Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/uR4SzEccavJF5-DU2o2hMjsI2ts.roa
File: uR4SzEccavJF5-DU2o2hMjsI2ts.roa (raw, json)
Hash identifier: cqdy7FnQHyJtSKstuqRcyucCOldKPdsun/EPAwMmI9k=
Subject key identifier: B9:1E:12:CC:47:1C:6A:F2:45:E7:E0:D4:DA:8D:A1:32:3B:08:DA:DB
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018F189250AF14AAB24495660FF657E9DE36
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/uR4SzEccavJF5-DU2o2hMjsI2ts.roa
Signing time: Fri 26 Apr 2024 04:03:13 +0000
ROA not before: Fri 26 Apr 2024 04:03:13 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57271
IP address blocks: 89.36.140.0/24 maxlen: 24
93.115.203.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 26 Apr 2024 04:04:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:18:92:50:af:14:aa:b2:44:95:66:0f:f6:57:e9:de:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Apr 26 04:03:13 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b91e12cc471c6af245e7e0d4da8da1323b08dadb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:e2:f6:83:65:77:b0:6c:5d:ef:d1:ba:78:c6:
ad:fe:c7:66:78:a6:c7:2c:18:f2:3e:ce:be:21:e1:
bd:3f:29:c5:11:6c:1b:2e:d5:9b:e2:e5:9e:9d:7c:
38:1d:ef:b4:69:af:fb:3a:00:81:4b:32:4d:40:73:
ba:49:2f:e0:8d:56:6c:75:13:14:6a:87:dd:7a:d4:
c6:84:35:cb:15:05:03:14:b1:c9:5b:39:19:61:3b:
4c:f7:c5:0a:ec:34:fa:97:02:ff:10:d9:58:75:b0:
15:10:a0:01:26:a7:fe:9d:91:36:23:17:f2:0e:8a:
91:70:ff:15:a7:01:e7:0d:ae:ef:2d:c6:87:f2:dd:
70:6c:45:38:2a:98:5a:81:67:82:cb:92:e7:64:8e:
d4:3b:64:3c:c6:32:01:b9:a9:41:cb:84:e0:f9:a8:
59:d5:cc:75:93:4a:6b:70:df:f8:31:1d:84:d6:b9:
b5:75:20:53:a5:2c:25:32:4e:8b:19:69:06:eb:3d:
a8:8a:1c:cc:5b:08:a3:78:2a:c4:b9:db:2f:4c:22:
ad:d4:73:9f:41:79:31:d6:a3:53:93:f8:ad:80:1c:
d6:14:09:45:16:86:fb:ab:48:03:db:2d:49:73:bd:
87:66:c2:38:ae:e1:10:4d:e5:f7:28:52:bb:70:30:
bd:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:1E:12:CC:47:1C:6A:F2:45:E7:E0:D4:DA:8D:A1:32:3B:08:DA:DB
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/uR4SzEccavJF5-DU2o2hMjsI2ts.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.36.140.0/24
93.115.203.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:13:b0:48:7c:70:e6:6d:ec:58:64:f0:17:72:e1:e6:b9:ec:
23:52:f2:de:0d:af:cf:dd:d2:cc:8c:3c:fb:8f:14:39:62:86:
2a:80:46:51:90:d6:1d:73:f4:ab:d3:2b:6d:a4:ef:3b:df:70:
d6:40:c8:d8:9f:27:1c:52:de:ab:ff:bb:39:06:2c:e9:bb:2f:
9e:bd:6c:9b:63:3d:74:c1:e8:12:0b:d8:4a:9d:e0:2d:37:98:
2b:e0:7d:7b:a6:79:42:c2:b5:24:e0:d5:9b:00:6f:f2:10:dc:
81:36:9f:6c:15:a6:7c:99:b4:ee:96:85:ac:15:80:de:3c:bf:
50:e7:40:e8:5e:84:3d:03:27:c6:91:45:96:c7:63:f6:52:da:
8a:a7:b7:f4:27:4b:ce:80:7c:34:f5:c9:6c:03:97:3d:ae:fb:
e8:4e:e7:8f:c6:bc:a9:71:71:b8:d9:eb:39:9d:e1:f0:4d:eb:
63:ae:50:d2:39:9b:ca:2a:47:ab:fa:a0:d0:38:47:58:01:42:
df:a5:45:95:85:f0:6e:a3:35:2e:a1:3d:c2:61:c5:f1:be:4c:
02:a0:8c:08:f6:21:ea:49:a9:e0:d5:94:c8:47:8d:0b:9e:ed:
f7:ad:67:94:fc:03:90:72:1e:b1:f4:8e:f2:5e:89:c6:76:06:
db:61:49:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 11:11:42 2024 by rpki-client on console.sobornost.net