Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/gn0OuJ0uSaE11PoV_Ge40b94nJg.roa
File: gn0OuJ0uSaE11PoV_Ge40b94nJg.roa (raw, json)
Hash identifier: KAqfodtMJk5+b0MvifcULkaMA/Un7j+Jsbm9jA631f4=
Subject key identifier: 82:7D:0E:B8:9D:2E:49:A1:35:D4:FA:15:FC:67:B8:D1:BF:78:9C:98
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018D22C413C0E965AC9C85DC4AD8E8262048
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/gn0OuJ0uSaE11PoV_Ge40b94nJg.roa
Signing time: Fri 19 Jan 2024 17:28:11 +0000
ROA not before: Fri 19 Jan 2024 17:28:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207326
IP address blocks: 89.35.129.0/24 maxlen: 24
89.40.215.0/24 maxlen: 24
91.132.51.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 22 Jan 2024 14:35:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:22:c4:13:c0:e9:65:ac:9c:85:dc:4a:d8:e8:26:20:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Jan 19 17:28:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=827d0eb89d2e49a135d4fa15fc67b8d1bf789c98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:17:6f:86:7c:06:fd:7e:18:de:34:b2:a1:28:
73:37:14:e7:8f:dc:7a:42:e0:47:f3:e5:e0:7c:4e:
b8:24:0c:56:48:82:f3:fa:20:e1:56:92:53:c1:5b:
ba:ec:8b:ac:b9:0f:25:83:ec:78:60:1e:7b:32:c0:
64:6e:5a:7f:43:07:80:5e:69:53:5a:2c:1f:03:11:
b6:88:8e:83:be:75:57:98:f4:8f:0b:13:0b:97:3d:
84:43:44:3c:78:5e:61:0e:27:75:0e:39:20:5c:84:
e0:d0:16:b0:4b:4d:7a:68:7c:99:12:57:47:df:22:
a9:ce:42:98:12:c4:ac:92:ce:f3:ad:e4:1e:08:1d:
42:cd:7e:ba:fc:ff:5b:9d:72:37:0b:bf:cb:e2:8c:
4f:26:e9:e2:e7:68:b0:3d:0e:e4:91:73:7b:e1:87:
17:17:bb:a4:9f:7c:c5:9b:56:41:d0:0a:b8:db:df:
92:0b:1d:37:52:29:0a:5d:76:77:1e:a7:fb:66:1b:
f9:fc:cc:c3:bf:a1:44:92:07:b2:fe:be:ed:6c:d6:
f6:df:05:17:07:5f:b9:53:05:a1:36:75:d9:63:37:
24:d4:40:75:60:40:4c:9e:dd:1f:a7:8c:5e:8b:8b:
9b:a1:56:45:ee:57:11:71:97:1f:d8:77:0d:60:fd:
16:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:7D:0E:B8:9D:2E:49:A1:35:D4:FA:15:FC:67:B8:D1:BF:78:9C:98
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/gn0OuJ0uSaE11PoV_Ge40b94nJg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.35.129.0/24
89.40.215.0/24
91.132.51.0/24
Signature Algorithm: sha256WithRSAEncryption
32:87:98:d4:fd:e0:f4:20:7f:da:13:1f:b1:3f:ab:75:b1:e7:
28:c3:47:c0:3f:52:9e:d5:83:56:5b:4f:ad:7c:6e:83:bd:a6:
4b:a9:d3:fb:b3:71:4d:c7:b7:e0:da:6e:2c:31:76:a3:d8:38:
de:4b:9e:07:e8:ad:6a:7e:62:17:28:f2:ca:3b:68:70:bf:e3:
44:39:04:b4:34:00:2b:55:fa:10:76:0f:97:1f:f3:e6:a0:e1:
f5:3a:a0:96:2e:bc:66:4b:34:91:52:f4:f7:55:f7:ce:cf:8a:
9e:c8:8c:33:19:50:78:8e:d9:8a:15:2f:06:5d:c4:6a:68:f7:
67:12:7e:bc:df:11:80:07:cf:07:32:f8:5f:a5:06:4d:53:1a:
f9:17:93:99:69:92:a9:7d:7e:4d:23:ad:27:fd:bd:6c:e7:68:
31:6d:6c:86:c9:18:de:ce:cc:99:03:f7:11:7b:0e:6a:eb:0c:
99:62:5c:20:cb:9c:88:90:4a:55:b8:a1:33:48:84:cc:b2:bc:
4e:94:37:f3:80:55:43:30:fb:a0:8d:63:b5:3c:62:41:6b:d6:
9a:f6:b9:6e:bf:5d:9b:38:f5:1f:ea:92:50:6e:3a:51:18:c5:
80:c8:bd:1c:c2:c0:07:8c:63:48:fa:cf:ae:21:61:d4:77:c2:
4a:98:d0:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:10 2024 by rpki-client on console-fra.rpki-client.org