Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/ogi4n3m07UymNs3DFXjVxo79fTo.roa
File: ogi4n3m07UymNs3DFXjVxo79fTo.roa (raw, json)
Hash identifier: aTqaQEh7OWDX3RIT3Q7dOHOmpVzFVICYp267RaDSf1w=
Subject key identifier: A2:08:B8:9F:79:B4:ED:4C:A6:36:CD:C3:15:78:D5:C6:8E:FD:7D:3A
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018C4E31933EA346C2509D5D38C3B0A9E0B3
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/ogi4n3m07UymNs3DFXjVxo79fTo.roa
Signing time: Sat 09 Dec 2023 10:48:40 +0000
ROA not before: Sat 09 Dec 2023 10:48:40 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197789
IP address blocks: 89.36.140.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 21 Dec 2023 03:42:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:4e:31:93:3e:a3:46:c2:50:9d:5d:38:c3:b0:a9:e0:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Dec 9 10:48:40 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a208b89f79b4ed4ca636cdc31578d5c68efd7d3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:1b:a2:3a:dd:71:38:8a:b7:c3:12:80:00:0e:
b7:f5:af:04:15:ab:ca:4a:7d:85:cb:69:3b:f1:ae:
86:d0:69:4d:c4:6b:a1:c1:38:85:77:13:14:bb:ef:
9b:cf:14:48:fe:b8:02:93:9a:77:bb:8d:0b:86:39:
63:5e:b0:68:c2:41:18:70:8d:15:63:69:b4:15:48:
ba:a3:39:25:c8:22:30:af:c2:0d:af:5f:92:b6:1f:
9e:3f:97:c1:06:3b:d8:fc:c6:ce:d4:d1:31:37:3d:
08:13:48:26:b7:f0:f8:40:dc:7a:7d:59:9b:af:98:
68:ec:1b:5f:53:70:ec:0c:0b:22:59:95:f2:68:46:
e4:26:55:c8:db:7b:b8:a8:0a:e2:69:ed:71:46:95:
ed:16:10:2c:1b:64:f8:90:2e:03:b2:0d:6c:7a:b1:
e3:f8:5f:aa:97:3f:28:41:71:5d:ee:6a:fa:e6:5d:
2a:56:19:11:07:6e:b9:72:2c:e2:e8:91:7d:d0:08:
61:1f:df:cd:87:5f:28:81:80:db:7f:21:77:5f:28:
a8:88:2b:de:cd:21:07:99:11:57:3b:c9:95:e0:87:
0a:4c:8e:f1:85:db:c5:8a:1e:cd:9a:60:3f:b8:65:
eb:33:ac:a8:3d:87:b7:2b:84:f3:dc:ff:f9:ef:bc:
04:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:08:B8:9F:79:B4:ED:4C:A6:36:CD:C3:15:78:D5:C6:8E:FD:7D:3A
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/ogi4n3m07UymNs3DFXjVxo79fTo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.36.140.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:1e:53:a5:bd:05:22:36:4c:a7:f9:ad:da:c0:b2:2c:0e:54:
e4:50:fb:ac:44:e4:9a:ee:30:57:94:e6:fb:a7:77:8a:cf:c2:
ce:3c:e1:7e:85:e8:eb:3f:09:9d:96:a8:be:16:0a:68:bc:99:
a4:14:d4:f0:22:e5:8d:26:c7:8e:27:81:37:d2:d1:fb:94:24:
a2:0c:ca:08:d2:72:77:b4:37:87:ad:30:9a:74:76:31:f2:9e:
9e:0b:52:08:f0:5d:a1:d7:c1:98:f8:de:bd:5b:23:4d:9b:57:
57:88:67:4a:b2:b2:a6:65:1e:0c:c7:bf:8e:2d:cd:37:c2:49:
2b:7b:da:49:07:dd:ff:47:fe:41:d5:2a:97:fb:b8:8f:63:6a:
db:89:db:6a:65:76:41:83:9a:56:6e:53:65:06:ad:6f:ae:ce:
31:0d:2c:f7:83:aa:e5:20:e5:a5:5c:4e:0f:e4:39:40:a5:f5:
c6:7f:ac:3b:ad:a6:c5:48:5c:01:2f:bb:1b:e9:f0:8f:88:ff:
da:c5:0e:37:68:9e:28:76:09:99:10:39:fc:7b:60:5c:d7:6d:
19:54:fc:d1:23:73:ee:a9:dd:5d:fc:f4:dc:57:10:03:b3:a9:
f8:3d:52:12:68:b7:f4:1c:93:40:5f:b2:bb:85:c6:ee:f0:33:
36:67:b4:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:10 2024 by rpki-client on console-fra.rpki-client.org