Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/wH1VC1bxtByIAAzCLiU3ZmIQPog.roa
File: wH1VC1bxtByIAAzCLiU3ZmIQPog.roa (raw, json)
Hash identifier: KBE+8oZuM4djpd9r+Ma+5Q/X0IIg5IS2xCkqi4H9VYk=
Subject key identifier: C0:7D:55:0B:56:F1:B4:1C:88:00:0C:C2:2E:25:37:66:62:10:3E:88
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 01888875F5D82E600715BC8CB71D1775EF5C
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/wH1VC1bxtByIAAzCLiU3ZmIQPog.roa
Signing time: Sun 04 Jun 2023 22:10:11 +0000
ROA not before: Sun 04 Jun 2023 22:10:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 89.185.0.0/22 maxlen: 22
89.185.1.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 05 Jun 2023 07:32:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:88:75:f5:d8:2e:60:07:15:bc:8c:b7:1d:17:75:ef:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: Jun 4 22:10:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c07d550b56f1b41c88000cc22e25376662103e88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:bb:3c:a9:82:88:0c:84:74:1a:17:c6:c6:d0:
b5:b0:78:2e:d0:e5:67:e6:06:41:a3:2b:2c:7c:8a:
d5:95:de:2d:20:7c:4e:8c:b7:49:f6:25:24:9a:41:
ab:81:76:18:1f:30:e3:38:fa:16:2f:dc:f2:fe:5c:
0c:7e:fd:eb:3a:8a:5f:d4:75:3b:c7:27:05:36:14:
20:98:09:de:66:03:17:bd:97:b6:f0:a4:4a:f0:5b:
3c:a5:16:32:62:81:86:d7:e6:34:2b:6f:fb:a8:bd:
2f:24:fa:af:96:be:83:16:f2:6f:9c:4d:ef:ab:39:
60:8d:8a:32:f1:b0:de:df:d8:d0:6d:fc:4d:09:ea:
e4:98:68:14:78:05:dc:14:cf:de:05:fc:e1:53:6b:
be:2f:a7:63:8a:bd:a7:30:35:ce:62:b5:06:2a:7c:
27:59:c8:9d:5c:2f:70:b4:f3:7e:c0:2e:42:72:bf:
b0:5d:a1:d2:7c:83:5d:3b:b1:00:15:49:1c:d7:da:
a7:87:15:07:bd:c4:2b:42:2c:04:13:16:a7:ec:1a:
66:e4:9a:48:33:14:3e:d7:0f:37:4b:83:5e:5e:29:
d8:84:27:79:de:12:a7:92:f8:b8:f5:aa:c8:ef:d9:
1d:aa:70:15:76:e5:55:92:5f:77:4f:8d:7c:b7:0e:
e2:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:7D:55:0B:56:F1:B4:1C:88:00:0C:C2:2E:25:37:66:62:10:3E:88
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/wH1VC1bxtByIAAzCLiU3ZmIQPog.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.185.0.0/22
Signature Algorithm: sha256WithRSAEncryption
90:a4:ba:96:62:d6:fd:30:5b:a8:b5:60:0c:d2:d9:12:30:98:
3d:ed:82:ca:d0:30:f1:c2:88:86:f6:16:a8:e9:90:dd:74:8b:
a9:c6:59:79:a5:50:46:87:da:25:bd:28:4d:d0:5c:8f:d3:cf:
b1:79:c7:0f:51:7b:68:10:69:48:0a:59:a3:2e:4e:79:61:ea:
90:a6:5e:62:3b:4b:c4:7f:66:ae:f5:97:1c:32:27:59:12:da:
a3:f8:e2:7c:ca:32:c5:04:27:02:c5:1e:fc:48:ac:bd:d2:b1:
84:02:fc:a5:d6:2a:32:10:f4:ea:25:3b:1d:83:e7:73:99:8b:
72:20:d0:97:69:a5:da:34:2a:cc:29:ee:cc:5d:41:42:7f:5f:
03:dd:5c:aa:7c:86:9d:38:af:e4:2e:86:f3:5b:43:ba:c9:55:
6d:cc:0b:4b:33:ea:f2:1a:8b:5f:b6:2d:cd:ba:54:ce:d8:8c:
9a:dd:70:29:ea:8d:04:49:d5:5d:76:14:44:a8:f7:62:9a:30:
cd:88:ce:2f:e7:42:50:6e:00:6e:15:e0:1b:11:f6:57:36:7a:
f1:00:c2:c5:14:e8:1f:16:a7:64:69:31:55:f9:0b:c6:11:bb:
56:8c:27:0d:07:7a:97:37:d2:89:ae:1a:2f:cc:a5:46:54:d5:
10:6c:f1:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:15 2024 by rpki-client on console-fra.rpki-client.org