Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/l34yj2GO9lny0aVKwScgOr55E-I.roa
File: l34yj2GO9lny0aVKwScgOr55E-I.roa (raw, json)
Hash identifier: +Mww9JKqjmlrh5nAaP/fmUrXRF6nf5xuzVcYNEw9a5g=
Subject key identifier: 97:7E:32:8F:61:8E:F6:59:F2:D1:A5:4A:C1:27:20:3A:BE:79:13:E2
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018ADF8A57DB8214B638B298E8C50A8690F1
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/l34yj2GO9lny0aVKwScgOr55E-I.roa
Signing time: Fri 29 Sep 2023 06:05:00 +0000
ROA not before: Fri 29 Sep 2023 06:05:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211318
IP address blocks: 2.57.241.0/24 maxlen: 24
89.34.106.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 11 Oct 2023 09:40:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:df:8a:57:db:82:14:b6:38:b2:98:e8:c5:0a:86:90:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Sep 29 06:05:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=977e328f618ef659f2d1a54ac127203abe7913e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:8f:76:e0:bd:95:d2:27:48:12:38:f8:f6:52:
80:4f:c8:5f:86:52:2b:4b:76:c3:bf:56:49:6c:ba:
dc:d5:11:e6:37:91:1a:e9:20:56:1e:7c:bf:14:1a:
d5:a5:c5:13:0a:bf:bd:7a:51:62:af:a6:46:a1:b7:
69:07:8d:30:51:ff:23:d3:37:15:36:e6:39:42:12:
21:e8:99:cc:76:9e:e8:1e:62:e4:fa:75:7a:fb:85:
53:62:cf:11:93:70:fb:ef:38:6f:c9:87:20:d6:e0:
b2:3d:2d:f6:4b:1c:37:48:9c:c0:f7:7f:02:74:c9:
d6:12:33:c8:f8:6d:28:1c:4b:9d:56:0a:00:2b:04:
c6:82:62:be:72:00:83:b9:da:65:26:ba:ae:77:20:
b7:71:eb:bd:b2:a6:b1:b4:aa:40:98:f6:70:f9:d3:
ea:8c:e6:2f:06:bc:7e:f8:27:c8:a9:bd:f2:1a:e1:
1b:40:cc:e0:74:72:6f:8d:f2:0f:32:f8:70:9c:48:
84:ad:ef:3c:2f:92:96:6f:f6:0b:92:3f:e6:aa:1a:
40:52:ec:5d:79:ef:ef:dd:1b:22:ee:43:30:b5:e6:
82:a3:88:a1:88:f3:fe:b0:63:49:99:1b:b3:1c:fe:
b1:ea:e0:42:0d:85:96:35:05:36:23:42:d1:dd:3b:
54:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:7E:32:8F:61:8E:F6:59:F2:D1:A5:4A:C1:27:20:3A:BE:79:13:E2
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/l34yj2GO9lny0aVKwScgOr55E-I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.57.241.0/24
89.34.106.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:a7:1a:ef:a5:6e:24:52:af:5a:45:65:de:70:67:4c:b9:7f:
18:12:de:43:8a:87:20:1f:a8:46:2d:af:37:82:9d:44:d8:90:
dd:e6:01:20:8a:d7:40:4c:10:11:e7:f6:f1:db:9e:3c:3f:b3:
83:ed:db:b0:f5:61:9a:36:86:e2:56:bf:a4:6a:9a:d7:11:6a:
d1:f7:c3:30:8f:61:bb:62:d9:6f:ff:d0:b7:dc:5a:fc:9f:ac:
06:17:47:09:05:5e:66:b0:4b:5f:c5:3b:a1:4e:eb:02:40:a7:
1a:99:88:43:56:d0:38:e9:02:cc:d6:e2:12:e8:71:c7:b2:9c:
51:64:a3:2e:d6:f3:4b:13:29:18:fc:0b:db:01:45:bb:d2:97:
ef:0d:f8:7c:b9:ec:ed:6d:54:e4:5b:fc:1b:c6:bb:3e:3b:34:
5e:9e:a2:6e:74:b0:b0:a6:0b:76:f3:e6:72:2c:48:b2:d9:02:
ec:21:82:fd:64:03:a7:be:80:bd:8d:c3:70:5c:cc:7b:b8:11:
c9:f6:bd:61:1b:6e:c9:a9:a9:3f:d7:f3:91:40:72:cb:42:a1:
08:62:1e:d6:4a:10:09:f0:78:6f:c3:ca:8f:99:4a:2a:c1:06:
14:87:d1:40:05:3b:69:a5:9a:db:3f:2f:e4:3d:98:81:0f:3d:
e0:cb:3b:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:10 2024 by rpki-client on console-fra.rpki-client.org