Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/kYW9FYLvt_upbNt5Bv13h4TxXmM.roa
File: kYW9FYLvt_upbNt5Bv13h4TxXmM.roa (raw, json)
Hash identifier: RwubIsVoQG4XWgn8S8Q05u2w3x6CKGRc0PIopKYzVFE=
Subject key identifier: 91:85:BD:15:82:EF:B7:FB:A9:6C:DB:79:06:FD:77:87:84:F1:5E:63
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018CC493339E3D684282608696795ABE2175
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/kYW9FYLvt_upbNt5Bv13h4TxXmM.roa
Signing time: Mon 01 Jan 2024 10:30:30 +0000
ROA not before: Mon 01 Jan 2024 10:30:30 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 174
IP address blocks: 89.34.219.0/24 maxlen: 24
128.0.41.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 16 Jan 2024 16:20:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:93:33:9e:3d:68:42:82:60:86:96:79:5a:be:21:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Jan 1 10:30:30 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9185bd1582efb7fba96cdb7906fd778784f15e63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:ad:e4:a2:54:99:f0:4a:79:a3:35:8a:59:3c:
9e:d9:a8:4b:f1:7f:92:bd:b3:ab:d9:5c:0f:25:7b:
24:8b:71:b3:b1:45:f9:54:03:4d:b7:5d:b1:8d:c8:
29:29:2c:43:7a:48:29:4f:06:16:90:3e:b7:b4:af:
f2:9a:6e:f4:c8:47:40:fe:e2:1f:f7:c4:29:ae:1c:
5c:eb:84:67:ba:ea:2c:7d:2b:29:be:19:b7:80:4e:
7b:05:58:e8:46:fd:35:4d:2b:93:e5:69:cc:1f:91:
ef:44:12:ab:a8:51:ef:1a:3d:df:e7:89:01:c3:ea:
9c:36:c6:11:1c:9e:08:44:33:a0:30:35:1c:86:2d:
3f:a4:b0:d2:60:0c:e1:fb:8d:b4:7b:d4:5a:0b:98:
0e:d7:28:53:a5:98:fc:26:2d:90:5c:b0:d9:ba:a5:
0a:15:14:bb:83:e5:53:dc:2b:9e:1c:29:9f:3c:aa:
a8:96:8d:cd:ee:83:3f:c4:96:f6:d3:5e:10:2c:76:
5e:46:73:1e:ce:43:83:44:68:08:d3:07:ff:ad:03:
15:ab:73:80:04:7f:3f:6e:80:c1:64:8b:10:68:f4:
fe:ea:90:30:b2:d2:3f:ac:60:4c:bc:89:f9:eb:09:
b5:67:21:db:34:bb:93:80:80:ad:b7:00:4e:5a:77:
d5:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:85:BD:15:82:EF:B7:FB:A9:6C:DB:79:06:FD:77:87:84:F1:5E:63
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/kYW9FYLvt_upbNt5Bv13h4TxXmM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.34.219.0/24
128.0.41.0/24
Signature Algorithm: sha256WithRSAEncryption
04:04:c1:40:57:c9:f1:61:1e:43:8d:ee:18:c0:1e:99:3f:b3:
94:a6:51:6e:7e:a7:28:54:99:f2:49:30:5f:1b:0e:bd:05:00:
03:dd:ed:c1:f7:52:f0:0b:bb:e3:76:88:4a:68:aa:d0:ae:9e:
04:e4:bc:16:ea:5a:16:d3:f1:92:b7:c9:c1:53:da:80:3b:10:
46:12:bd:ea:d6:38:e4:5d:a6:29:1c:4b:79:d0:1b:1c:7d:1a:
7d:94:48:c6:19:83:ba:d2:26:83:bc:a7:b8:df:cc:f2:86:7d:
76:de:65:34:0c:0a:2b:f8:92:4a:99:1e:c9:df:1c:18:71:11:
07:aa:d9:68:81:b1:15:d6:9b:70:22:8d:71:cf:25:8c:55:be:
a3:2e:93:16:22:a7:bf:92:34:64:50:b4:c3:7e:21:3e:00:f4:
c4:94:8c:78:9f:96:3b:05:6f:41:e1:89:91:7f:12:9f:70:83:
82:8f:48:4f:f4:f8:bd:19:6c:02:8e:4f:0c:13:2f:a8:71:57:
79:94:51:af:df:6b:a0:4c:d4:6f:32:2c:74:62:91:a8:f9:2e:
60:43:26:ee:7e:6d:6f:70:bb:68:26:eb:d4:9f:82:c7:51:c7:
08:bc:2c:b9:78:6c:a3:9b:b6:46:f6:53:4f:fa:42:a1:2f:eb:
90:c8:7d:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:14 2024 by rpki-client on console-ams.rpki-client.org