Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/1tOiARwjVsN50cziQ5fSbtUxFdQ.roa
File: 1tOiARwjVsN50cziQ5fSbtUxFdQ.roa (raw, json)
Hash identifier: 9zz7wPmAPD9lUXdoQtHmyeQn6W+45lqNOqfnAr5JpL4=
Subject key identifier: D6:D3:A2:01:1C:23:56:C3:79:D1:CC:E2:43:97:D2:6E:D5:31:15:D4
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 018570672DFB37CD47012F5F82C634B1AEE5
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/1tOiARwjVsN50cziQ5fSbtUxFdQ.roa
Signing time: Mon 02 Jan 2023 02:54:48 +0000
ROA not before: Mon 02 Jan 2023 02:54:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 63023
IP address blocks: 89.185.24.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 20 Jun 2023 08:28:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:67:2d:fb:37:cd:47:01:2f:5f:82:c6:34:b1:ae:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: Jan 2 02:54:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d6d3a2011c2356c379d1cce24397d26ed53115d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:cb:bb:5d:8a:de:83:02:a9:d0:85:f3:e8:25:
f8:bc:d0:15:94:ea:a1:cf:3b:6c:8b:9a:50:de:f6:
fa:0f:c9:b1:d6:09:f8:2e:70:2d:d8:09:8b:bf:af:
da:ab:21:e2:39:72:e9:7b:c6:71:c5:e1:43:06:db:
8d:64:0f:e9:bb:af:33:6e:51:4d:39:73:c0:f4:61:
ff:05:ab:b8:ff:15:02:a3:95:7c:ee:8f:56:4b:73:
b1:37:3b:35:ae:12:aa:23:15:1e:98:bc:fd:d4:20:
f3:6d:78:7b:71:c7:93:eb:49:69:5d:8f:03:00:cb:
d2:49:e4:e3:3a:2f:cd:83:8c:6d:d6:bf:2c:35:3a:
d4:11:9a:00:c3:c5:72:33:e6:b8:a6:3a:94:b1:24:
38:2a:97:a8:e4:fe:17:fa:54:2b:db:f1:5f:c4:4b:
66:89:1e:b0:e7:45:4f:b4:2d:cd:8f:02:fd:0f:76:
bf:61:99:11:07:ae:68:e8:d1:54:91:f0:b9:6c:a5:
24:98:e4:5b:86:0b:60:c4:99:b7:81:c3:b9:90:1e:
0a:e1:a8:ec:5e:28:af:2b:ee:d5:5a:13:18:11:14:
01:31:9e:b5:66:fa:79:9b:f3:0e:87:d7:6c:4b:3a:
83:1d:2d:14:fb:c7:59:21:fa:d7:23:00:fe:24:7b:
19:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:D3:A2:01:1C:23:56:C3:79:D1:CC:E2:43:97:D2:6E:D5:31:15:D4
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/1tOiARwjVsN50cziQ5fSbtUxFdQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.185.24.0/22
Signature Algorithm: sha256WithRSAEncryption
6c:b3:92:9d:ac:16:3e:e4:8c:0a:c6:12:45:50:96:e4:7b:af:
6a:b6:4d:3f:19:c7:3f:ee:c8:65:e2:17:78:7b:04:b5:5a:18:
57:c0:3f:17:a6:8c:9f:30:6d:a2:42:a7:48:f3:4b:ca:8c:21:
da:76:7c:9f:3a:a2:27:a2:88:3b:fd:b4:08:51:ce:5a:0c:49:
31:19:29:2e:62:c6:e7:bb:e1:52:59:0a:68:a1:dc:e7:09:61:
9b:0e:aa:d4:58:3e:73:dc:70:cd:52:1f:8e:eb:78:f8:11:be:
a1:0e:cb:11:a0:4e:ac:82:e5:b1:48:1c:89:d7:2b:2b:7a:fc:
de:e7:00:e5:29:23:12:4e:14:a2:44:f9:48:bb:b2:20:b6:1c:
25:61:ff:b1:34:5a:c0:e8:9a:24:a9:dc:57:c5:4b:93:d5:15:
37:a7:c1:5a:7d:42:8a:37:b2:ee:09:61:ff:a3:83:48:5c:cf:
75:be:1e:b0:59:d8:9c:45:15:a8:2c:b0:fa:f8:01:6b:07:3e:
99:f2:80:35:7d:1e:f7:ab:7c:43:2e:b7:b8:02:1f:7d:3c:10:
de:88:33:0a:af:ba:71:a3:87:4a:fa:2f:25:c0:ca:32:09:7e:
59:e3:41:8a:4e:53:2a:4d:c8:8c:e2:17:8b:24:11:ba:79:79:
3b:f6:ec:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:45 2024 by rpki-client on console-ams.rpki-client.org