Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/n1sytDLJc8QkIIETNA0mh1jDGh4.roa
File: n1sytDLJc8QkIIETNA0mh1jDGh4.roa (raw, json)
Hash identifier: o8xIiHyYvMxaMus+xzP3ovDprJDivtR01RyK+VNp7GU=
Subject key identifier: 9F:5B:32:B4:32:C9:73:C4:24:20:81:13:34:0D:26:87:58:C3:1A:1E
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018C3B2DEE20D88A1D05C21F70FCAFE9FE9A
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/n1sytDLJc8QkIIETNA0mh1jDGh4.roa
Signing time: Tue 05 Dec 2023 18:11:54 +0000
ROA not before: Tue 05 Dec 2023 18:11:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 36113
IP address blocks: 89.40.215.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 21 Dec 2023 06:37:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:3b:2d:ee:20:d8:8a:1d:05:c2:1f:70:fc:af:e9:fe:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Dec 5 18:11:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9f5b32b432c973c424208113340d268758c31a1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:17:49:43:f1:e5:bb:62:94:7f:e5:09:6f:3a:
81:84:0a:9b:5b:4a:91:a2:5c:b2:f4:27:93:b2:50:
a8:ba:17:a0:da:7f:47:d3:aa:c6:5c:e8:3f:8a:f7:
90:28:4f:d2:08:35:37:70:38:20:4e:f5:6a:4e:fb:
f5:79:80:98:88:6f:2b:32:3e:94:16:0e:d6:96:3b:
23:90:bc:f2:c8:b7:a8:59:b3:d0:17:72:50:be:bd:
a3:64:22:9a:a3:30:ee:97:cd:ee:47:dc:1a:f8:55:
62:4d:40:6b:a8:d9:2a:a3:0b:d9:2e:c6:fe:65:64:
d9:40:5b:2e:ba:46:41:89:dc:b4:da:fe:ff:35:1a:
70:be:df:7d:85:c2:a7:3c:8e:9a:a5:ed:7b:a2:16:
8f:de:e6:2b:78:02:0c:66:cd:11:7d:bd:27:a6:19:
d1:21:04:6d:67:0c:1b:0c:ed:ae:b4:28:9a:6e:b7:
a3:0e:db:b5:54:cb:6a:eb:c9:93:75:85:0a:d3:fa:
89:40:50:27:f1:94:dd:46:81:61:c3:0a:ef:d4:6c:
9a:f9:fb:90:1f:4f:77:67:1b:8a:9c:c5:a5:28:37:
76:b0:ca:19:5d:04:79:bc:e0:2d:ac:03:13:26:ed:
52:16:6c:fe:b8:1d:db:44:74:b3:b8:04:8b:93:09:
15:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:5B:32:B4:32:C9:73:C4:24:20:81:13:34:0D:26:87:58:C3:1A:1E
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/n1sytDLJc8QkIIETNA0mh1jDGh4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.40.215.0/24
Signature Algorithm: sha256WithRSAEncryption
42:a1:e7:8c:4d:ff:68:8c:82:98:3e:9a:4c:09:b0:ba:37:9a:
c0:1b:31:94:be:ac:54:42:2d:67:0f:dc:40:c5:72:0a:b8:10:
a7:73:70:91:11:8a:b6:a8:c4:f5:92:66:a6:3f:8e:24:85:b9:
df:3a:ee:0f:0e:10:f3:c8:1d:de:3d:1a:ff:44:fa:1d:a7:c0:
ae:2c:67:ba:e0:bf:b7:bd:d5:e4:bd:d0:15:82:6d:0d:da:36:
36:db:76:be:1f:3f:b1:59:df:ea:8a:4f:f4:1b:26:80:88:0d:
fe:d4:1d:20:52:f0:78:0e:03:42:f9:0d:da:65:e9:96:75:f7:
5e:18:3b:7f:53:72:fe:02:6d:dd:d7:f6:19:7c:aa:45:4c:e1:
1c:2e:97:95:b0:0b:5b:5f:c3:18:07:48:70:43:9c:57:22:b4:
ab:e8:ce:7d:ff:fd:61:3f:42:05:11:2b:0e:cc:c6:cf:bd:db:
f7:22:0d:65:3f:d8:8c:43:45:c4:b9:83:74:fc:57:43:6b:71:
65:a5:46:76:73:c9:63:9e:6c:5f:c9:9a:e0:63:62:25:fd:a6:
df:6e:64:84:9e:28:8d:ca:14:1b:8b:63:84:8b:30:49:dd:c5:
35:16:0b:9c:9d:72:a8:74:e5:d5:af:1a:fb:64:0a:33:a2:28:
0a:f1:4b:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:10 2024 by rpki-client on console-fra.rpki-client.org