Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/in27U1Wt_nGvdj-K7nRj3R0fmvg.roa
File: in27U1Wt_nGvdj-K7nRj3R0fmvg.roa (raw, json)
Hash identifier: ghw3+mrggdbPUa1pPTP4dY1EpVEGNLS5FQwB4oxR3Zg=
Subject key identifier: 8A:7D:BB:53:55:AD:FE:71:AF:76:3F:8A:EE:74:63:DD:1D:1F:9A:F8
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018DA611D0BE0D8986CD6D3CB26492A98C29
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/in27U1Wt_nGvdj-K7nRj3R0fmvg.roa
Signing time: Wed 14 Feb 2024 05:23:21 +0000
ROA not before: Wed 14 Feb 2024 05:23:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212042
IP address blocks: 89.34.219.0/24 maxlen: 24
89.35.130.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 16 Feb 2024 18:24:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:a6:11:d0:be:0d:89:86:cd:6d:3c:b2:64:92:a9:8c:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Feb 14 05:23:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8a7dbb5355adfe71af763f8aee7463dd1d1f9af8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:fb:e9:3c:6a:2b:e6:75:00:4d:33:b5:68:4f:
9f:8c:7d:c1:ea:46:db:3f:29:9d:0e:6b:14:7d:23:
a7:0a:e8:07:d3:c4:b6:77:a8:97:e3:ee:e9:db:75:
52:5a:ba:8a:a2:bf:cf:9a:77:b3:57:c5:24:6a:ee:
61:d9:b2:00:72:06:64:ea:18:d1:8c:58:ca:d9:8b:
df:c0:0c:cf:0f:5c:ef:57:b9:78:10:2d:69:ef:26:
98:99:50:b7:06:ab:28:d9:34:30:34:3f:8d:58:40:
ec:a9:52:84:78:9d:18:b2:06:e4:5e:73:3b:39:c8:
4b:5a:4b:8b:fc:9e:d6:e7:50:37:4e:96:1f:70:13:
77:1b:1a:ae:0d:22:26:b1:d7:53:61:ef:fd:43:7b:
a4:99:9f:cd:b2:1c:6f:54:a8:9f:c6:04:6d:59:5f:
dd:9d:68:ad:88:16:93:d0:d3:43:a9:36:f5:5a:45:
7f:73:b4:a3:f4:8e:a9:71:00:96:c5:7d:cc:24:d1:
bb:0f:ec:52:b6:67:c8:fe:4c:8d:61:47:9f:90:d1:
8d:ef:13:9e:2c:62:7a:39:28:6e:3b:66:fa:3b:65:
a7:41:60:e5:2d:e1:70:11:b8:6c:64:db:50:da:c7:
28:12:62:11:ca:3b:81:05:eb:75:79:a3:a5:55:20:
22:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:7D:BB:53:55:AD:FE:71:AF:76:3F:8A:EE:74:63:DD:1D:1F:9A:F8
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/in27U1Wt_nGvdj-K7nRj3R0fmvg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.34.219.0/24
89.35.130.0/24
Signature Algorithm: sha256WithRSAEncryption
50:7e:38:3b:31:0e:6c:09:b8:46:52:59:41:7d:44:c9:a3:04:
a0:14:27:82:9c:ab:b9:2d:a0:75:1b:90:ce:1a:21:17:00:1d:
be:3e:0d:1b:da:15:0e:b4:fe:b1:7e:93:91:b0:2b:a9:6c:1b:
5c:9b:06:be:36:27:26:d9:82:5c:e6:c0:49:72:70:89:92:52:
4a:a0:27:10:ec:6b:1d:f4:e1:ab:f4:99:cf:de:b2:e2:65:f1:
1c:e5:e4:be:b4:d0:cb:32:37:4c:ad:c3:21:6a:0a:1a:60:cb:
04:9f:e2:d1:32:a0:6d:89:c7:3e:06:93:30:6b:a4:5c:aa:40:
76:62:c1:2e:12:39:aa:68:b4:f4:1a:ad:5e:a8:d1:f3:01:2d:
56:c0:31:7c:79:79:08:32:34:24:9f:49:06:95:bb:d6:7b:e8:
15:a6:f1:89:b9:fd:80:ed:20:fd:02:a0:98:83:6e:79:88:1d:
a8:1c:ae:46:85:14:90:1d:bc:b6:cc:15:8d:e6:fe:e5:ba:f4:
52:c4:f5:79:50:3e:fe:1e:8f:bf:87:8e:68:04:74:36:13:99:
9b:cb:c2:58:db:6d:1a:f9:25:fe:b1:5f:dd:ed:c9:22:23:86:
c6:45:e4:18:cd:0e:ee:31:c0:52:b7:ae:2a:a9:0d:63:cb:11:
e3:22:c6:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:14 2024 by rpki-client on console-ams.rpki-client.org