Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/75UhlIj5LkMLopqqcEhJlBt6da4.roa
File: 75UhlIj5LkMLopqqcEhJlBt6da4.roa (raw, json)
Hash identifier: R+me5R+SUYIdIhJiVnSpknB3gWoXJ1CxakRHhrRw/W4=
Subject key identifier: EF:95:21:94:88:F9:2E:43:0B:A2:9A:AA:70:48:49:94:1B:7A:75:AE
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 018A37B146456940633B1DB5C3E28ACD2DFE
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/75UhlIj5LkMLopqqcEhJlBt6da4.roa
Signing time: Sun 27 Aug 2023 15:51:19 +0000
ROA not before: Sun 27 Aug 2023 15:51:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 109.72.116.0/22 maxlen: 24
89.185.0.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 04 Sep 2023 17:28:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:37:b1:46:45:69:40:63:3b:1d:b5:c3:e2:8a:cd:2d:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: Aug 27 15:51:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ef95219488f92e430ba29aaa704849941b7a75ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:8e:f9:44:9d:2c:f8:4d:bc:bf:16:f7:a4:29:
84:5a:22:e3:7c:3d:b2:0d:4d:68:80:ea:9b:0b:25:
a7:63:59:bc:e9:8c:88:d9:b4:c4:67:8c:25:5d:55:
6b:a1:22:85:d8:5d:47:89:3b:85:56:a9:fa:5a:ef:
6f:7b:31:0e:2e:6e:84:74:ae:7c:91:c4:7b:c0:72:
3a:15:73:77:f0:62:b8:af:ae:85:d1:f4:bb:ac:75:
54:7b:57:c4:8a:c7:76:6b:0e:ca:63:09:f7:00:c2:
64:b6:66:d7:2a:84:97:45:6b:79:fd:87:00:c8:45:
52:c5:c0:05:9b:bb:f4:9a:76:74:d9:17:c4:80:4e:
38:ab:9d:02:9c:f6:63:54:c0:fa:0a:54:21:6c:6c:
b2:55:94:57:86:15:77:29:b5:ec:51:e2:8f:0a:42:
5a:87:c1:da:6c:8d:3e:c5:9d:94:b6:de:05:05:be:
a3:61:49:e2:a4:2a:2e:5a:d3:8c:7c:51:ce:08:7b:
f8:68:be:86:db:11:99:2a:e5:14:de:c2:19:b4:84:
07:c2:b4:cf:a2:f0:5b:4a:12:da:23:04:8b:81:9b:
dc:09:ed:1e:4d:57:a9:05:e3:f6:aa:2b:b4:18:ae:
d6:24:c2:e1:43:2b:e9:97:99:58:52:e8:fe:19:81:
93:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:95:21:94:88:F9:2E:43:0B:A2:9A:AA:70:48:49:94:1B:7A:75:AE
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/75UhlIj5LkMLopqqcEhJlBt6da4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.185.0.0/22
109.72.116.0/22
Signature Algorithm: sha256WithRSAEncryption
91:90:31:f6:9a:15:83:2e:ec:11:06:74:af:05:44:ba:f8:49:
a3:e2:f5:90:49:8f:7e:5a:46:f4:43:55:2a:b9:b7:22:91:09:
95:17:17:1f:12:52:9d:e8:ed:b0:a5:56:66:97:13:b5:75:96:
0f:29:2d:44:5f:45:2a:c5:5a:5d:0c:47:3d:a8:35:8d:92:04:
1a:0e:54:b3:e3:a2:64:4c:87:32:dd:63:63:52:d8:83:46:10:
76:e2:c9:e9:49:ab:8e:c0:67:88:44:1d:80:38:3c:cb:17:b5:
7c:12:71:f5:99:fa:11:de:bb:50:e0:35:c4:8d:77:3a:40:11:
6e:80:a2:9c:b6:1f:12:80:53:ad:e5:b0:58:24:af:90:b9:04:
b0:88:38:f3:78:b0:ad:6d:b5:a2:35:39:35:f5:f8:4a:7a:70:
3e:79:1d:15:62:66:f8:51:1b:3d:82:78:d0:72:43:10:88:0a:
8f:7f:6d:21:5d:51:9d:5d:35:35:a1:b1:28:7c:eb:a8:2a:d7:
e8:65:a5:c4:3e:d7:7d:f1:b9:1f:f9:0a:29:b7:31:46:71:33:
33:ea:db:07:3f:14:98:74:fc:08:a7:2a:4d:66:da:0b:c0:9a:
bb:e5:8b:3c:fa:ea:93:29:33:e4:af:49:b5:17:62:36:cd:8c:
cf:ab:db:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:15 2024 by rpki-client on console-fra.rpki-client.org