Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/opHe8JKQ9R87lp3j6ysz9YO8J1c.roa
File: opHe8JKQ9R87lp3j6ysz9YO8J1c.roa (raw, json)
Hash identifier: WfhmhWmFU2tLcgjHTPDTQPkTDt5rBuIn1suulh7EcSA=
Subject key identifier: A2:91:DE:F0:92:90:F5:1F:3B:96:9D:E3:EB:2B:33:F5:83:BC:27:57
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 0188C47FB767EC8630B960198210791952B8
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/opHe8JKQ9R87lp3j6ysz9YO8J1c.roa
Signing time: Fri 16 Jun 2023 13:58:04 +0000
ROA not before: Fri 16 Jun 2023 13:58:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 399471
IP address blocks: 89.40.70.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 16 Jun 2023 15:25:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:c4:7f:b7:67:ec:86:30:b9:60:19:82:10:79:19:52:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Jun 16 13:58:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a291def09290f51f3b969de3eb2b33f583bc2757
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:62:27:0d:b8:0c:1b:40:c5:c0:8e:07:90:c5:
b2:71:f1:df:b2:30:56:29:93:d4:06:f7:c3:36:e4:
fd:ef:58:9d:ba:a7:49:dd:3d:0f:a0:b1:a9:e1:6a:
72:db:64:30:ab:b9:7e:1d:e9:41:5f:cb:23:0a:ee:
c7:0f:49:a9:58:2d:02:3b:9b:97:63:15:20:9f:f8:
c2:29:16:42:43:96:2f:96:67:66:f6:2c:ed:3e:10:
82:f8:ed:fd:a5:f6:74:4d:24:af:44:24:75:d0:99:
f3:b4:2d:b6:78:f4:49:ce:ca:21:7d:bf:56:12:70:
41:3b:e3:01:ee:ce:2e:0d:ba:41:f4:5c:9e:f9:9b:
f1:cc:e0:f5:6a:9d:ca:31:c5:9f:4a:b1:22:22:ea:
48:eb:1e:2a:da:58:82:34:07:75:16:d1:83:92:73:
43:13:2d:71:d5:df:ae:a7:0d:74:6b:fa:4e:db:74:
69:c8:b6:97:ad:26:db:68:4f:24:c2:d8:38:d9:e2:
30:8d:a4:8b:f5:65:c9:af:82:99:4f:87:0a:54:2b:
ba:06:7b:05:ac:c3:21:ff:a0:33:f9:e9:d1:a6:66:
6a:d1:4e:01:c7:f5:b9:c8:75:5b:95:8c:09:ce:fe:
68:bb:47:0b:a1:af:01:ab:da:cc:87:4d:93:f5:a9:
d4:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:91:DE:F0:92:90:F5:1F:3B:96:9D:E3:EB:2B:33:F5:83:BC:27:57
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/opHe8JKQ9R87lp3j6ysz9YO8J1c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.40.70.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:a2:66:a9:ee:4d:c5:6e:88:8f:e0:e8:1f:29:3e:1e:e1:0c:
02:ef:8e:b9:9a:4e:20:b2:51:61:d0:33:28:d9:b3:93:3f:b6:
07:3e:ae:6e:b2:2f:27:fe:9d:e3:40:90:e7:7a:c3:1a:d4:05:
4e:d1:56:eb:82:f3:a7:e2:8d:7b:f7:a6:87:23:5b:0d:a5:87:
94:4d:9c:8e:89:f8:08:4f:47:ba:52:b7:3c:dd:b2:b2:7e:0a:
d9:77:e2:30:49:11:80:c0:f4:8e:a7:50:b4:2c:64:00:64:bb:
77:b7:90:e1:72:8c:9f:28:fa:39:98:1a:82:a6:d3:10:4f:97:
a5:88:19:e6:4c:00:4a:ba:b9:b1:5a:92:ef:72:c5:b1:72:b5:
9d:45:70:5a:98:94:49:f0:70:51:b3:ed:e1:9e:f2:6c:68:3c:
0a:9f:36:88:de:bf:a0:50:64:79:19:d3:aa:11:b6:a2:76:a1:
ac:ce:d2:31:ce:3b:ad:b5:a4:4a:b9:db:91:32:77:82:cc:ea:
b7:42:a1:d1:9c:67:b3:c4:5d:7f:30:f1:c8:f2:cc:52:8c:85:
fc:51:9a:72:36:95:02:23:1f:3e:c7:ac:5b:85:c8:b1:cb:30:
1f:58:f0:78:b0:f5:60:3a:87:1e:3f:62:6c:47:18:d6:f3:01:
25:cf:58:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:10 2024 by rpki-client on console-fra.rpki-client.org