Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/UpfeQ0zMxAgPIkcXoGQQrOe65Jc.roa
File: UpfeQ0zMxAgPIkcXoGQQrOe65Jc.roa (raw, json)
Hash identifier: m1TjuZPH02T+uFX/Ub7z1JvIEKenlMKCJ8eS/yeJMGI=
Subject key identifier: 52:97:DE:43:4C:CC:C4:08:0F:22:47:17:A0:64:10:AC:E7:BA:E4:97
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 018773DE6B2A04C655797828D8F9918D0E04
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/UpfeQ0zMxAgPIkcXoGQQrOe65Jc.roa
Signing time: Wed 12 Apr 2023 05:09:28 +0000
ROA not before: Wed 12 Apr 2023 05:09:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 135752
IP address blocks: 89.40.160.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 22 Jun 2023 06:58:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:73:de:6b:2a:04:c6:55:79:78:28:d8:f9:91:8d:0e:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Apr 12 05:09:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5297de434cccc4080f224717a06410ace7bae497
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:64:4d:5a:6b:c4:1f:87:8f:9e:3f:41:49:47:
7b:99:36:46:47:e7:49:ec:f2:8b:c9:c4:c1:13:d4:
bf:cb:33:54:1d:58:60:90:a7:f0:fe:4f:db:ea:6c:
cd:7e:05:2c:5c:8d:78:13:fb:f9:0e:ba:ed:de:ea:
b2:11:8d:b8:3c:ee:a6:3f:b6:5b:ca:c1:fb:d1:a4:
0d:ed:ff:ba:be:6d:e9:82:73:1e:67:87:23:a1:86:
87:34:de:47:48:af:b0:2a:70:19:7e:6a:08:e0:1d:
c4:0f:b7:7b:4c:ad:4f:53:fc:78:b4:0c:a1:7a:2c:
3a:fb:bb:c0:8c:a5:98:db:79:43:43:9b:e7:9d:8f:
1d:a7:93:70:fb:38:52:7e:d1:73:8e:60:85:5f:a3:
75:cd:cf:d4:ff:c3:67:8a:90:7f:e8:41:03:5b:5d:
06:45:07:8d:38:43:73:fb:d0:5e:c7:95:21:a0:3d:
62:6e:ba:1f:04:19:0e:d9:be:3d:82:a9:79:ef:16:
5a:65:2a:e6:91:14:85:1a:15:6d:cf:1c:2b:00:c3:
14:a0:f8:b3:06:ee:57:55:46:34:6a:c1:69:bb:fa:
3a:87:8c:18:02:68:c9:bc:63:77:36:6c:b2:42:51:
bf:f1:85:2f:61:a5:77:91:d8:ce:48:a2:a3:bc:b5:
65:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:97:DE:43:4C:CC:C4:08:0F:22:47:17:A0:64:10:AC:E7:BA:E4:97
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/UpfeQ0zMxAgPIkcXoGQQrOe65Jc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.40.160.0/24
Signature Algorithm: sha256WithRSAEncryption
02:48:19:2c:8a:ff:db:24:d1:3f:43:87:99:30:72:60:3b:1d:
35:7f:63:35:7b:48:fe:03:8f:98:50:17:49:1b:ba:09:b7:cc:
03:55:02:19:76:f0:59:e1:28:2b:4b:94:bb:53:da:60:76:06:
6b:2c:02:8a:9d:d9:cb:90:1e:80:6a:83:d1:15:54:b1:99:67:
a8:fc:7f:4d:28:74:0f:9a:7c:d9:3b:36:b1:6a:c9:b6:d6:bc:
b4:e7:4e:88:1c:73:d2:e5:95:53:df:ee:67:6b:50:fe:d6:d8:
a8:77:00:3e:b1:25:fb:2a:e4:0f:ca:60:3c:76:4a:64:be:70:
f1:a4:95:5e:5d:3f:3e:e2:a9:c8:93:68:83:56:55:3b:2c:68:
2e:55:f5:7d:86:ca:3f:de:83:3c:44:06:7a:18:d1:39:3b:25:
07:72:ca:56:1c:a6:9e:1d:4d:cc:98:8a:2e:4c:57:38:48:a6:
ce:fc:1e:80:70:5d:e9:8e:3b:37:f1:b0:46:94:6f:ee:35:02:
8e:50:e4:ff:c2:11:d7:ad:25:a9:46:59:10:1d:0e:4b:fc:04:
a5:4a:70:ab:55:c9:13:59:79:a1:df:56:24:35:a0:2c:4a:e0:
7b:15:2b:77:0d:7d:44:14:2a:71:e8:f5:0c:36:0c:3e:b9:76:
87:a0:47:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:46 2024 by rpki-client on console-fra.rpki-client.org