Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/7OiWytueCeVvhoJ9TyUzUy1Cwwc.roa
File: 7OiWytueCeVvhoJ9TyUzUy1Cwwc.roa (raw, json)
Hash identifier: coTa167rIekATB7tLC2tl3e2bnfI+wbLUVCE4pFmzKc=
Subject key identifier: EC:E8:96:CA:DB:9E:09:E5:6F:86:82:7D:4F:25:33:53:2D:42:C3:07
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 018A5CA7F0E8CEE09F5FD30624A60F129F98
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/7OiWytueCeVvhoJ9TyUzUy1Cwwc.roa
Signing time: Sun 03 Sep 2023 20:07:04 +0000
ROA not before: Sun 03 Sep 2023 20:07:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203790
IP address blocks: 89.185.0.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 15 Sep 2023 13:54:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:5c:a7:f0:e8:ce:e0:9f:5f:d3:06:24:a6:0f:12:9f:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: Sep 3 20:07:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ece896cadb9e09e56f86827d4f2533532d42c307
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:18:e4:85:33:a6:33:34:df:dc:6d:0b:43:6d:
38:c4:d3:81:7e:aa:47:59:bf:0e:5f:ab:d6:d4:ff:
c9:e9:ba:29:6c:36:22:b8:c3:fc:f0:81:71:56:5f:
a3:b7:d8:6f:01:8a:06:83:b2:8a:5b:6d:af:c0:97:
61:5b:20:a1:33:a5:7a:32:74:fe:2c:f1:b6:42:5c:
83:d7:65:e7:30:1b:07:42:41:7c:81:84:0a:bb:29:
4b:9e:33:f7:74:22:b7:f7:e8:48:30:03:37:44:1c:
5d:65:e4:7b:0c:d4:78:95:1d:02:a3:76:6e:f6:d4:
7f:1e:80:b7:bf:b7:30:2c:cc:ac:7e:db:a0:2c:b4:
c0:f1:2f:ea:91:5f:45:b5:6a:e9:8c:f6:93:e9:30:
37:e3:3f:0e:25:bd:c3:f8:22:1b:5a:55:38:10:d2:
99:5d:18:20:96:db:17:59:bb:76:6d:0e:38:f3:92:
81:28:13:69:3f:9a:1b:ca:0e:dd:b6:c2:7c:6e:a6:
f8:9b:c0:ea:eb:f3:5e:0d:8c:b7:39:3a:90:d4:7e:
a7:69:15:5b:88:40:f4:83:af:e9:11:20:85:a0:e5:
2a:f5:4f:2a:a0:cc:75:fc:82:d4:ac:2c:6b:ed:d2:
fb:8b:db:a3:85:d8:84:1e:35:ec:03:a6:31:fb:5f:
8c:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:E8:96:CA:DB:9E:09:E5:6F:86:82:7D:4F:25:33:53:2D:42:C3:07
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/7OiWytueCeVvhoJ9TyUzUy1Cwwc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.185.0.0/24
Signature Algorithm: sha256WithRSAEncryption
30:3f:d2:ad:ba:aa:c7:69:6d:a2:3a:a9:5c:b3:30:6f:ae:86:
dd:a3:57:30:f6:15:89:dc:7b:22:d7:d6:91:57:56:14:26:25:
2d:02:46:c6:4a:5a:0f:fc:d4:ad:fb:b5:24:d9:5a:22:c7:fa:
7d:87:cd:eb:3a:33:98:02:e4:b4:41:33:7d:f7:9f:55:d0:2c:
b8:c7:39:d6:a4:f7:95:f2:72:c9:02:23:88:b9:43:94:8b:5b:
18:78:d3:2a:ed:fd:c8:18:07:ce:78:db:c0:1f:e0:d1:1b:49:
53:77:3c:e6:b3:e6:f3:72:73:67:b6:94:e2:d7:36:3a:51:29:
d9:4c:9f:2f:81:f9:c1:22:b1:62:25:5f:08:97:7a:95:11:aa:
7d:45:86:d7:51:1a:8e:96:74:79:00:3e:14:d4:0d:57:56:78:
e1:3e:48:08:fc:ac:77:d5:57:bd:a2:d1:81:2d:75:dd:ac:0d:
d6:55:7c:3d:5e:9a:05:14:6a:ec:85:d0:9c:84:5e:0e:8a:66:
4b:bf:5f:ce:fc:9e:d5:2e:d2:3d:ec:18:fb:62:71:46:bc:9a:
ce:4f:e2:aa:5d:d8:e9:2a:a3:f6:57:73:c3:c2:b1:3d:67:3a:
fc:ac:ca:28:b4:a7:07:94:87:3b:d0:24:02:00:e2:9c:4d:29:
4e:c0:04:1a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYpcp/DozuCfX9MGJKYPEp+YMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk4MmNmODA5YzBlM2U4ZTU1NTJmOWQwZGQyZTI3ZTBkZDJk
OGRhYmUwHhcNMjMwOTAzMjAwNzA0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlY2U4OTZjYWRiOWUwOWU1NmY4NjgyN2Q0ZjI1MzM1MzJkNDJjMzA3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3hjkhTOmMzTf3G0LQ204xNOBfqpH
Wb8OX6vW1P/J6bopbDYiuMP88IFxVl+jt9hvAYoGg7KKW22vwJdhWyChM6V6MnT+
LPG2QlyD12XnMBsHQkF8gYQKuylLnjP3dCK39+hIMAM3RBxdZeR7DNR4lR0Co3Zu
9tR/HoC3v7cwLMysftugLLTA8S/qkV9FtWrpjPaT6TA34z8OJb3D+CIbWlU4ENKZ
XRggltsXWbt2bQ4485KBKBNpP5obyg7dtsJ8bqb4m8Dq6/NeDYy3OTqQ1H6naRVb
iED0g6/pESCFoOUq9U8qoMx1/ILUrCxr7dL7i9ujhdiEHjXsA6Yx+1+MnQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOzolsrbngnlb4aCfU8lM1MtQsMHMB8GA1UdIwQY
MBaAFJgs+AnA4+jlVS+dDdLifg3S2Nq+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbUN6NENjRGo2T1ZWTDUwTjB1Si1EZExZMnI0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC82MTY4ZDctOTQ2Yy00NTc0LTkxZWEt
ODJhZDE0NTU1ZWFhLzEvN09pV3l0dWVDZVZ2aG9KOVR5VXpVeTFDd3djLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZC82MTY4ZDctOTQ2Yy00NTc0LTkxZWEtODJhZDE0NTU1ZWFh
LzEvbUN6NENjRGo2T1ZWTDUwTjB1Si1EZExZMnI0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWbkAMA0G
CSqGSIb3DQEBCwUAA4IBAQAwP9KtuqrHaW2iOqlcszBvrobdo1cw9hWJ3Hsi19aR
V1YUJiUtAkbGSloP/NSt+7Uk2Voix/p9h83rOjOYAuS0QTN9959V0Cy4xznWpPeV
8nLJAiOIuUOUi1sYeNMq7f3IGAfOeNvAH+DRG0lTdzzms+bzcnNntpTi1zY6USnZ
TJ8vgfnBIrFiJV8Il3qVEap9RYbXURqOlnR5AD4U1A1XVnjhPkgI/Kx31Ve9otGB
LXXdrA3WVXw9XpoFFGrshdCchF4OimZLv1/O/J7VLtI97Bj7YnFGvJrOT+KqXdjp
KqP2V3PDwrE9Zzr8rMootKcHlIc70CQCAOKcTSlOwAQa
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:15 2024 by rpki-client on console-fra.rpki-client.org