Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/nO_RGDqXeA8RB0uFFRg7swcjBsM.roa
File: nO_RGDqXeA8RB0uFFRg7swcjBsM.roa (raw, json)
Hash identifier: ZfFyB7be8pEe9SdcfiCV5yNhsn11b4b48qFaYV265Jo=
Subject key identifier: 9C:EF:D1:18:3A:97:78:0F:11:07:4B:85:15:18:3B:B3:07:23:06:C3
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 0187B7761368FA1FE711DCAAD854DDFF636F
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/nO_RGDqXeA8RB0uFFRg7swcjBsM.roa
Signing time: Tue 25 Apr 2023 08:09:41 +0000
ROA not before: Tue 25 Apr 2023 08:09:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 89.185.0.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 May 2023 15:46:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:b7:76:13:68:fa:1f:e7:11:dc:aa:d8:54:dd:ff:63:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: Apr 25 08:09:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9cefd1183a97780f11074b8515183bb3072306c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:5d:52:d5:27:72:0f:62:09:3d:ee:4c:3d:9e:
22:55:e4:2d:44:5c:a2:b6:f1:ea:89:6a:96:df:d7:
11:7b:e1:ac:70:77:16:b2:61:d0:a9:75:99:36:92:
a5:7f:46:42:ae:2a:84:0d:9d:a3:f4:72:05:63:0a:
3b:27:8b:a5:5c:6a:8b:4c:dc:c9:cf:1e:38:37:df:
bd:9c:6f:de:1c:c9:88:61:7c:57:a6:79:46:cf:2b:
95:85:25:42:c5:29:9f:ca:8f:a4:f9:b7:28:26:2d:
2f:74:4e:65:30:7f:11:e4:86:ee:a1:ac:d8:f8:36:
26:73:00:dc:7c:af:d3:7b:5c:3a:53:09:a8:03:3c:
cb:02:2e:48:bf:7f:6d:0c:92:15:bb:f6:f3:7f:35:
87:c7:54:bc:cb:8d:af:71:b3:c7:3e:9d:b6:28:9b:
27:40:04:ba:f9:19:47:63:39:dd:76:1f:ff:bf:a9:
ed:ea:b5:17:e1:6d:35:05:8d:9d:ea:9b:bb:b0:48:
ba:8b:8f:df:af:e4:43:0c:1d:64:96:36:a1:95:0a:
e7:82:06:eb:27:51:aa:bf:29:23:3a:57:cb:67:fb:
d3:b0:2e:f0:51:1c:e6:8b:c5:22:f6:50:e1:b6:a1:
5a:3f:b6:d8:76:48:2f:74:e2:19:ee:b1:ab:9c:76:
d0:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:EF:D1:18:3A:97:78:0F:11:07:4B:85:15:18:3B:B3:07:23:06:C3
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/nO_RGDqXeA8RB0uFFRg7swcjBsM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.185.0.0/22
Signature Algorithm: sha256WithRSAEncryption
00:5e:9b:82:70:40:b9:09:4c:7e:b8:a4:10:f8:e6:cd:08:bd:
3b:6a:3f:6f:c6:2a:db:96:1b:94:e7:8a:c2:d8:bc:c2:b2:a3:
8a:d6:d9:25:be:43:78:2f:d4:ce:cf:2b:66:cb:fb:5a:bf:90:
4a:59:81:fe:a2:61:b0:de:c6:38:a9:ab:52:28:ed:82:15:b6:
ad:6f:a7:8c:3f:7b:54:f5:7f:e6:ff:d0:a7:f2:ac:dc:de:a7:
62:de:9a:ca:51:ae:7b:6a:16:78:97:ef:0b:b1:f5:40:c5:78:
4c:aa:32:9f:da:aa:e2:9b:ae:11:3c:21:5d:6a:49:ab:33:92:
02:70:14:49:72:86:f9:e4:fe:24:a0:db:11:38:09:33:c4:af:
bc:f8:42:1e:17:14:0d:90:67:7b:75:19:e5:cd:58:7c:69:77:
09:39:0f:11:c1:db:cc:95:fe:3a:5d:47:86:2e:85:c0:2d:80:
1a:36:a3:2c:cc:7c:d7:17:23:ed:7e:49:49:37:e2:a5:89:83:
c1:f5:62:2a:3c:df:65:3a:1b:5f:59:05:65:ed:0d:a6:77:ec:
4d:db:6c:0e:8f:0f:86:50:26:c1:7a:f0:f7:25:96:b9:9c:53:
28:2a:8e:de:db:f5:b8:28:13:67:79:37:38:d5:a4:bb:eb:be:
6e:5d:4d:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:46 2024 by rpki-client on console-ams.rpki-client.org