Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/lsDU2v48P0mNn4U5Xchi_QhW_Ko.roa
File: lsDU2v48P0mNn4U5Xchi_QhW_Ko.roa (raw, json)
Hash identifier: iTAM3jMFoq58cSqEE1igTkzyB+HFXYGZgue8785bMmg=
Subject key identifier: 96:C0:D4:DA:FE:3C:3F:49:8D:9F:85:39:5D:C8:62:FD:08:56:FC:AA
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 01884D7E0861820E23247457C6B57E7DE813
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/lsDU2v48P0mNn4U5Xchi_QhW_Ko.roa
Signing time: Wed 24 May 2023 11:21:25 +0000
ROA not before: Wed 24 May 2023 11:21:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 81.22.135.0/24 maxlen: 24
89.185.24.0/22 maxlen: 24
109.72.127.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 25 May 2023 18:47:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:4d:7e:08:61:82:0e:23:24:74:57:c6:b5:7e:7d:e8:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: May 24 11:21:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=96c0d4dafe3c3f498d9f85395dc862fd0856fcaa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:60:bf:b9:fb:d3:d8:73:c0:3b:01:f4:74:a4:
79:43:ad:b3:7e:0c:9e:7b:a4:63:6a:23:42:34:32:
a2:47:af:2c:8a:dd:26:08:b4:fe:fc:53:1b:50:69:
37:b9:ab:3b:17:c2:d2:b2:cd:fd:49:90:48:cb:48:
de:99:51:9d:cc:31:a9:9b:17:0f:10:9d:77:49:84:
7e:a8:a4:20:91:ca:83:a1:79:b3:e0:d7:e9:30:25:
cf:d1:ec:c9:0b:03:f2:71:93:8e:02:47:18:97:fa:
f9:d0:e0:c7:fc:8c:0a:bf:77:d8:5d:ec:95:06:2c:
18:0a:68:d8:9b:4e:d6:ce:5b:fa:dd:48:eb:43:03:
09:f0:3c:24:24:5d:67:47:4f:6b:de:a9:8b:91:9a:
82:77:8e:cc:52:90:78:cf:fc:6a:ca:2e:14:6d:ee:
12:e1:12:08:f4:dc:e6:7e:3a:7c:50:be:fb:64:c4:
53:2f:b6:13:eb:eb:91:62:ba:6f:89:ac:ff:13:4f:
2b:ce:07:f5:a9:37:f2:92:45:18:0b:e5:fa:82:a8:
20:98:a4:f3:70:a0:1e:8c:4c:8c:80:60:bb:87:bf:
85:0e:2a:71:6d:f2:0f:1d:3c:61:fa:0a:6a:ba:01:
ab:13:07:12:d5:fe:fa:ff:af:8c:b1:75:06:0f:c6:
44:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:C0:D4:DA:FE:3C:3F:49:8D:9F:85:39:5D:C8:62:FD:08:56:FC:AA
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/lsDU2v48P0mNn4U5Xchi_QhW_Ko.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.22.135.0/24
89.185.24.0/22
109.72.127.0/24
Signature Algorithm: sha256WithRSAEncryption
56:23:23:db:87:97:41:9e:b2:13:ca:7c:7c:ec:0b:1e:c2:a1:
17:c9:1f:cf:a3:2a:2d:17:a5:d9:57:7e:2c:a1:91:26:da:3a:
d4:c7:78:bf:5c:5a:87:33:46:6a:00:1a:2d:3d:90:0d:9d:4a:
e8:82:e1:e9:35:a6:82:bb:4e:f1:57:aa:2a:a0:68:69:83:e3:
3c:54:7a:92:0f:7e:f5:f3:d2:b7:aa:20:13:1c:13:68:6d:91:
1f:74:8b:48:ca:f6:0d:66:6b:6c:92:a7:6d:08:3c:df:01:e8:
87:c0:eb:52:a5:9e:f5:35:4f:9e:f9:15:86:71:77:85:28:dc:
50:eb:cb:58:35:35:7f:91:68:70:82:03:5d:3c:44:48:bf:bf:
36:25:f1:d1:ae:99:2c:7b:dc:77:a1:30:bc:c9:ea:7b:8b:25:
44:f9:67:b8:3f:72:5c:c6:2f:d7:cb:8f:19:24:be:66:fc:9c:
56:cc:88:54:c3:c6:0d:d9:44:54:0d:1d:60:db:84:36:82:4b:
c2:6f:c7:87:8c:7d:52:f9:4a:c0:52:ce:16:1d:93:a6:90:0e:
37:fd:64:7d:57:10:8d:d8:70:d4:a8:a1:25:6c:44:46:5a:ae:
1c:2c:b1:b1:9c:5d:16:d1:25:e1:1f:96:ee:00:2e:05:43:78:
7c:f9:47:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:46 2024 by rpki-client on console-ams.rpki-client.org