Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/B2DIuTQOwXpK-DFSO152Mmu7qTE.roa
File: B2DIuTQOwXpK-DFSO152Mmu7qTE.roa (raw, json)
Hash identifier: vIUUgxqF+0shB7EH9k4ry+EivuP+2qYkMhOEleElSO8=
Subject key identifier: 07:60:C8:B9:34:0E:C1:7A:4A:F8:31:52:3B:5E:76:32:6B:BB:A9:31
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 0187FCC7407B86ACD217E43674754D7B5978
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/B2DIuTQOwXpK-DFSO152Mmu7qTE.roa
Signing time: Mon 08 May 2023 19:12:09 +0000
ROA not before: Mon 08 May 2023 19:12:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198652
IP address blocks: 89.185.2.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 03 Jul 2023 11:48:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:fc:c7:40:7b:86:ac:d2:17:e4:36:74:75:4d:7b:59:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: May 8 19:12:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0760c8b9340ec17a4af831523b5e76326bbba931
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:af:f2:f3:1f:47:5b:fd:ed:a5:52:b3:c6:b9:
9b:d2:e0:d9:fb:7e:68:7b:ce:de:c6:99:68:b4:92:
b1:7a:61:3a:a4:4e:e6:4c:b4:80:a1:24:09:fb:5f:
67:d0:8c:e4:ce:a0:13:e2:7c:8d:f0:96:93:e1:c4:
f6:fe:d2:b1:a0:62:f7:62:7a:be:95:b0:10:12:3a:
e6:4c:b5:fb:c9:57:ef:f9:9f:3c:de:5e:7d:16:fd:
c1:10:5c:50:05:91:81:48:26:9b:2b:81:a3:89:8d:
f3:11:d8:de:1d:07:bc:09:e8:09:28:a0:98:36:cd:
c2:eb:c3:d4:9a:ef:9e:bf:f3:d2:6a:6c:e4:9f:9e:
ac:b1:73:5c:86:e4:e2:6f:c0:44:32:82:f4:c5:11:
a5:18:25:9e:63:c1:97:45:da:42:86:75:d8:71:cf:
43:b7:cb:be:75:fd:68:8a:07:99:dc:d2:ed:c1:54:
8c:2e:4e:df:89:38:8a:f9:1f:43:bd:bd:16:d7:a9:
28:83:c2:4c:d3:19:9b:8f:6c:f3:13:b9:f5:e4:32:
9f:1f:d4:ca:4f:12:72:71:ac:9a:a4:ea:43:8d:a5:
a5:8e:ff:05:1b:14:6b:07:05:67:db:79:e7:89:d8:
06:bb:cc:22:94:32:87:15:c8:3a:7a:64:54:8a:47:
56:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:60:C8:B9:34:0E:C1:7A:4A:F8:31:52:3B:5E:76:32:6B:BB:A9:31
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/B2DIuTQOwXpK-DFSO152Mmu7qTE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.185.2.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:79:05:5e:f5:19:99:39:f5:0c:fa:46:2a:d7:62:b4:f2:29:
64:ca:07:5f:57:ff:52:4f:d2:8f:79:20:e9:fb:c1:ec:67:b9:
ba:2f:73:42:3f:20:c5:97:df:66:1f:0a:50:9f:cd:a4:c1:42:
64:92:6a:9d:30:1d:6e:09:5d:b0:cb:a1:f4:1a:c1:be:6e:5a:
6c:cc:1d:17:9c:04:0f:76:47:39:78:d9:9f:5d:14:59:c8:cc:
a2:b9:80:72:b9:d9:65:36:51:f6:d0:c7:d9:c1:dd:ed:c7:73:
af:c2:39:95:d0:a7:d3:63:d0:73:a7:3f:eb:68:e6:03:c5:67:
4e:39:55:3a:02:78:88:ee:3b:c7:63:28:ae:ae:f9:07:34:fe:
5f:ce:f4:64:66:64:8e:f1:1d:96:5e:d3:6e:9f:a0:ce:03:49:
bb:2d:b8:5d:ce:01:43:ab:1d:fd:92:36:59:1b:a3:70:c7:68:
6f:d5:94:33:fa:11:c5:54:8a:7b:a6:ff:4d:be:6a:b0:52:b4:
70:f8:b2:a6:8f:35:d8:83:67:e7:70:71:fa:ff:ad:7f:02:98:
3f:4a:e7:30:0a:e8:ff:f2:36:d5:d2:20:69:5c:36:d4:b3:9c:
d2:7c:ad:00:ee:45:43:34:79:9a:fb:7c:1e:7b:e9:27:e9:51:
5b:45:97:6d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYf8x0B7hqzSF+Q2dHVNe1l4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk4MmNmODA5YzBlM2U4ZTU1NTJmOWQwZGQyZTI3ZTBkZDJk
OGRhYmUwHhcNMjMwNTA4MTkxMjA5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNzYwYzhiOTM0MGVjMTdhNGFmODMxNTIzYjVlNzYzMjZiYmJhOTMxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApq/y8x9HW/3tpVKzxrmb0uDZ+35o
e87explotJKxemE6pE7mTLSAoSQJ+19n0IzkzqAT4nyN8JaT4cT2/tKxoGL3Ynq+
lbAQEjrmTLX7yVfv+Z883l59Fv3BEFxQBZGBSCabK4GjiY3zEdjeHQe8CegJKKCY
Ns3C68PUmu+ev/PSamzkn56ssXNchuTib8BEMoL0xRGlGCWeY8GXRdpChnXYcc9D
t8u+df1oigeZ3NLtwVSMLk7fiTiK+R9Dvb0W16kog8JM0xmbj2zzE7n15DKfH9TK
TxJycayapOpDjaWljv8FGxRrBwVn23nnidgGu8wilDKHFcg6emRUikdW/QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAdgyLk0DsF6SvgxUjtedjJru6kxMB8GA1UdIwQY
MBaAFJgs+AnA4+jlVS+dDdLifg3S2Nq+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbUN6NENjRGo2T1ZWTDUwTjB1Si1EZExZMnI0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC82MTY4ZDctOTQ2Yy00NTc0LTkxZWEt
ODJhZDE0NTU1ZWFhLzEvQjJESXVUUU93WHBLLURGU08xNTJNbXU3cVRFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZC82MTY4ZDctOTQ2Yy00NTc0LTkxZWEtODJhZDE0NTU1ZWFh
LzEvbUN6NENjRGo2T1ZWTDUwTjB1Si1EZExZMnI0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWbkCMA0G
CSqGSIb3DQEBCwUAA4IBAQAdeQVe9RmZOfUM+kYq12K08ilkygdfV/9ST9KPeSDp
+8HsZ7m6L3NCPyDFl99mHwpQn82kwUJkkmqdMB1uCV2wy6H0GsG+blpszB0XnAQP
dkc5eNmfXRRZyMyiuYByudllNlH20MfZwd3tx3OvwjmV0KfTY9Bzpz/raOYDxWdO
OVU6AniI7jvHYyiurvkHNP5fzvRkZmSO8R2WXtNun6DOA0m7LbhdzgFDqx39kjZZ
G6Nwx2hv1ZQz+hHFVIp7pv9NvmqwUrRw+LKmjzXYg2fncHH6/61/Apg/SucwCuj/
8jbV0iBpXDbUs5zSfK0A7kVDNHma+3wee+kn6VFbRZdt
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:15 2024 by rpki-client on console-fra.rpki-client.org