee:df:6c:d1:23:
7c:76:a5:92:e8:c0:af:08:49:05:d1:90:13:09:b1:10:b2:90:
ba:e7:ec:64:db:a7:d4:0e:eb:b4:d8:83:39:64:46:4e:c2:0b:
d9:6b:1f:9d:13:30:78:f2:3a:72:93:b0:76:43:04:42:cd:5d:
f4:9d:c4:c4:8c:b2:e6:d2:9f:0e:1a:ac:0e:3e:ec:bb:64:36:
db:63:dc:e3:33:42:50:0a:e5:d3:4c:9a:97:f0:a7:23:93:d0:
13:56:c3:c7:53:8e:35:77:02:e2:be:2e:4d:95:0f:d3:39:79:
c8:49:3e:d9:f5:0a:ee:3d:d7:7c:e5:52:63:c5:38:72:3f:ae:
a3:3b:51:cf:82:3c:cd:e9:d7:10:fe:10:95:ee:dd:cb:fd:78:
29:8e:29:4a:05:bc:af:63:eb:2c:98:dc:f1:cb:81:69:b4:5a:
6a:35:a4:0c:bd:1b:93:ac:f4:86:6c:f3:86:29:ba:35:db:ff:
78:a2:b5:fe
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYxRvNyUTvpgNpd/SxDuq9AEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkYTVkMzJkNWIwOWM5M2MxYjVlM2ZjNWEyYWEyMGQ3NDZm
Y2ZlZDEwHhcNMjMxMjEwMDMxOTQwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NjZmZmNiM2U2ZjhmMWM1YmZkMzEyZTFiMmRmNGFkMTMyOGQ5MTgwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhZAF90Z/U8PWFnKiD3NZBh1M7NKF
MfjeXgrUXzPFVBJkCK7ZCnSN+l4CkSfeEf4lQdwoANAZMHpmBQOciMDUvFTgTjfZ
+M14Rcj+UNCzJ44TY8/2jfq8CxWVrZYt1wIdIPV270Y1SzEplDFvz+CBmAwCfspb
YQ+jEyKzCACD1Ue+I2lNSXWQ4zA+2q2PzQdvIdH4hT66YibRSr9MpBf4B/u0no5L
vroF9Y7Mq62d5WsSmD9lPxKiXETv7eFYXMErpqnquBSJGRoz1MDkTGIJNwHXhSS7
/G9qZf9r/NjEvw5c/bENDXITpE3n2Si7fqagOtHhudKAteCvY2+9hEug6QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHZv/LPm+PHFv9MS4bLfStEyjZGAMB8GA1UdIwQY
MBaAFH2l0y1bCck8G14/xaKqINdG/P7RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAt
ZTU4MzlmNDNlNTgzLzEvZG1fOHMtYjQ4Y1dfMHhMaHN0OUswVEtOa1lBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAtZTU4MzlmNDNlNTgz
LzEvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWSNJMA0G
CSqGSIb3DQEBCwUAA4IBAQBswSCg3TMmtSWRFtmLEG/sC0N5mwUbD4I8O4v7uOSJ
F2Dv1N4bYngrPv4cgVpmAMdkMcGUBXRYVS41BAg5Etde4RXG7t9s0SN8dqWS6MCv
CEkF0ZATCbEQspC65+xk26fUDuu02IM5ZEZOwgvZax+dEzB48jpyk7B2QwRCzV30
ncTEjLLm0p8OGqwOPuy7ZDbbY9zjM0JQCuXTTJqX8Kcjk9ATVsPHU441dwLivi5N
lQ/TOXnIST7Z9QruPdd85VJjxThyP66jO1HPgjzN6dcQ/hCV7t3L/XgpjilKBbyv
Y+ssmNzxy4FptFpqNaQMvRuTrPSGbPOGKbo12/94orX+
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:13 2024 by rpki-client on console-ams.rpki-client.org