Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/tZzTsCkP4lPwF1wyt4r7mhNiD-Y.roa
File: tZzTsCkP4lPwF1wyt4r7mhNiD-Y.roa (raw, json)
Hash identifier: 3x0hJTxn8r2j/mnCqzR1JxYxdfM5I2BmpvdWOKB9bXM=
Subject key identifier: B5:9C:D3:B0:29:0F:E2:53:F0:17:5C:32:B7:8A:FB:9A:13:62:0F:E6
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018B4B6164D50170C0FA043FA796524132F6
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/tZzTsCkP4lPwF1wyt4r7mhNiD-Y.roa
Signing time: Fri 20 Oct 2023 04:39:15 +0000
ROA not before: Fri 20 Oct 2023 04:39:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 174
IP address blocks: 89.34.219.0/24 maxlen: 24
128.0.41.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 18 Dec 2023 09:04:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:4b:61:64:d5:01:70:c0:fa:04:3f:a7:96:52:41:32:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Oct 20 04:39:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b59cd3b0290fe253f0175c32b78afb9a13620fe6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:17:38:f3:ad:39:6e:a9:6e:d2:f3:e7:66:b3:
7f:7f:69:13:1d:cb:22:0c:0c:2e:32:99:37:1d:0f:
b4:69:dc:a2:0f:3a:9f:e9:4f:e9:97:8c:c1:88:a9:
02:30:02:da:bb:b3:db:ce:a0:ef:96:b8:31:93:1c:
e8:68:bb:28:f0:55:eb:b1:f4:b1:fe:a9:80:9a:8c:
dd:cf:80:d8:e0:6a:83:ae:12:d9:0a:df:07:d2:a7:
2e:2f:5e:ab:24:95:93:44:a7:70:0f:2f:e1:78:2f:
3c:1f:3b:c9:8d:38:61:fe:d7:97:8f:7c:ba:10:87:
7c:f4:47:91:2f:0c:cc:76:d1:55:23:12:a1:e1:5b:
06:8b:9e:84:39:47:0f:9f:21:00:92:fe:69:52:c5:
80:01:52:18:c9:14:9e:03:04:1a:f1:62:14:b4:82:
aa:b2:d6:b8:f0:28:aa:46:a4:ca:62:28:67:22:42:
71:68:7f:aa:a1:28:63:35:de:d2:78:ea:97:f5:90:
d0:1d:58:36:f3:c1:be:f3:63:a0:68:3f:75:f2:63:
2a:28:38:af:56:c0:f5:88:a5:b9:17:16:dd:e5:56:
3e:3e:e4:e9:ac:87:8a:0f:ef:f6:20:a3:17:71:d2:
e3:c3:00:59:6e:d2:e8:2b:03:0c:c0:66:41:0d:3b:
ea:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:9C:D3:B0:29:0F:E2:53:F0:17:5C:32:B7:8A:FB:9A:13:62:0F:E6
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/tZzTsCkP4lPwF1wyt4r7mhNiD-Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.34.219.0/24
128.0.41.0/24
Signature Algorithm: sha256WithRSAEncryption
12:a4:4c:63:6e:0a:c9:d9:b2:7e:70:02:ae:3e:65:57:bd:49:
1b:7c:04:3f:1d:59:00:c5:ee:ab:d5:12:50:74:01:3a:90:9e:
b8:06:c1:4a:2a:a1:91:cf:0e:c7:22:9a:37:24:6c:81:d7:85:
78:6f:26:22:fd:77:d1:10:5c:34:fb:db:21:1c:ab:ee:7b:5c:
0d:13:5f:bb:b1:45:d6:51:e8:7e:82:29:70:f2:96:00:c8:eb:
d1:37:36:87:01:b4:69:0b:97:e6:58:12:d6:5a:10:95:b3:78:
85:60:a9:6b:d1:1f:54:46:4e:9b:de:b8:5e:8b:6f:2c:27:a8:
24:b2:fe:eb:86:79:ae:6e:b7:2d:e7:69:b2:cf:19:64:69:c3:
99:56:56:d2:1f:c4:fe:33:a0:67:34:fb:3f:ce:39:ae:7a:e4:
d0:c8:dd:65:7b:5b:ae:38:04:d6:e2:5b:23:88:42:6c:db:16:
60:2f:ad:44:66:f4:99:92:03:11:f8:3b:28:c3:13:0c:5f:6b:
e7:8b:a3:48:9f:6c:36:b8:34:87:be:22:59:f9:c5:b4:86:e4:
ca:8d:6b:c7:45:be:3b:67:4e:b1:6c:d1:32:e9:d1:fe:6e:7a:
1d:14:c8:58:52:da:df:45:8a:16:93:27:e2:a2:99:31:e0:36:
c8:9d:41:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:10 2024 by rpki-client on console-fra.rpki-client.org