Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/JvSTPkh_o-8sCUjApk2VppROlPk.roa
File: JvSTPkh_o-8sCUjApk2VppROlPk.roa (raw, json)
Hash identifier: Pf4nME6Fid5Tg9EmFpyZUMvQmeEk0ygph1nPfEvhDYQ=
Subject key identifier: 26:F4:93:3E:48:7F:A3:EF:2C:09:48:C0:A6:4D:95:A6:94:4E:94:F9
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 0187E1DE1F754E13AC4967B87791695A8A13
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/JvSTPkh_o-8sCUjApk2VppROlPk.roa
Signing time: Wed 03 May 2023 13:47:23 +0000
ROA not before: Wed 03 May 2023 13:47:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208485
IP address blocks: 89.185.2.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 11 May 2023 08:13:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:e1:de:1f:75:4e:13:ac:49:67:b8:77:91:69:5a:8a:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: May 3 13:47:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=26f4933e487fa3ef2c0948c0a64d95a6944e94f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:f3:75:8a:5b:5b:92:31:07:42:02:4b:a3:81:
2e:da:81:a4:e4:2e:0c:77:ee:58:16:3a:b4:d2:02:
48:1a:b1:54:e9:97:23:8c:17:cb:e4:0a:ff:d9:df:
ec:bb:e8:d3:1f:cb:e7:87:45:f5:88:6a:66:7b:ca:
8f:e8:bb:95:0e:3b:31:1f:44:76:8d:41:05:57:48:
af:c3:59:f8:b2:f6:b5:6b:08:b7:c3:22:29:32:fd:
64:f1:04:17:5b:80:7e:4c:91:85:15:ce:30:90:fd:
28:6d:d6:3b:68:2e:33:4b:ce:59:c5:b7:0c:c9:ed:
22:87:62:1e:4d:5b:50:b7:ff:20:ee:07:24:f7:2c:
aa:9f:2f:d9:79:c6:c9:cb:67:f2:b8:4c:3a:62:51:
c0:81:44:00:f1:f8:f3:10:a0:33:fa:30:09:10:f6:
49:fe:36:a5:6a:02:a8:e0:d3:f1:62:28:c4:21:4a:
13:db:59:19:54:e9:69:3e:7d:c1:9d:28:a9:bf:90:
a9:aa:d2:d8:e0:81:9a:09:e4:78:01:11:b6:6c:81:
67:b0:e6:d7:40:6a:04:06:84:fd:fb:9a:9c:09:ed:
2f:d5:d3:4a:79:0c:9f:11:32:81:dc:17:db:06:be:
22:82:5f:c0:5f:d3:a9:6b:cf:7e:ca:08:2e:41:a7:
79:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:F4:93:3E:48:7F:A3:EF:2C:09:48:C0:A6:4D:95:A6:94:4E:94:F9
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/JvSTPkh_o-8sCUjApk2VppROlPk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.185.2.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:f1:b7:48:ec:7f:2e:2f:81:b7:92:37:eb:a0:56:b6:28:15:
5f:0c:19:d5:94:32:9c:01:68:0c:dd:9c:d7:a5:f2:9e:f6:da:
eb:31:6b:34:6e:63:95:62:1d:0b:92:76:ba:6f:ca:44:6e:3f:
a1:e2:82:b0:e9:4f:6d:80:72:01:41:ca:b2:c2:ca:48:83:1b:
cb:a1:89:a4:64:5f:7a:a9:f8:fb:7e:24:a6:c2:a7:1a:26:59:
23:f0:ca:8c:74:d9:b9:ca:2f:53:ab:3a:df:fe:3d:22:2d:f0:
21:53:6e:c7:cd:54:e3:b9:0d:88:fa:72:4b:42:72:a4:59:87:
1d:3c:47:cf:7f:95:2a:f6:a5:e9:17:da:c5:42:e5:0a:82:14:
4c:20:14:13:10:82:b7:70:78:b6:44:2b:88:c4:ab:6b:5a:16:
cf:23:de:ca:0e:93:bf:5e:52:ff:ac:1e:aa:7a:2a:97:8e:66:
af:71:29:7c:c2:82:cd:9c:ca:58:95:47:c6:8c:82:a2:a9:11:
4f:ac:9c:27:9a:83:4c:5b:0e:de:0f:dc:d6:77:c1:d5:0a:03:
4f:92:d0:85:9b:d3:21:d1:5e:e3:3a:29:db:ab:04:e5:47:0b:
46:20:db:8b:1d:ea:89:3b:50:47:9d:74:fd:1c:36:82:b8:d2:
01:80:e1:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:15 2024 by rpki-client on console-fra.rpki-client.org