Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/HM2e2g-ct1Ko5eJ6-p4J0TiKmuQ.roa
File: HM2e2g-ct1Ko5eJ6-p4J0TiKmuQ.roa (raw, json)
Hash identifier: Ji0jqCLMhvl+EkouejFHu9QFA6vi4au6+3zirWTTnvw=
Subject key identifier: 1C:CD:9E:DA:0F:9C:B7:52:A8:E5:E2:7A:FA:9E:09:D1:38:8A:9A:E4
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 018A64DAFE156D19E8A5C4EA929B8CA2BE9F
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/HM2e2g-ct1Ko5eJ6-p4J0TiKmuQ.roa
Signing time: Tue 05 Sep 2023 10:19:47 +0000
ROA not before: Tue 05 Sep 2023 10:19:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211975
IP address blocks: 89.185.22.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 05 Dec 2023 08:41:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:64:da:fe:15:6d:19:e8:a5:c4:ea:92:9b:8c:a2:be:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: Sep 5 10:19:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1ccd9eda0f9cb752a8e5e27afa9e09d1388a9ae4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:08:bc:98:98:fe:b5:3f:07:90:f1:c9:02:9b:
40:26:52:e7:d5:9c:66:5f:9f:8a:34:f1:ee:1a:91:
1b:51:1a:ee:dd:55:cc:e1:16:51:c0:1c:a0:69:cc:
d5:3a:ca:93:49:c5:f5:56:85:d4:3b:c2:39:60:e5:
3f:8c:dd:01:76:fc:73:fa:6a:25:c1:e0:c0:b4:40:
6a:62:ce:f7:2e:87:da:33:72:db:70:09:24:55:1c:
0f:d6:4a:92:14:4c:b8:0a:1f:4c:f4:8a:a4:a6:9a:
7c:43:fd:73:ed:b6:6e:9c:8b:c1:5a:f3:03:d6:aa:
b4:8f:1c:85:ef:04:a0:9b:09:9a:a9:83:6e:ef:e3:
d5:ac:14:4a:7d:9a:07:da:a6:ee:db:a7:dc:cf:5f:
ba:f5:82:89:3a:1f:2b:7a:bf:39:42:69:e5:64:52:
37:40:82:ba:92:b2:23:1f:b0:de:c3:ed:d6:52:a4:
ad:f8:89:2f:87:50:94:4c:c9:9d:7b:cb:84:a5:b1:
64:95:45:10:cf:71:09:5c:02:ee:3e:05:ef:dd:70:
12:b3:3d:a8:f9:f7:c4:13:a3:83:01:75:76:2a:d0:
16:1b:0e:d9:fb:c6:10:62:4e:4f:16:1b:89:53:f0:
95:76:e1:1c:af:27:06:f5:df:70:91:93:26:25:1c:
81:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:CD:9E:DA:0F:9C:B7:52:A8:E5:E2:7A:FA:9E:09:D1:38:8A:9A:E4
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/HM2e2g-ct1Ko5eJ6-p4J0TiKmuQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.185.22.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:40:da:f0:9b:0f:86:ee:3d:50:54:b1:6b:99:8a:52:30:15:
af:db:f8:37:85:fa:fe:67:79:73:0e:09:9b:e7:5a:c4:59:91:
73:a1:de:4a:c3:1f:d9:10:2e:fe:34:6e:42:d9:60:e1:c3:eb:
43:99:ef:11:33:6d:63:b4:68:c7:9b:4e:8f:0f:a3:8b:ef:50:
66:84:68:f5:06:9d:52:6a:a8:90:02:97:6b:49:bb:33:ef:0e:
ce:fd:11:87:35:1f:7b:49:e6:90:3c:f4:34:b8:88:3b:cc:37:
2a:7a:39:10:3e:74:a6:e2:dc:9a:0b:b5:6d:de:b7:89:4d:54:
d4:1b:47:4b:08:41:69:c1:0a:5d:f9:58:a7:f0:da:67:2d:f0:
0e:07:3f:3a:c8:3e:3d:74:7c:c2:70:3f:bc:6e:61:59:99:05:
1a:cf:58:ac:ed:f4:d5:d9:c9:91:e3:34:88:01:ee:66:de:3e:
a1:47:53:c5:2b:1c:2a:04:73:46:38:f0:38:23:bd:4b:0c:a3:
2e:82:78:06:99:76:fb:ba:b4:3a:4a:b7:c6:85:3a:18:1b:54:
e0:2f:32:5c:ff:b4:36:6c:6b:2c:c9:c8:19:6f:86:95:71:b3:
4a:63:c2:49:c8:79:f3:45:61:77:d3:a0:da:ff:c5:b6:f3:04:
ed:21:dc:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:15 2024 by rpki-client on console-fra.rpki-client.org