Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/8b07cd-0ced-4afc-8d02-972a4c3dc3f3/1/TdFj4Ho6-KEkKe8oCZ4qxaA04ZU.roa
File: TdFj4Ho6-KEkKe8oCZ4qxaA04ZU.roa (raw, json)
Hash identifier: ZMH8uc7nOeoD1dvmWvF/3544BDWKoKz4SEezZmdP2pk=
Subject key identifier: 4D:D1:63:E0:7A:3A:F8:A1:24:29:EF:28:09:9E:2A:C5:A0:34:E1:95
Certificate issuer: /CN=53b62ace615b906b42ab27f4fb1d203df36d5436
Certificate serial: 018B3D1FF57EEFC9C5F24EB36F43F60DF161
Authority key identifier: 53:B6:2A:CE:61:5B:90:6B:42:AB:27:F4:FB:1D:20:3D:F3:6D:54:36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U7YqzmFbkGtCqyf0-x0gPfNtVDY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/8b07cd-0ced-4afc-8d02-972a4c3dc3f3/1/TdFj4Ho6-KEkKe8oCZ4qxaA04ZU.roa
Signing time: Tue 17 Oct 2023 10:13:06 +0000
ROA not before: Tue 17 Oct 2023 10:13:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8860
IP address blocks: 89.187.83.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:33:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:3d:1f:f5:7e:ef:c9:c5:f2:4e:b3:6f:43:f6:0d:f1:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53b62ace615b906b42ab27f4fb1d203df36d5436
Validity
Not Before: Oct 17 10:13:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4dd163e07a3af8a12429ef28099e2ac5a034e195
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:60:83:77:8c:91:64:4a:04:55:a8:a4:63:1e:
26:b0:37:7d:b8:d9:e7:03:b2:5a:67:e4:5b:35:30:
69:f7:aa:72:e4:ee:f0:1e:3e:a7:8f:57:86:e0:a5:
1d:78:d1:24:21:d4:25:74:bc:ed:5e:44:19:27:8f:
08:fe:50:9a:19:06:79:aa:0c:a8:05:af:4e:ff:d4:
ea:a1:04:63:18:42:e0:b6:4f:9d:ef:7d:45:33:88:
b1:ad:a5:15:7e:f7:8a:9a:89:26:12:e3:6f:0b:fd:
8e:4e:37:61:a6:be:e6:9d:c1:a4:b2:c5:7e:df:0a:
52:9a:4c:c4:94:1a:6f:10:61:e0:37:dd:1e:41:78:
6b:3f:03:4f:1f:4e:48:f5:e6:28:fd:d5:89:06:d0:
d3:19:ed:60:76:4d:01:31:81:24:8b:e8:fd:4a:65:
b6:79:fd:3a:38:79:23:fa:63:00:a8:1d:c1:57:2e:
ee:af:fc:63:f7:ba:65:be:50:1c:4a:18:21:ee:aa:
11:d5:cf:e3:0f:59:99:85:a3:f4:b2:ee:64:5c:b7:
0c:42:f7:6e:35:3d:9c:f2:3d:f1:9f:89:f1:90:9a:
d2:72:a6:5e:38:54:82:d0:17:64:2f:4a:c7:ae:c3:
b4:2f:18:13:33:11:97:98:d1:94:79:1b:d8:aa:6e:
7a:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:D1:63:E0:7A:3A:F8:A1:24:29:EF:28:09:9E:2A:C5:A0:34:E1:95
X509v3 Authority Key Identifier:
keyid:53:B6:2A:CE:61:5B:90:6B:42:AB:27:F4:FB:1D:20:3D:F3:6D:54:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U7YqzmFbkGtCqyf0-x0gPfNtVDY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/8b07cd-0ced-4afc-8d02-972a4c3dc3f3/1/TdFj4Ho6-KEkKe8oCZ4qxaA04ZU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/8b07cd-0ced-4afc-8d02-972a4c3dc3f3/1/U7YqzmFbkGtCqyf0-x0gPfNtVDY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.187.83.0/24
Signature Algorithm: sha256WithRSAEncryption
35:d5:13:6d:25:fe:da:7a:26:6c:57:14:4f:09:34:23:38:6d:
d5:5f:50:e3:ec:50:80:b5:7d:7d:bb:df:3e:18:93:66:be:15:
7a:c7:cd:6c:ae:44:b3:89:a8:cd:9a:b8:7d:84:7b:14:03:e1:
72:84:e5:1d:40:ec:84:1c:53:2d:98:a3:62:b3:08:3a:2f:ca:
65:5d:43:23:61:32:91:40:c2:a4:39:fe:cb:01:ca:3e:7b:a8:
f3:3d:97:91:4d:2c:53:c1:a5:46:8f:2e:0f:86:05:39:18:64:
94:ad:1f:ff:64:03:8c:ff:61:51:45:bd:b6:4b:41:00:e5:6a:
be:0c:12:76:9d:cd:62:56:06:c8:59:8d:48:06:fc:e3:95:8f:
e0:25:e1:c6:f3:68:a3:cf:c5:a6:2d:9f:f9:fe:55:c9:c5:c5:
c5:47:99:0c:69:28:9c:da:dd:03:e3:db:bf:fa:a9:81:18:eb:
c9:97:52:f7:c8:aa:10:06:81:53:bb:ae:97:27:1b:34:7c:5c:
df:6f:03:a4:e1:03:f8:89:fc:21:bf:98:40:8a:6b:73:45:a1:
15:06:96:81:72:be:d7:7d:61:c0:6f:66:b2:1b:03:8f:89:24:
37:19:22:2a:f7:cb:06:bc:e8:ef:31:ea:81:ba:13:33:60:3d:
f5:f5:b0:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:26:15 2024 by rpki-client on console-ams.rpki-client.org