Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/Ozk75jFpftUKq1ac1hop8nbmwCQ.roa
File: Ozk75jFpftUKq1ac1hop8nbmwCQ.roa (raw, json)
Hash identifier: Yws7+IwML6IWGH7FLA9aonWFeYptHEwEfoQ60XVDiys=
Subject key identifier: 3B:39:3B:E6:31:69:7E:D5:0A:AB:56:9C:D6:1A:29:F2:76:E6:C0:24
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 0188543CB5C166E641DFF3A292FF749599EA
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/Ozk75jFpftUKq1ac1hop8nbmwCQ.roa
Signing time: Thu 25 May 2023 18:47:24 +0000
ROA not before: Thu 25 May 2023 18:47:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 89.185.0.0/22 maxlen: 22
Validation: Failed, certificate revoked on Sun 28 May 2023 09:14:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:54:3c:b5:c1:66:e6:41:df:f3:a2:92:ff:74:95:99:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: May 25 18:47:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3b393be631697ed50aab569cd61a29f276e6c024
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:0e:8c:9d:41:7f:fd:85:7f:a4:4d:14:e0:fb:
e7:3d:aa:69:72:a7:7d:45:9b:13:3a:87:d0:9d:00:
5c:65:87:18:87:82:16:f0:2e:e3:8b:4a:ed:8f:e4:
26:9a:ba:f2:f5:d9:8e:96:8f:d3:82:ca:a1:1d:cc:
08:7d:5e:bc:bd:9e:41:cc:47:5e:af:4c:de:ce:e1:
94:73:52:91:dd:89:86:70:aa:51:04:3c:0f:86:a4:
f0:b2:ff:03:94:67:a6:6f:62:6a:6a:95:e7:77:af:
8c:9b:e5:63:06:1d:28:3a:4c:3a:8b:95:14:a9:e1:
d5:0a:9f:e8:3e:70:8d:af:27:f1:e9:10:e6:88:85:
9b:03:81:b8:98:f0:71:5e:e2:2c:e5:7f:ed:58:03:
b3:18:5a:20:a1:25:1c:15:3c:e2:8a:16:4b:b1:0b:
58:58:d4:b9:7a:29:c8:76:9d:06:44:0c:dd:c4:5a:
cb:52:c8:5f:5d:dd:60:51:a5:10:ac:31:21:33:e5:
75:d3:8d:4d:1d:a4:a3:88:23:c7:29:ef:52:04:5a:
a0:97:9c:f7:4a:1c:60:f6:42:c6:72:df:de:50:7b:
22:83:92:6a:5f:9b:2d:a5:36:91:6a:ad:a1:fe:fe:
6e:35:f9:3e:cb:c0:60:6c:48:65:0f:41:ab:57:85:
6f:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:39:3B:E6:31:69:7E:D5:0A:AB:56:9C:D6:1A:29:F2:76:E6:C0:24
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/Ozk75jFpftUKq1ac1hop8nbmwCQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.185.0.0/22
Signature Algorithm: sha256WithRSAEncryption
69:5e:ab:38:2c:bd:52:ec:5c:78:28:a0:b7:bd:8b:1b:3a:7e:
34:f6:8d:2c:09:1e:18:36:18:0d:17:11:6d:3e:74:92:5a:ff:
aa:75:55:ce:b6:14:36:58:86:87:00:87:d7:15:68:a9:3d:6e:
91:96:ac:98:e7:9c:34:d4:ea:cb:11:50:b1:11:bf:7d:a6:5b:
99:d4:84:b0:70:70:24:33:9e:59:4d:99:29:0b:28:09:90:5c:
5f:ca:56:b8:cb:d9:6b:5c:a9:99:b0:ee:58:11:1c:23:a5:40:
23:c0:63:bd:e1:d8:2a:d8:73:a6:34:09:4b:f6:ee:e4:67:99:
08:32:79:37:5b:6a:f2:df:59:4a:0d:e5:ed:8b:ae:2f:54:0f:
74:84:9c:d4:c1:6d:b6:e8:d3:d8:36:13:59:d8:25:eb:1b:31:
6d:eb:23:64:e1:10:ed:be:4b:17:77:02:a7:23:d5:92:18:13:
d7:16:f7:26:dc:0d:8e:5a:f9:94:9a:28:81:60:16:6a:ec:86:
d5:0c:16:d4:ca:19:01:85:ce:b2:86:c5:40:f4:27:c4:db:7f:
c8:f5:cc:41:c7:f9:6c:f4:d3:68:ef:06:9c:af:cb:30:0b:11:
8f:93:72:2e:53:fb:9b:20:ab:8e:f3:fd:53:f9:b1:fa:03:8a:
00:2e:7a:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:46 2024 by rpki-client on console-ams.rpki-client.org