Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/m1kG_pizj4OdYMmVG_KyLeVjPyY.roa
File: m1kG_pizj4OdYMmVG_KyLeVjPyY.roa (raw, json)
Hash identifier: muLoU3Ko14HJWINd4UfC3sxDVZmuMiYasZjvKUpJ0do=
Subject key identifier: 9B:59:06:FE:98:B3:8F:83:9D:60:C9:95:1B:F2:B2:2D:E5:63:3F:26
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018CC4933C887C9E261406D8D8E97F03F14D
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/m1kG_pizj4OdYMmVG_KyLeVjPyY.roa
Signing time: Mon 01 Jan 2024 10:30:32 +0000
ROA not before: Mon 01 Jan 2024 10:30:32 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198883
IP address blocks: 89.35.130.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 13 Feb 2024 11:47:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:93:3c:88:7c:9e:26:14:06:d8:d8:e9:7f:03:f1:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Jan 1 10:30:32 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9b5906fe98b38f839d60c9951bf2b22de5633f26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:e7:e5:ad:01:c3:95:37:79:c1:0f:64:a2:9f:
3b:fe:1a:57:28:10:4c:75:be:c2:56:b8:20:7c:d5:
74:fb:db:35:00:d1:c0:f6:75:03:e4:c5:11:98:1a:
07:94:da:9b:ea:40:35:d7:d5:d4:0b:49:46:94:0c:
76:f6:ec:58:b1:62:93:b6:0f:ff:33:40:33:f2:74:
a0:b6:d0:ad:f7:2b:6b:be:51:29:83:aa:53:3a:67:
aa:56:92:43:dd:88:26:f7:43:95:a0:36:26:b8:24:
dd:f2:88:7a:ad:f2:12:ae:ec:1f:55:cb:a4:66:b0:
1d:76:f3:44:af:f7:b7:37:73:0d:77:a3:03:60:cd:
b9:6d:59:80:2f:ff:95:95:d5:5f:89:f8:cb:67:8c:
89:2e:cb:a8:56:57:c6:64:73:57:2e:70:d7:db:1c:
c3:06:34:a6:cd:59:b6:4c:93:10:a7:93:d2:9f:95:
72:6c:3b:52:50:f3:28:23:4b:4b:b5:96:23:d8:0a:
0c:7e:41:24:57:f3:6e:d3:95:60:76:c5:c9:46:71:
01:51:ec:a7:36:91:21:60:05:d5:62:c0:43:b1:e5:
e6:26:ea:9d:c5:ae:44:27:dd:33:70:ef:f0:47:ec:
08:10:39:b1:f7:67:8d:ba:43:fe:62:83:2f:9e:ad:
71:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:59:06:FE:98:B3:8F:83:9D:60:C9:95:1B:F2:B2:2D:E5:63:3F:26
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/m1kG_pizj4OdYMmVG_KyLeVjPyY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.35.130.0/24
Signature Algorithm: sha256WithRSAEncryption
27:74:ec:7d:3f:59:8b:18:94:1f:1c:4b:8d:1f:4b:80:93:7b:
4b:73:9c:f7:a2:ad:f6:bf:32:cf:3d:bb:af:84:32:b6:91:8f:
ef:2d:b3:01:fc:4e:e4:6b:fa:2f:aa:55:42:84:20:44:0d:75:
f1:7f:3f:22:ff:e8:4c:f1:fc:b6:73:4c:03:ba:b8:70:39:7c:
43:f7:0d:ab:d7:fd:9e:0a:4e:cc:9e:1f:45:53:e2:2e:6c:6e:
8b:2a:bc:b8:6d:c0:dd:e7:78:c4:ba:61:f6:af:f1:c9:87:9d:
cd:78:49:81:27:bc:0f:75:14:74:41:13:56:1a:04:fb:af:98:
ea:bb:d6:af:d2:e1:ea:9d:59:2b:05:78:fb:73:af:dc:22:10:
1b:9a:74:75:aa:eb:a8:5e:85:d8:5a:ea:26:92:f6:d0:bd:00:
53:32:a2:5e:90:c3:75:16:44:ed:15:28:86:b0:91:a6:de:49:
3d:c6:c3:83:cc:f9:38:79:88:ed:00:ba:86:20:5e:fc:73:10:
b2:c4:12:89:a6:e7:32:bc:9b:eb:7f:ba:51:4d:27:40:c4:1e:
43:ce:38:74:cd:64:01:54:2a:b0:b9:53:12:ef:a2:ae:04:97:
c4:3d:33:33:98:f2:cd:30:4c:19:91:88:fc:a6:8a:92:23:5c:
8a:10:54:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:14 2024 by rpki-client on console-ams.rpki-client.org