Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/f153dc-cbfb-4a4f-80d2-745e08fe58c6/1/baMnjk0RdxlThuQWAjPFVIeMTQM.roa
File: baMnjk0RdxlThuQWAjPFVIeMTQM.roa (raw, json)
Hash identifier: J2/pD9FJn594yXKd9nT2/4YBPZ0hft43TTjFzk/Lg6I=
Subject key identifier: 6D:A3:27:8E:4D:11:77:19:53:86:E4:16:02:33:C5:54:87:8C:4D:03
Certificate issuer: /CN=b0b5a80a7106e0a4b8545c8150bb72c699fcc9a0
Certificate serial: 018CC8DF1E7DFD7429F97D793FC008511A3B
Authority key identifier: B0:B5:A8:0A:71:06:E0:A4:B8:54:5C:81:50:BB:72:C6:99:FC:C9:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sLWoCnEG4KS4VFyBULtyxpn8yaA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/f153dc-cbfb-4a4f-80d2-745e08fe58c6/1/baMnjk0RdxlThuQWAjPFVIeMTQM.roa
Signing time: Tue 02 Jan 2024 06:31:54 +0000
ROA not before: Tue 02 Jan 2024 06:31:54 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48678
IP address blocks: 89.35.52.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 07 Oct 2024 08:14:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:df:1e:7d:fd:74:29:f9:7d:79:3f:c0:08:51:1a:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0b5a80a7106e0a4b8545c8150bb72c699fcc9a0
Validity
Not Before: Jan 2 06:31:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6da3278e4d1177195386e4160233c554878c4d03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:73:01:60:ae:5e:ce:c1:fe:3b:3c:fe:fc:e6:
da:5f:ba:80:c6:31:50:29:81:fc:65:a7:13:21:3f:
15:19:d6:ff:1a:b5:b8:fd:83:46:f0:63:f0:d0:a4:
40:f1:b7:c0:47:a9:b0:77:42:16:74:0f:75:c7:dc:
9f:e9:06:6a:d6:45:a8:72:39:95:61:52:00:a7:db:
16:b7:10:00:3e:fd:ed:cb:cc:83:03:e6:7a:1c:0f:
03:83:e7:c8:98:bb:2a:30:c1:68:e2:5b:93:f9:34:
a1:fc:8b:10:c1:56:4f:31:bd:c8:0e:85:ae:c6:ea:
1d:3f:11:b8:63:c9:fc:a2:38:95:82:a8:c3:ea:17:
20:74:44:36:f4:56:c3:ac:a8:2f:52:a8:fb:14:26:
1a:6d:dd:75:c3:b9:30:80:e6:dd:4b:91:92:6a:78:
26:3e:e8:63:03:9b:ec:52:aa:2e:e3:f2:58:57:ff:
05:49:25:03:b3:fb:c8:f1:21:86:0b:03:e8:7f:9a:
9a:a4:f6:db:09:cd:57:65:1c:d9:96:e3:e1:4b:ce:
d9:d8:54:43:88:ed:90:d8:d7:bb:a7:9b:49:65:fa:
43:a0:e5:ab:33:fb:8a:fb:ef:6c:d0:fd:6e:c4:6b:
43:36:67:0c:97:22:fb:75:58:5e:2b:bb:8c:f0:8d:
af:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:A3:27:8E:4D:11:77:19:53:86:E4:16:02:33:C5:54:87:8C:4D:03
X509v3 Authority Key Identifier:
keyid:B0:B5:A8:0A:71:06:E0:A4:B8:54:5C:81:50:BB:72:C6:99:FC:C9:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sLWoCnEG4KS4VFyBULtyxpn8yaA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/f153dc-cbfb-4a4f-80d2-745e08fe58c6/1/baMnjk0RdxlThuQWAjPFVIeMTQM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/f153dc-cbfb-4a4f-80d2-745e08fe58c6/1/sLWoCnEG4KS4VFyBULtyxpn8yaA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.35.52.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:4f:3f:62:8e:7b:51:8c:24:14:38:54:9a:64:ad:d0:60:0c:
7f:4e:7a:4f:db:64:b7:be:85:1b:95:45:fd:5a:9b:70:47:d5:
9f:53:16:f5:26:53:ee:f8:dd:3e:31:a4:20:ed:bf:81:41:61:
ba:1c:18:31:d6:fe:d6:bb:6d:02:2c:58:a9:f8:80:d1:8e:86:
a1:4d:bd:7e:00:8a:9b:6c:75:54:00:7d:27:00:1a:6c:db:8e:
37:55:8d:f1:36:41:be:22:1c:64:09:29:95:70:d1:2c:a3:2d:
73:79:8b:e8:94:2c:8f:68:79:99:2f:24:08:d9:4d:de:8c:f7:
87:6e:d8:c2:ea:e0:93:ac:e1:b6:95:95:08:91:21:7f:b1:f8:
b1:18:83:ac:fd:cb:36:38:3c:07:93:b7:bb:d7:b4:ae:dc:56:
31:8c:e0:da:d1:35:98:cc:14:3a:91:ad:97:1e:bb:4f:44:83:
47:b4:95:b0:e3:48:a4:6f:ba:2d:06:6f:db:34:28:fb:56:7a:
6d:5c:26:b0:bf:87:fd:e2:9d:1c:c3:e3:21:71:c9:51:9a:10:
a7:12:7b:ec:53:a7:75:b8:b3:e9:60:30:13:68:ef:a4:28:81:
e0:ee:fb:27:19:08:2d:e7:60:fe:42:ef:50:95:a2:9f:7b:73:
85:79:a4:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 7 10:52:31 2024 by rpki-client on console-ams.rpki-client.org