Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/75785f-0e82-4d46-8456-759ac50414de/1/z413PDcNqU5Wcra9JJLJj-93eSc.roa
File: z413PDcNqU5Wcra9JJLJj-93eSc.roa (raw, json)
Hash identifier: J7JDV40ZtGJcYjefRZj14wbOIQnyz2uoem7XN3HlJ6M=
Subject key identifier: CF:8D:77:3C:37:0D:A9:4E:56:72:B6:BD:24:92:C9:8F:EF:77:79:27
Certificate issuer: /CN=4a4b17d032b9fb5f7e5bc9fd268dfb80edeed21d
Certificate serial: 01856F4B7D4665B474FFF086ADF84EEF15B3
Authority key identifier: 4A:4B:17:D0:32:B9:FB:5F:7E:5B:C9:FD:26:8D:FB:80:ED:EE:D2:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SksX0DK5-19-W8n9Jo37gO3u0h0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/75785f-0e82-4d46-8456-759ac50414de/1/z413PDcNqU5Wcra9JJLJj-93eSc.roa
Signing time: Sun 01 Jan 2023 21:44:56 +0000
ROA not before: Sun 01 Jan 2023 21:44:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210150
IP address blocks: 152.89.184.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:4b:7d:46:65:b4:74:ff:f0:86:ad:f8:4e:ef:15:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a4b17d032b9fb5f7e5bc9fd268dfb80edeed21d
Validity
Not Before: Jan 1 21:44:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cf8d773c370da94e5672b6bd2492c98fef777927
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:27:93:0e:78:fd:fc:f4:42:c5:ae:d9:6f:80:
07:3b:5d:32:61:8d:4d:24:5b:06:58:48:9a:82:33:
32:ae:e6:81:94:49:f2:f5:a8:68:64:df:e4:c3:e2:
83:56:c1:17:42:1b:fc:9d:34:4b:4a:56:6d:d0:23:
36:4d:1c:57:a9:82:b8:18:c4:29:0e:a7:de:04:22:
e3:59:06:d2:4d:4e:9f:37:5d:1c:18:fa:bf:dc:ee:
60:cc:8d:fd:ec:70:71:2b:2e:74:e7:a2:7a:21:72:
c9:37:7f:96:d7:d2:9e:8d:91:3e:50:84:12:12:ee:
da:81:f7:95:80:76:24:65:b2:07:b9:d6:85:7a:d4:
31:8c:f9:23:f8:b1:9d:3e:97:61:08:72:6c:cf:a1:
e2:6c:57:0c:28:0c:da:1b:20:64:b7:00:08:28:6d:
bc:6a:b6:7c:ff:92:ef:59:87:3f:a9:86:74:f8:36:
16:32:f1:c8:86:94:08:da:a8:ac:0a:c5:e3:03:53:
f3:ee:76:e7:52:88:89:70:91:d8:61:be:e5:56:01:
ba:01:a5:50:98:54:15:79:a5:ac:52:7c:47:c8:b6:
f7:26:52:5a:f2:47:0e:b6:c5:fa:3b:d6:98:4a:bd:
fe:c7:bc:55:36:1a:97:19:d4:24:09:c1:01:44:f3:
22:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:8D:77:3C:37:0D:A9:4E:56:72:B6:BD:24:92:C9:8F:EF:77:79:27
X509v3 Authority Key Identifier:
keyid:4A:4B:17:D0:32:B9:FB:5F:7E:5B:C9:FD:26:8D:FB:80:ED:EE:D2:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SksX0DK5-19-W8n9Jo37gO3u0h0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/75785f-0e82-4d46-8456-759ac50414de/1/z413PDcNqU5Wcra9JJLJj-93eSc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/75785f-0e82-4d46-8456-759ac50414de/1/SksX0DK5-19-W8n9Jo37gO3u0h0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
152.89.184.0/22
Signature Algorithm: sha256WithRSAEncryption
5c:06:b6:0e:59:a9:84:32:0f:6e:b5:71:27:5e:6e:51:e0:38:
7c:f2:3d:14:ec:fb:70:87:db:4a:5c:f9:8d:0b:0d:3e:a7:6b:
76:84:4d:b1:98:2c:16:70:eb:14:4e:d6:4b:27:96:5a:32:d8:
2f:09:ff:b2:d3:25:3c:b2:b0:29:2c:7b:5b:d4:f4:62:36:f0:
89:89:9f:de:18:02:8e:7c:5f:f3:1d:95:8b:0c:e5:a2:b2:97:
1b:96:db:ed:f6:46:11:0a:25:09:53:43:56:57:ad:82:e7:66:
88:62:7b:9c:b9:b4:a5:ec:3d:81:ff:9c:37:33:37:44:99:1c:
7e:8c:20:1c:1b:0b:6b:f1:aa:9a:81:99:03:5e:5c:a1:43:db:
cc:ee:85:bd:93:ca:99:ef:93:82:75:08:02:98:3c:34:78:bb:
01:db:04:d3:e0:b6:1a:8b:87:a8:58:02:88:71:a9:fb:a7:51:
21:29:c6:84:dd:31:a2:e8:7a:be:da:28:f2:f5:a4:a2:48:9a:
3e:f0:0f:44:56:1c:b1:04:18:c9:78:b7:2d:81:38:0b:85:45:
41:52:f1:46:42:1f:c9:6c:c4:48:fb:9f:56:b2:78:be:dc:e6:
b4:d2:7e:af:71:a9:83:5d:f6:fc:9c:e2:0f:f5:75:0d:c3:3a:
03:ce:a4:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:21 2024 by rpki-client on console-fra.rpki-client.org