Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/NJjEuKH4tN5mgUfkYlF3fm9Z4vg.roa
File: NJjEuKH4tN5mgUfkYlF3fm9Z4vg.roa (raw, json)
Hash identifier: Cdm8Gi8AGQaPtwei8i3f8xcMNnS8CVZ76FWWJnCzaEc=
Subject key identifier: 34:98:C4:B8:A1:F8:B4:DE:66:81:47:E4:62:51:77:7E:6F:59:E2:F8
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 018AD7FE13CBBA58F07C5B84E1B9DFCC21D5
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/NJjEuKH4tN5mgUfkYlF3fm9Z4vg.roa
Signing time: Wed 27 Sep 2023 18:54:27 +0000
ROA not before: Wed 27 Sep 2023 18:54:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203790
IP address blocks: 89.185.0.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:29:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:d7:fe:13:cb:ba:58:f0:7c:5b:84:e1:b9:df:cc:21:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: Sep 27 18:54:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3498c4b8a1f8b4de668147e46251777e6f59e2f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:2f:9a:7e:63:94:d3:ff:5b:72:2f:17:a4:b2:
cc:41:8c:e5:4a:b4:dd:8c:82:98:7f:fd:39:2e:35:
72:36:75:f2:12:0a:c9:69:c5:6e:c8:ef:68:21:ce:
73:47:b1:63:d9:15:21:02:71:f1:d3:04:f5:6c:96:
fe:c2:d6:f6:1e:b3:c3:ec:fc:df:73:91:c6:30:61:
2b:2f:e3:1b:f4:5c:cc:c7:bd:16:3c:81:ef:fd:78:
ef:37:19:a7:e4:6b:33:a6:39:ed:da:64:41:a2:dc:
9d:9e:2f:a9:a1:7f:b1:68:a6:11:a2:64:a2:c0:e6:
87:08:a8:09:d6:5e:2e:a3:76:dc:02:59:3b:68:5b:
24:c4:fe:61:b0:9c:a6:fb:31:d3:d8:89:f9:35:a6:
f4:d8:ff:63:79:ac:34:b2:b4:e6:60:f1:19:a0:81:
55:5c:f6:36:6d:88:54:73:48:f5:3e:3b:90:17:60:
2f:32:3c:7a:4c:2d:3d:36:f3:35:33:07:8b:38:48:
02:95:93:d6:58:0e:d4:3e:18:90:b8:5f:0a:af:9a:
d5:e5:02:23:b8:99:8f:5f:b6:02:50:71:2c:82:a0:
cf:2e:40:14:d9:50:91:02:2d:a8:9a:85:b5:34:d6:
fd:7d:19:08:62:85:29:26:d7:3f:35:4b:f7:47:d7:
e4:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:98:C4:B8:A1:F8:B4:DE:66:81:47:E4:62:51:77:7E:6F:59:E2:F8
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/NJjEuKH4tN5mgUfkYlF3fm9Z4vg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.185.0.0/24
Signature Algorithm: sha256WithRSAEncryption
90:6c:fa:54:8d:f6:2c:50:9b:f1:2c:74:6a:fb:b4:cb:68:80:
66:bb:80:75:9e:a9:97:c3:1a:a8:04:59:46:a4:86:f6:f4:a0:
46:fb:55:09:bc:d3:99:38:e0:96:b2:e3:85:90:94:81:48:31:
e9:3e:28:bf:67:42:70:4e:59:9f:f3:9f:95:0b:a0:f4:54:c0:
1c:ed:35:ce:91:12:bf:b3:e5:0f:eb:fc:96:7e:fb:82:d9:29:
36:25:01:29:84:8d:16:4a:40:6b:fd:55:d7:2a:51:a7:00:7a:
79:3e:d3:e1:f1:ea:d8:9d:bd:7c:78:0d:5f:2c:f3:4e:1b:25:
b0:42:8f:88:91:d1:21:e1:3a:51:ab:14:fb:8f:e2:68:bf:42:
42:33:67:d2:4b:83:ba:7b:87:4d:8d:d6:6f:52:8d:84:32:ab:
58:26:79:6d:9e:af:6b:81:24:4d:58:f4:23:97:03:92:ac:96:
72:bc:6c:83:87:6e:96:31:77:e0:9c:5f:12:a8:3e:9b:02:77:
2f:22:d3:eb:82:fe:5b:ff:af:75:72:98:ea:c4:58:ca:49:4a:
19:50:b3:bd:5c:5a:1e:ce:c1:32:f5:69:1f:8a:a8:f5:84:99:
3f:32:b5:eb:02:35:6c:ab:8d:25:f5:bf:8b:be:e4:b0:18:aa:
8a:fd:94:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:46 2024 by rpki-client on console-ams.rpki-client.org