Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/C2FpPM13lBt-YdE6PSWBnkE0gVM.roa
File: C2FpPM13lBt-YdE6PSWBnkE0gVM.roa (raw, json)
Hash identifier: kipDy3bfr2U8ggeuS2cZfyrVuemi1al3/0SePWy1DXQ=
Subject key identifier: 0B:61:69:3C:CD:77:94:1B:7E:61:D1:3A:3D:25:81:9E:41:34:81:53
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 018AD3057DEA64089F4FC67FA576A29C8B00
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/C2FpPM13lBt-YdE6PSWBnkE0gVM.roa
Signing time: Tue 26 Sep 2023 19:44:27 +0000
ROA not before: Tue 26 Sep 2023 19:44:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 81.22.140.0/22 maxlen: 24
109.72.116.0/22 maxlen: 24
89.185.0.0/22 maxlen: 22
Validation: Failed, certificate revoked on Thu 28 Sep 2023 08:42:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:d3:05:7d:ea:64:08:9f:4f:c6:7f:a5:76:a2:9c:8b:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: Sep 26 19:44:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0b61693ccd77941b7e61d13a3d25819e41348153
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:1b:71:6d:2a:15:be:11:f7:5f:03:ae:a3:8e:
f4:2b:82:77:cd:5b:34:33:37:d2:c2:e5:14:3d:51:
70:ad:eb:9e:b2:ef:b3:6c:66:a8:ed:d0:e9:ef:2f:
13:b3:27:ac:aa:45:59:0b:e8:a9:c0:1e:09:e8:78:
0d:9d:21:50:8d:39:80:c4:e2:32:69:9e:d3:81:cb:
4f:fc:2f:f1:d7:b1:6b:ca:55:de:79:9f:82:33:0b:
d4:f7:f2:a5:48:ac:83:9d:a3:95:d9:ad:b0:4d:46:
da:b1:79:a9:9a:c7:f9:9a:82:60:4f:fa:f7:6e:0b:
44:a9:8a:46:21:61:15:3f:e6:a7:3a:b7:05:93:85:
42:99:89:57:44:e5:ef:88:7a:4a:32:1e:ae:d3:20:
6e:e7:1e:1f:75:a1:8e:28:bc:fe:1b:41:3d:8d:ed:
20:9f:a7:5d:6a:e8:bd:e2:d4:6f:5b:e4:34:95:7d:
46:6f:c2:9d:55:c2:09:32:36:38:b7:b1:d0:e8:4d:
c5:68:1c:49:2e:df:43:9a:07:c2:ef:c2:3d:b3:b5:
f2:4b:98:3e:a8:63:73:58:3a:6d:86:90:eb:4c:ec:
ae:5b:7f:bb:f9:46:2d:5e:55:ff:15:ba:97:5b:0e:
a4:76:17:11:2b:aa:1d:63:98:57:09:41:b2:43:93:
93:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:61:69:3C:CD:77:94:1B:7E:61:D1:3A:3D:25:81:9E:41:34:81:53
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/C2FpPM13lBt-YdE6PSWBnkE0gVM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.22.140.0/22
89.185.0.0/22
109.72.116.0/22
Signature Algorithm: sha256WithRSAEncryption
5a:e3:5f:27:e6:8a:6d:ad:57:35:97:3c:ed:d8:7d:ee:80:95:
15:7f:57:43:81:d0:e7:de:73:34:ea:b9:61:7b:d9:21:4e:c5:
33:ae:0b:dc:6a:52:31:1e:af:3c:15:7a:07:12:14:fe:ca:5f:
d6:97:cd:a8:18:df:03:c2:2c:96:c8:d4:63:6c:45:17:e1:a3:
87:4b:cd:68:7b:d3:d0:37:58:31:0c:7a:9c:e9:d2:cf:84:dc:
8d:17:79:60:d4:80:af:0b:d7:ff:cd:e8:e8:ed:08:9c:ee:72:
b3:1a:44:42:7b:e9:26:60:b3:2b:db:c6:18:69:70:4e:a6:d2:
96:6d:54:03:1a:cb:16:25:54:cd:0d:33:05:e8:4b:60:11:da:
be:87:a0:93:12:a2:09:32:10:52:7c:7e:c4:39:3a:60:a1:c9:
5c:7f:4f:88:51:6e:cf:86:a1:e4:fe:ae:92:0a:64:29:1c:d3:
ce:07:68:52:d8:cb:8b:ee:33:a0:eb:da:71:47:71:8e:55:2f:
0b:25:ce:09:eb:29:eb:bc:35:91:1a:f7:10:3b:a0:39:fb:ba:
b3:e5:69:9c:2b:a1:b6:2b:b2:e0:ec:8b:3b:1b:19:15:33:4d:
19:9f:1e:b0:20:59:4a:e0:80:43:c1:7c:64:c4:a9:92:b1:10:
59:1b:5f:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:45 2024 by rpki-client on console-ams.rpki-client.org