Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/cLzDMGVxnLAorSDMz8tYjlNuRiQ.roa
File: cLzDMGVxnLAorSDMz8tYjlNuRiQ.roa (raw, json)
Hash identifier: xoZToxPr6HaZ94J8C/nlqWeFQ6wH/57p7l0EFFklNzg=
Subject key identifier: 70:BC:C3:30:65:71:9C:B0:28:AD:20:CC:CF:CB:58:8E:53:6E:46:24
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 018C3E6FFA2A6616DD59F7BAEAD507AE3C67
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/cLzDMGVxnLAorSDMz8tYjlNuRiQ.roa
Signing time: Wed 06 Dec 2023 09:22:55 +0000
ROA not before: Wed 06 Dec 2023 09:22:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202662
IP address blocks: 89.185.28.0/22 maxlen: 24
Validation: Failed, certificate revoked on Fri 15 Dec 2023 07:41:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:3e:6f:fa:2a:66:16:dd:59:f7:ba:ea:d5:07:ae:3c:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: Dec 6 09:22:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=70bcc33065719cb028ad20cccfcb588e536e4624
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:ed:01:fe:94:12:ec:f9:21:54:ad:fb:64:b2:
a4:43:9f:95:7e:59:ac:71:6f:2c:60:50:3a:07:f7:
8c:62:c4:b2:e1:54:2e:08:07:d6:03:e3:29:42:a2:
25:9e:4f:a5:a9:c7:e6:3f:e4:3f:ee:28:d3:63:23:
b8:74:eb:8f:dd:48:ee:31:f1:d1:21:f5:27:96:b9:
ba:c4:d3:eb:12:60:18:a2:a4:3c:0b:f5:48:f0:d0:
3d:c4:a4:92:9b:02:71:13:36:d1:53:cd:08:bb:47:
ed:be:b6:4e:d8:45:0f:23:3e:01:70:8b:cd:b4:b5:
5e:ec:32:61:91:1a:61:be:35:00:4e:61:7f:34:de:
ca:4b:23:fa:9a:4b:15:bd:29:65:21:07:13:9f:be:
ab:d0:68:e9:74:63:fb:ca:68:1c:a4:a9:0c:8a:4f:
b2:11:41:07:9b:c1:05:c7:8c:42:3f:b3:4e:74:69:
6d:18:ec:64:68:26:6a:6b:a3:e0:c1:be:01:f4:0e:
11:d8:8f:ee:65:3b:36:26:28:d5:50:5e:67:30:ce:
ee:91:0b:01:e0:89:e4:db:45:ca:0e:3b:9a:0c:c6:
cc:ba:af:dd:ac:4e:f8:35:7b:22:5f:b1:ef:45:13:
d7:a3:b4:e4:3d:44:14:0f:c2:29:d0:16:8f:1c:40:
67:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:BC:C3:30:65:71:9C:B0:28:AD:20:CC:CF:CB:58:8E:53:6E:46:24
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/cLzDMGVxnLAorSDMz8tYjlNuRiQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.185.28.0/22
Signature Algorithm: sha256WithRSAEncryption
a2:42:10:ff:6b:c2:b7:74:59:a2:42:7d:a7:fd:cd:3f:5b:43:
08:9f:09:39:41:3e:fd:26:0a:0d:a9:4c:ce:d9:92:22:d3:71:
55:62:ef:2e:d5:d3:ff:bf:30:97:66:5d:88:6e:b8:bf:ae:58:
3f:2b:33:ad:b2:96:5c:62:fe:8a:2f:bf:ce:a1:4a:3d:77:21:
d4:8c:30:f6:bd:30:89:ab:45:8d:1f:7e:94:5e:b2:82:eb:16:
e9:09:e1:83:29:c0:33:d0:0e:ba:03:46:f7:82:12:3e:9a:59:
03:3d:cb:c2:55:8d:07:80:1d:67:8a:dc:75:e3:5c:a7:23:89:
db:5d:0c:ea:d7:7a:38:36:f7:41:24:cd:48:48:4c:2f:09:51:
d9:c3:52:d1:6f:29:ee:73:17:f6:9c:e2:d0:bb:a6:5f:40:2e:
77:9c:b2:0b:7e:62:4c:f2:8b:18:82:99:0d:8d:9a:f5:2f:2f:
35:b4:cd:20:bd:82:61:74:be:3b:f0:96:7e:e9:e4:0e:78:9f:
10:d8:ce:29:e9:ea:1b:3a:03:22:d0:64:8f:f5:12:d8:ff:13:
1e:37:be:8d:cd:a6:2f:23:06:1c:e3:b2:76:5c:a5:03:1d:89:
a0:2d:4e:a1:c8:be:f2:60:f5:36:11:cf:d4:41:22:fa:74:5e:
55:d2:eb:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:15 2024 by rpki-client on console-fra.rpki-client.org