Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/_NzYOrbedVqI2oEmpMmYL06Zq1k.roa
File: _NzYOrbedVqI2oEmpMmYL06Zq1k.roa (raw, json)
Hash identifier: UD19mGbgFD6LZwgr8gpQXIml9cypq0elBB21b3FBleo=
Subject key identifier: FC:DC:D8:3A:B6:DE:75:5A:88:DA:81:26:A4:C9:98:2F:4E:99:AB:59
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 018668FFC3917FC08CCB10865D7614123152
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/_NzYOrbedVqI2oEmpMmYL06Zq1k.roa
Signing time: Sun 19 Feb 2023 09:27:17 +0000
ROA not before: Sun 19 Feb 2023 09:27:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 89.185.24.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 17 Apr 2023 07:28:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:68:ff:c3:91:7f:c0:8c:cb:10:86:5d:76:14:12:31:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: Feb 19 09:27:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fcdcd83ab6de755a88da8126a4c9982f4e99ab59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:6a:e1:63:41:5a:12:d0:c9:ad:00:26:a2:8d:
60:8b:7b:b8:d4:07:0a:a3:e4:25:77:f4:76:6b:b6:
88:9d:8c:52:38:10:84:a6:17:10:da:a9:a9:1b:78:
6b:18:8e:0d:f2:37:3e:b3:0f:96:49:c7:15:80:2f:
53:7a:5b:fc:8d:ca:df:f4:ce:c8:cf:69:a5:3e:46:
4d:7b:9d:a0:d3:fe:3f:7d:c4:35:b3:bb:11:0a:c8:
12:d5:9b:91:29:75:29:48:74:4f:05:83:38:f9:a5:
48:05:b7:cd:9a:ec:c9:b3:6d:31:eb:d0:a0:e3:ed:
a7:c3:6f:86:01:4c:78:4e:08:71:74:92:b1:78:e3:
8c:a7:b3:eb:40:05:00:93:13:76:a4:12:bd:9c:d8:
6e:7f:0a:37:50:1a:b3:63:6b:ed:11:e7:e7:34:c0:
5e:a4:95:60:de:24:0a:0a:45:4f:c4:88:d0:4c:91:
ee:d7:d1:2b:02:b7:9a:35:4b:30:39:14:98:15:32:
f2:b8:64:fb:f6:00:d8:f4:ad:cc:45:f7:95:a8:ce:
63:ce:73:8c:ed:b7:ca:5b:1e:ca:40:6e:5e:fb:94:
31:6e:9f:43:5e:b2:7f:e9:60:51:0a:68:04:d8:f1:
24:77:48:dd:49:6d:dc:03:85:5e:60:00:3c:be:17:
b4:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:DC:D8:3A:B6:DE:75:5A:88:DA:81:26:A4:C9:98:2F:4E:99:AB:59
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/_NzYOrbedVqI2oEmpMmYL06Zq1k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.185.24.0/22
Signature Algorithm: sha256WithRSAEncryption
a0:98:d2:56:f0:2c:68:90:4f:12:e8:fc:2e:c8:87:34:23:4e:
38:71:25:09:76:47:47:9f:6f:8c:2e:3b:79:15:20:93:54:e7:
d2:23:df:8c:57:d6:d2:e9:7c:1c:61:b0:34:9c:5c:06:5c:48:
e9:b5:6b:46:98:80:68:71:29:cd:db:15:9d:77:9b:d8:e9:55:
e2:e8:6c:7b:ba:bd:cf:49:d4:82:4f:c8:9e:9f:07:2b:72:22:
53:44:0b:14:0a:ff:cc:dd:d0:27:1e:82:04:2b:0a:f8:7f:cf:
bb:de:82:13:c8:3b:89:f2:60:e2:07:12:f4:a2:a0:e3:45:ba:
f3:de:37:54:06:08:02:9c:79:12:6c:70:1a:05:9a:f6:fc:c2:
18:71:f8:80:79:6b:65:ed:04:e7:cc:72:96:8e:9b:2b:a8:b9:
6a:2f:af:58:4c:30:96:f3:e7:22:96:70:5a:a6:a4:c0:6e:a9:
17:59:12:b8:f1:25:7f:91:25:1c:90:52:5e:24:82:aa:63:c2:
25:a4:c3:8b:d7:6f:d1:88:f2:c0:6a:0a:7d:29:99:6d:e5:24:
7b:5d:81:63:ca:99:65:94:f2:44:9d:78:59:20:cd:7d:05:6e:
29:5d:00:53:ed:26:2f:89:b9:61:23:61:a4:f0:51:45:08:d7:
51:d4:63:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:15 2024 by rpki-client on console-fra.rpki-client.org