Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/dq1dhh68pb2sCGoRyTPBokTEvt8.roa
File: dq1dhh68pb2sCGoRyTPBokTEvt8.roa (raw, json)
Hash identifier: M4A2vkgtI87J7jk8199wM5Wwmnh14tndEuADrwaHJy8=
Subject key identifier: 76:AD:5D:86:1E:BC:A5:BD:AC:08:6A:11:C9:33:C1:A2:44:C4:BE:DF
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018A5FEAE7450875745D1389774FB7C42B46
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/dq1dhh68pb2sCGoRyTPBokTEvt8.roa
Signing time: Mon 04 Sep 2023 11:19:04 +0000
ROA not before: Mon 04 Sep 2023 11:19:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 36113
IP address blocks: 89.40.215.0/24 maxlen: 24
45.88.14.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 06 Sep 2023 12:11:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:5f:ea:e7:45:08:75:74:5d:13:89:77:4f:b7:c4:2b:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Sep 4 11:19:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=76ad5d861ebca5bdac086a11c933c1a244c4bedf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:13:41:51:0e:ba:16:bd:64:f0:f6:f5:2a:3b:
f2:6c:c4:82:88:d1:02:25:15:1f:6c:78:4a:35:34:
9b:62:cb:0c:f4:e6:81:2f:43:10:2b:ea:c2:12:06:
87:ad:94:f0:95:3c:bb:19:ca:2f:a9:d6:cf:f3:cf:
8c:9c:1b:0c:40:4e:c9:0c:48:08:26:3d:f8:2d:b6:
1a:83:2c:76:50:ea:c1:97:45:1e:0a:ec:d4:8e:55:
cb:f1:cf:c1:4a:3a:f7:33:ff:fa:5d:70:ce:ed:a7:
58:75:81:2c:4f:6d:3e:9d:1a:af:0d:e7:b4:ee:b9:
cc:5d:5f:82:fd:1f:a7:be:7b:76:b1:0b:58:fd:4e:
15:84:64:d9:c8:5c:9a:36:fb:c6:53:45:7d:83:ec:
3d:0a:cf:6f:46:e2:28:6b:20:14:b3:53:2c:37:5b:
5b:87:86:7a:aa:07:78:23:97:f0:67:e0:2a:21:cb:
aa:ad:7e:11:c2:c7:26:ea:28:66:da:50:d4:59:16:
6c:ec:36:a5:93:ca:9b:73:49:f0:24:b9:c6:a7:b0:
4a:66:72:64:55:9d:11:07:2b:aa:8b:63:bf:7b:3d:
dc:b8:05:33:b9:e1:a9:f7:c8:e5:5c:9a:f3:a6:2a:
7a:ce:c7:c1:e6:22:91:1a:60:7f:c3:2e:28:de:5b:
05:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:AD:5D:86:1E:BC:A5:BD:AC:08:6A:11:C9:33:C1:A2:44:C4:BE:DF
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/dq1dhh68pb2sCGoRyTPBokTEvt8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.88.14.0/24
89.40.215.0/24
Signature Algorithm: sha256WithRSAEncryption
74:03:7c:86:7a:d5:39:f5:cb:c6:58:78:ec:69:82:7e:20:d9:
43:9b:6d:4f:eb:67:3d:10:d6:c4:d2:37:2e:5e:64:8a:13:78:
ae:1e:b5:9e:85:cf:72:d1:85:fd:23:a6:e8:d0:d6:72:60:f4:
a7:9e:3f:90:4b:0b:dc:9a:3a:95:96:a2:62:a6:f9:f8:5a:d5:
aa:f1:84:11:ef:c6:a9:80:cd:4c:50:24:55:2f:21:09:75:07:
52:8b:1e:a4:65:db:59:7d:86:59:42:c4:ea:35:fb:65:bb:67:
14:b5:00:7d:9e:4c:96:d7:5a:bc:54:b2:f9:62:b4:2d:70:70:
e4:67:f0:ec:59:56:2c:af:c8:dd:62:42:14:d2:08:e8:90:cd:
75:6a:29:05:eb:86:bf:e3:5c:23:8e:29:68:4c:26:ac:14:25:
4f:36:96:95:0b:1c:7b:ca:3b:74:11:cb:9d:17:d1:fa:e3:a0:
6c:ab:6e:69:c3:61:76:b5:35:5f:8c:42:0e:4b:b7:f5:c4:61:
f6:60:01:78:21:2f:c3:ad:d9:e3:a8:be:90:cb:3c:d0:ef:af:
db:93:0e:ac:7c:05:69:c6:08:86:99:21:45:01:90:69:d2:76:
ba:ff:ab:51:64:32:e7:79:d1:48:d8:ac:17:b3:b2:8d:de:d0:
d1:86:b6:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:10 2024 by rpki-client on console-fra.rpki-client.org