Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/lN3joB-S3G9ep6xZbwwXZkZ8AOs.roa
File: lN3joB-S3G9ep6xZbwwXZkZ8AOs.roa (raw, json)
Hash identifier: VUHXMJTQ+njMaEKHKGc3nP9pJYkj+pkA8X/MldlUZfI=
Subject key identifier: 94:DD:E3:A0:1F:92:DC:6F:5E:A7:AC:59:6F:0C:17:66:46:7C:00:EB
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 0191FFA54D4939F5D261A4E5515C61173417
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/lN3joB-S3G9ep6xZbwwXZkZ8AOs.roa
Signing time: Tue 17 Sep 2024 11:01:48 +0000
ROA not before: Tue 17 Sep 2024 11:01:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211014
IP address blocks: 89.45.44.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 10 Oct 2024 12:47:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:ff:a5:4d:49:39:f5:d2:61:a4:e5:51:5c:61:17:34:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Sep 17 11:01:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=94dde3a01f92dc6f5ea7ac596f0c1766467c00eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:d1:b5:2c:75:58:6d:c6:24:9c:29:c2:9e:05:
52:4a:30:4e:00:8f:45:44:1e:27:a6:0d:dd:4d:aa:
52:e8:a8:d8:bb:ac:d8:85:47:91:52:2f:74:56:4e:
1b:38:1e:f5:c6:99:77:53:ce:cd:ea:4a:c0:a1:bb:
ee:31:84:78:d1:6a:3c:b0:f8:36:5a:20:0d:3f:b8:
2d:ee:19:46:cc:23:08:a0:94:3c:08:c3:f1:56:03:
46:72:7a:50:23:0a:6a:ec:c2:27:ab:1c:be:24:08:
d5:93:2b:bb:81:34:b1:3e:60:6d:0d:33:7b:5a:35:
a6:08:aa:76:10:b6:bd:15:bc:44:41:57:09:1c:97:
39:ac:0b:a0:91:23:94:dc:13:1b:0b:68:86:ff:f3:
9e:5a:d0:13:cc:a7:e8:96:d0:4d:cf:ac:07:90:d1:
c2:0f:8c:b6:05:da:64:9f:71:ea:b3:a1:89:4e:84:
e7:b4:f2:27:1e:44:24:4c:c2:c7:7d:9e:41:fc:4c:
82:68:5c:d8:5c:da:c5:19:7d:5c:f2:64:45:0b:70:
3d:78:3a:6c:c9:e1:f2:2b:97:13:91:32:84:b2:b9:
1d:82:7f:95:fc:8a:ad:03:f2:aa:22:f8:f5:19:5f:
10:f5:66:27:f3:ba:7e:a0:34:1c:f1:ab:33:69:10:
41:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:DD:E3:A0:1F:92:DC:6F:5E:A7:AC:59:6F:0C:17:66:46:7C:00:EB
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/lN3joB-S3G9ep6xZbwwXZkZ8AOs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.45.44.0/24
Signature Algorithm: sha256WithRSAEncryption
88:5d:f9:30:67:65:8c:fa:44:9f:3b:c3:4b:f0:dc:b7:af:d0:
33:8c:af:0a:ee:e9:3f:dc:3a:e3:4a:7b:51:a2:a1:33:44:03:
5d:d8:17:8f:f9:5e:42:6c:52:79:ad:1a:ff:cc:81:a2:b8:c3:
eb:f8:72:03:0f:2b:fd:85:29:68:bf:97:e7:bb:86:da:2d:89:
f2:02:fe:25:c8:6e:ed:c6:54:50:9b:81:72:23:52:55:e2:1a:
38:61:56:98:e7:01:1e:6d:7d:54:61:f6:76:d6:8b:30:58:83:
04:02:6f:17:2c:09:c7:bf:af:52:17:86:0a:16:ea:73:0e:04:
66:ad:a8:40:58:73:3c:4d:83:0e:84:ce:e8:ed:d5:a1:17:1f:
ca:2f:4c:26:e0:95:20:37:7e:55:58:88:ff:a8:65:0f:30:f7:
7d:a6:19:e1:c5:7d:a0:55:c4:b1:26:0c:54:a3:42:a1:b0:53:
43:de:b4:92:23:1a:ae:77:c2:53:12:aa:20:8c:ba:fc:69:47:
65:fe:28:0f:b4:00:02:83:98:4d:f7:d0:e9:52:ae:e9:b3:ea:
27:36:05:ba:61:df:7c:01:d6:99:62:e1:e0:ae:68:a4:24:ff:
74:3e:c7:9e:b2:a6:9c:69:7e:ae:39:3b:33:ec:88:1b:9e:15:
b0:28:b5:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 10 16:08:16 2024 by rpki-client on console-fra.rpki-client.org