Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/EFKo4-6JdQUmh7-9juSqPyjVC2I.roa
File: EFKo4-6JdQUmh7-9juSqPyjVC2I.roa (raw, json)
Hash identifier: CMggFmiF7Dmqj/JcY/52AYjzxU7ROqb12GJseKwSo70=
Subject key identifier: 10:52:A8:E3:EE:89:75:05:26:87:BF:BD:8E:E4:AA:3F:28:D5:0B:62
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 018B00C357FE41AAF3E26382D696FEF38A78
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/EFKo4-6JdQUmh7-9juSqPyjVC2I.roa
Signing time: Thu 05 Oct 2023 16:54:43 +0000
ROA not before: Thu 05 Oct 2023 16:54:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 109.72.116.0/22 maxlen: 24
89.185.0.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 10 Oct 2023 10:35:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:00:c3:57:fe:41:aa:f3:e2:63:82:d6:96:fe:f3:8a:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: Oct 5 16:54:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1052a8e3ee8975052687bfbd8ee4aa3f28d50b62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:22:26:b7:37:f7:d9:0e:0d:19:91:32:35:57:
e3:53:d1:b0:0f:e1:e6:6e:a4:13:3c:9d:d8:5a:4f:
7d:51:99:78:bf:46:48:11:97:5f:6a:43:ce:a4:0c:
28:02:e5:11:b8:e5:23:ce:21:4c:11:41:e0:8b:6f:
4f:5e:f2:f5:26:2e:92:00:58:b0:3f:60:ce:3b:78:
a9:be:07:a8:dc:fe:4a:8d:63:13:6c:2d:c5:46:7a:
1b:36:37:dc:c6:a6:2a:18:f3:f2:c3:57:6e:44:6f:
ab:8e:b3:71:1a:5f:0b:c7:3f:f4:67:59:c1:9a:a0:
66:ea:ff:2c:0a:1c:fd:30:f1:68:cd:bd:1d:45:6d:
d5:a1:00:2f:1c:98:12:a3:ad:c5:90:93:dd:cd:cb:
fe:5a:28:4b:ac:0a:a3:a7:2f:05:4c:30:70:3d:56:
c4:52:3f:84:b2:ae:75:e7:91:7d:43:40:24:21:90:
33:b4:18:d4:5a:f7:d3:f6:1b:a3:cb:1d:c0:0d:e4:
1f:b0:92:22:fa:68:5f:82:30:e8:88:e6:1b:8c:9d:
c5:f0:69:bd:08:bf:4d:31:70:e1:70:90:7c:40:67:
7e:00:37:f9:a4:69:b4:fd:2d:b6:ea:b2:ac:83:d8:
48:2e:c2:41:9b:9f:3c:26:bb:d1:0c:f0:b4:80:54:
1e:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:52:A8:E3:EE:89:75:05:26:87:BF:BD:8E:E4:AA:3F:28:D5:0B:62
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/EFKo4-6JdQUmh7-9juSqPyjVC2I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.185.0.0/22
109.72.116.0/22
Signature Algorithm: sha256WithRSAEncryption
1a:7a:b2:49:82:33:63:91:b0:49:8e:41:bd:2d:af:83:1d:0f:
e5:49:b4:8d:67:34:0b:1a:98:ad:e7:a1:66:ac:6a:86:d8:a5:
6a:81:eb:44:d9:75:21:db:4e:b5:d3:18:26:47:91:bd:68:9b:
88:eb:5e:37:13:1e:45:e1:69:4d:57:e1:5d:43:4d:64:8a:00:
be:04:b1:20:d5:c9:e3:e0:f3:4f:1b:12:57:3d:ce:31:b4:65:
85:42:d5:22:b3:46:b8:2b:60:a8:97:32:af:14:30:94:71:10:
73:ff:d0:bd:bc:e7:06:e4:e9:7d:2d:2d:b9:eb:f1:6a:3d:a8:
52:6a:e5:b8:06:1c:8b:80:c2:4f:95:f0:f3:2f:a0:77:c7:0a:
95:32:66:40:e3:f6:cf:5a:dc:56:1b:01:b4:e7:da:b3:12:24:
7f:59:82:f8:5c:e2:27:ed:84:fe:b1:48:4d:90:61:e3:14:22:
9d:83:5d:6b:72:75:8f:75:63:bd:b1:03:69:fa:04:56:ec:16:
6b:e3:eb:d6:ac:90:f6:a3:08:c8:ef:e5:43:73:e8:06:e8:7d:
1f:52:fa:44:27:67:2f:d6:f3:e5:88:1e:81:88:27:a2:30:2c:
90:1d:59:de:41:0c:83:00:3c:a2:02:de:d1:73:fa:7e:f4:2c:
1f:6e:f8:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:15 2024 by rpki-client on console-fra.rpki-client.org