Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/mS0mXsR9u6Mu-iA90fTXt1euGjM.roa
File: mS0mXsR9u6Mu-iA90fTXt1euGjM.roa (raw, json)
Hash identifier: 88sJPKkyhXbSl6C1W3ugOJ6y8UHroYjMFM1UtwGHbq0=
Subject key identifier: 99:2D:26:5E:C4:7D:BB:A3:2E:FA:20:3D:D1:F4:D7:B7:57:AE:1A:33
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 0189E87AF11557A5B8729DA02EBA2C70A40B
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/mS0mXsR9u6Mu-iA90fTXt1euGjM.roa
Signing time: Sat 12 Aug 2023 06:41:58 +0000
ROA not before: Sat 12 Aug 2023 06:41:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60721
IP address blocks: 89.36.140.0/24 maxlen: 24
89.45.35.0/24 maxlen: 24
89.40.36.0/24 maxlen: 24
86.105.4.0/24 maxlen: 24
46.102.237.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 21 Aug 2023 05:46:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:e8:7a:f1:15:57:a5:b8:72:9d:a0:2e:ba:2c:70:a4:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Aug 12 06:41:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=992d265ec47dbba32efa203dd1f4d7b757ae1a33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:24:7e:63:5a:64:8b:ac:28:38:c8:4e:cd:e3:
69:35:6f:7f:21:31:55:a3:e5:a5:0b:35:58:f7:d7:
5a:54:44:44:3b:6e:b4:13:81:1e:31:dc:54:2f:e7:
fe:f4:fc:fa:41:ee:fd:c6:3a:60:c3:24:5e:84:7c:
3e:f7:62:18:8c:d7:63:2b:22:96:20:0c:90:af:9c:
7c:1c:ea:52:ca:37:b5:76:53:78:17:5d:f0:91:f6:
49:cc:65:19:0b:f6:0a:b1:c4:06:6a:c7:b5:28:3c:
7f:60:a6:8c:ce:4a:94:94:1f:6a:86:ea:ce:3e:b8:
34:72:1e:0c:a9:ea:e8:5c:73:70:ab:30:2b:4f:17:
85:3e:67:34:3d:dd:7f:1c:2c:fc:26:4b:dd:53:4e:
9f:18:98:b7:c5:df:18:74:2b:c2:dc:5b:d6:9f:46:
d7:3d:2a:dd:5f:22:bf:4c:27:d9:20:89:bc:31:86:
c3:8f:28:1a:41:04:ac:3a:c0:4f:7b:8c:98:b5:ae:
92:96:4f:36:80:31:0d:fb:49:c2:d9:1c:eb:f7:aa:
e9:04:b9:49:47:1d:90:fb:ae:48:93:64:a8:fd:22:
a7:3d:bc:5b:28:1f:05:ac:4d:28:0d:7a:cf:f4:da:
60:fc:10:39:b1:92:ce:3b:21:22:91:1a:24:83:aa:
f3:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:2D:26:5E:C4:7D:BB:A3:2E:FA:20:3D:D1:F4:D7:B7:57:AE:1A:33
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/mS0mXsR9u6Mu-iA90fTXt1euGjM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.102.237.0/24
86.105.4.0/24
89.36.140.0/24
89.40.36.0/24
89.45.35.0/24
Signature Algorithm: sha256WithRSAEncryption
03:a7:1a:ed:a6:5e:a1:ec:d9:0f:74:3e:ca:a1:cf:81:78:78:
26:bd:c5:8d:59:d7:97:98:67:44:66:d6:1b:fc:89:68:a1:1d:
09:32:8b:d8:5f:a3:af:67:66:1c:f1:29:43:6d:6c:91:7c:53:
a9:33:55:a0:ab:46:5b:b1:ac:1f:64:6d:b0:95:5e:ad:68:34:
00:ea:45:ef:44:5c:cd:90:03:5c:d2:ac:84:b1:53:31:39:ea:
d3:56:e6:68:99:43:3c:cc:c5:70:a4:08:70:20:d6:db:6d:bc:
39:48:c9:5f:24:aa:2c:6f:7e:1c:a0:53:a0:73:7f:03:b1:85:
0c:81:8c:c9:23:bf:07:16:33:46:56:b3:dc:d8:d0:0c:73:c9:
a3:89:46:db:76:67:66:5c:d5:65:db:2c:39:4d:61:3d:d1:4c:
e3:a1:84:83:88:03:75:f3:3a:84:bc:0f:87:d7:88:6f:20:b0:
95:8c:e0:44:75:22:9a:cd:35:c4:d3:27:47:93:e1:a9:04:20:
aa:b3:ee:8e:2a:5d:88:98:34:72:12:e1:60:8f:97:8c:e9:31:
fa:83:88:eb:bb:37:5a:fa:ba:7c:e3:56:08:fb:73:70:f2:61:
bc:00:da:c7:41:93:71:ab:47:51:dd:19:f1:6a:af:7b:dd:84:
9c:17:39:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:10 2024 by rpki-client on console-fra.rpki-client.org