Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/OPOv3ZsGEPX52RqNMrRLlslxLnI.roa
File: OPOv3ZsGEPX52RqNMrRLlslxLnI.roa (raw, json)
Hash identifier: aHrbg9y3ZheGPWRI/KgcoDsL/tcrIsgeXTFbTE/bWf0=
Subject key identifier: 38:F3:AF:DD:9B:06:10:F5:F9:D9:1A:8D:32:B4:4B:96:C9:71:2E:72
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 018A991F75371FCA9F5C459E7A694A28FE27
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/OPOv3ZsGEPX52RqNMrRLlslxLnI.roa
Signing time: Fri 15 Sep 2023 13:54:50 +0000
ROA not before: Fri 15 Sep 2023 13:54:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 396982
IP address blocks: 89.185.0.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:29:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:99:1f:75:37:1f:ca:9f:5c:45:9e:7a:69:4a:28:fe:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: Sep 15 13:54:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=38f3afdd9b0610f5f9d91a8d32b44b96c9712e72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:91:ae:d6:e0:0e:11:ca:67:f2:2d:03:0e:9c:
8b:14:6b:c5:db:84:90:d3:10:2a:d3:8b:0f:20:f0:
49:69:7e:58:e1:85:0e:21:55:20:8f:fd:11:8b:7c:
63:9f:46:d9:1c:81:9a:aa:60:91:1e:b5:33:6c:88:
53:be:f8:e0:e6:35:9f:09:81:a3:2f:0c:8d:41:38:
46:82:d0:62:bf:dd:50:43:f6:ae:8d:46:75:f7:82:
34:b6:e4:3d:d7:f2:60:ac:0a:02:55:86:ef:ef:d6:
e9:a4:18:72:71:35:fc:cb:d1:23:49:ee:6c:17:e9:
20:c5:34:52:47:5f:24:36:31:34:f4:c8:38:90:f2:
ee:04:f2:c2:d7:5a:b4:71:d4:50:d0:2e:c0:c6:10:
11:ca:b2:45:09:b8:57:2b:ca:f7:41:d2:af:bd:0d:
d7:5c:1b:2b:81:25:b1:24:f6:d0:e8:b6:f2:91:5b:
fd:25:9c:ee:4d:14:a1:ea:21:af:39:3e:f4:f0:02:
72:22:1c:b8:ae:68:2c:96:1e:cd:b6:c9:61:aa:71:
6d:25:2a:78:5a:1a:73:0f:38:f6:73:a4:62:49:3d:
24:10:39:db:fb:8b:85:07:c8:ee:48:bb:e1:11:14:
11:c5:2f:ab:93:a4:be:53:50:e6:ab:58:d9:01:1f:
ed:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:F3:AF:DD:9B:06:10:F5:F9:D9:1A:8D:32:B4:4B:96:C9:71:2E:72
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/OPOv3ZsGEPX52RqNMrRLlslxLnI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.185.0.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:bb:47:a5:9f:30:c7:f6:42:d6:3b:d1:26:44:80:2c:72:9d:
ae:11:27:d5:c4:be:2d:12:ee:05:c1:5c:11:ba:2d:53:68:e6:
60:69:df:82:77:e5:24:14:14:55:58:0d:f4:18:90:d1:d3:b4:
ce:c5:c0:5c:27:cd:49:42:c2:7e:fc:08:52:04:d3:21:d3:66:
57:80:ce:9e:34:0e:74:93:94:be:0b:38:5b:d2:17:48:f9:f3:
e9:2e:e7:7a:dd:0b:dd:7c:20:8b:bc:0c:e9:7a:ed:4a:21:5b:
e3:7c:51:4f:f2:61:41:41:c5:6e:c2:1e:82:91:75:9b:00:56:
ed:b6:21:c0:5a:89:b8:ec:84:30:e5:25:22:9a:06:a4:c2:a4:
37:20:10:1e:91:34:5b:9a:b4:5a:64:fe:19:80:95:93:13:e1:
ed:77:36:c2:e3:5b:be:e9:7f:7f:5b:92:68:b8:b9:c0:fc:19:
45:c8:a5:af:25:2f:08:4b:cc:d2:ec:ac:5c:3f:48:86:8c:ca:
14:56:36:c9:bc:a3:bc:b9:c8:c7:89:70:e1:90:3f:de:33:ba:
cf:d1:b3:d8:9b:1f:c7:44:7c:79:fc:ee:0d:7c:ce:74:78:bc:
74:aa:ac:d8:12:3c:3f:60:a2:de:45:02:9a:0d:ad:54:8d:a1:
51:53:b7:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:15 2024 by rpki-client on console-fra.rpki-client.org