Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/gr3-OWbtMb8_-bUFyDVDrxbLgaM.roa
File: gr3-OWbtMb8_-bUFyDVDrxbLgaM.roa (raw, json)
Hash identifier: eTYYAYlWlGY33ShfssT78Tmx6DgmDzOWbNo5LGR0zQg=
Subject key identifier: 82:BD:FE:39:66:ED:31:BF:3F:F9:B5:05:C8:35:43:AF:16:CB:81:A3
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 018CC649CD04C025DF2C8C1C9EE887DE947B
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/gr3-OWbtMb8_-bUFyDVDrxbLgaM.roa
Signing time: Mon 01 Jan 2024 18:29:34 +0000
ROA not before: Mon 01 Jan 2024 18:29:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 203790
IP address blocks: 89.185.0.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 26 Apr 2024 07:36:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:49:cd:04:c0:25:df:2c:8c:1c:9e:e8:87:de:94:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: Jan 1 18:29:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=82bdfe3966ed31bf3ff9b505c83543af16cb81a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:e7:ff:c4:30:bb:06:ce:33:72:83:2b:e0:44:
3c:b4:bc:7b:30:df:33:48:ea:8d:4c:96:7e:de:f8:
77:aa:e8:3e:5d:3b:ab:11:c9:f9:c4:d0:1c:8d:ad:
00:d5:52:9a:d7:1a:a9:59:5b:61:1e:17:7a:c2:15:
b7:67:fc:3c:c5:fe:38:d5:09:54:c7:77:1b:92:68:
4d:c5:eb:75:43:0e:4b:57:f7:36:55:6b:20:51:5b:
56:ac:32:9a:f0:1f:94:db:b4:4f:6c:5a:0b:07:d0:
17:29:e4:78:39:d8:c8:4f:98:8e:25:ee:19:27:4e:
5c:04:ca:0f:c7:fa:7a:46:5b:14:91:6e:7d:98:d7:
38:0b:58:77:57:9d:1a:41:31:3b:1c:b7:81:e6:a2:
2f:90:83:73:1f:6d:f2:ef:fc:72:f5:71:fa:eb:68:
88:ab:6b:3a:7c:44:5d:7d:29:c0:49:de:30:93:82:
1b:2a:91:56:ea:97:89:46:ac:1f:1a:cf:fc:9a:e5:
de:3a:c4:a1:21:70:c3:a6:e5:ed:90:b3:be:89:4e:
42:d7:77:26:70:ba:83:74:a9:fa:75:62:20:f4:3e:
38:59:9f:1c:ee:77:5f:ea:c4:01:9d:af:1e:70:1f:
bb:81:46:a3:b8:92:7b:43:7b:44:3e:6b:5a:c5:9d:
35:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:BD:FE:39:66:ED:31:BF:3F:F9:B5:05:C8:35:43:AF:16:CB:81:A3
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/gr3-OWbtMb8_-bUFyDVDrxbLgaM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.185.0.0/24
Signature Algorithm: sha256WithRSAEncryption
53:55:f1:91:6f:9b:8a:49:97:46:77:87:5c:74:32:18:77:9a:
32:59:4e:2a:5e:c1:5b:80:3a:bd:b3:e6:5a:7a:7b:f1:00:1f:
7f:78:c6:bd:e1:5c:5b:a8:9a:d0:e0:54:64:51:56:8a:6d:67:
46:89:f9:e1:ae:65:c7:74:07:7f:0e:4f:f9:fe:21:f0:ed:12:
f6:ab:89:93:64:9b:d9:6c:1e:2a:a3:8f:c9:3f:ae:ed:fb:31:
6a:07:b2:cf:72:8e:60:34:17:98:ff:23:e2:0f:23:9a:b3:f4:
08:39:b9:f8:97:58:9a:41:8c:f4:03:0e:22:8c:18:d5:80:16:
e6:cf:fd:79:5e:a3:e9:5d:a4:60:42:33:de:8a:d9:76:12:e2:
df:be:ca:cf:63:96:e8:84:b5:45:85:5f:25:6a:a8:ac:f5:5f:
eb:2f:0d:ed:c9:7d:44:0f:0e:89:f1:19:e7:d1:88:f8:78:b8:
5a:18:9d:76:7b:f8:c1:70:5c:74:ae:fc:4e:c5:59:24:6c:16:
e5:d1:2e:84:63:a1:50:43:a5:37:65:3d:e4:95:82:91:5b:e9:
94:2a:f1:3d:9b:8a:eb:fe:2f:ba:15:6d:58:5c:e3:dc:72:9b:
6c:e4:00:9d:dd:3f:b0:64:a8:bc:3b:00:37:35:41:00:07:11:
be:f7:e9:ab
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzGSc0EwCXfLIwcnuiH3pR7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk4MmNmODA5YzBlM2U4ZTU1NTJmOWQwZGQyZTI3ZTBkZDJk
OGRhYmUwHhcNMjQwMTAxMTgyOTM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MmJkZmUzOTY2ZWQzMWJmM2ZmOWI1MDVjODM1NDNhZjE2Y2I4MWEzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtuf/xDC7Bs4zcoMr4EQ8tLx7MN8z
SOqNTJZ+3vh3qug+XTurEcn5xNAcja0A1VKa1xqpWVthHhd6whW3Z/w8xf441QlU
x3cbkmhNxet1Qw5LV/c2VWsgUVtWrDKa8B+U27RPbFoLB9AXKeR4OdjIT5iOJe4Z
J05cBMoPx/p6RlsUkW59mNc4C1h3V50aQTE7HLeB5qIvkINzH23y7/xy9XH662iI
q2s6fERdfSnASd4wk4IbKpFW6peJRqwfGs/8muXeOsShIXDDpuXtkLO+iU5C13cm
cLqDdKn6dWIg9D44WZ8c7ndf6sQBna8ecB+7gUajuJJ7Q3tEPmtaxZ01fQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIK9/jlm7TG/P/m1Bcg1Q68Wy4GjMB8GA1UdIwQY
MBaAFJgs+AnA4+jlVS+dDdLifg3S2Nq+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbUN6NENjRGo2T1ZWTDUwTjB1Si1EZExZMnI0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC82MTY4ZDctOTQ2Yy00NTc0LTkxZWEt
ODJhZDE0NTU1ZWFhLzEvZ3IzLU9XYnRNYjhfLWJVRnlEVkRyeGJMZ2FNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZC82MTY4ZDctOTQ2Yy00NTc0LTkxZWEtODJhZDE0NTU1ZWFh
LzEvbUN6NENjRGo2T1ZWTDUwTjB1Si1EZExZMnI0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWbkAMA0G
CSqGSIb3DQEBCwUAA4IBAQBTVfGRb5uKSZdGd4dcdDIYd5oyWU4qXsFbgDq9s+Za
envxAB9/eMa94VxbqJrQ4FRkUVaKbWdGifnhrmXHdAd/Dk/5/iHw7RL2q4mTZJvZ
bB4qo4/JP67t+zFqB7LPco5gNBeY/yPiDyOas/QIObn4l1iaQYz0Aw4ijBjVgBbm
z/15XqPpXaRgQjPeitl2EuLfvsrPY5bohLVFhV8laqis9V/rLw3tyX1EDw6J8Rnn
0Yj4eLhaGJ12e/jBcFx0rvxOxVkkbBbl0S6EY6FQQ6U3ZT3klYKRW+mUKvE9m4rr
/i+6FW1YXOPccpts5ACd3T+wZKi8OwA3NUEABxG+9+mr
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:15 2024 by rpki-client on console-fra.rpki-client.org