Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/wKeFuHXFWh4tQsERNQ2qIbTUdP8.roa
File: wKeFuHXFWh4tQsERNQ2qIbTUdP8.roa (raw, json)
Hash identifier: phUAFfvdhhnDYkmPtmeOCZOoBBd2yfp0RnBruQh7Qs8=
Subject key identifier: C0:A7:85:B8:75:C5:5A:1E:2D:42:C1:11:35:0D:AA:21:B4:D4:74:FF
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 018CC649CFD375EE8587EC35CDD79F9D32C7
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/wKeFuHXFWh4tQsERNQ2qIbTUdP8.roa
Signing time: Mon 01 Jan 2024 18:29:35 +0000
ROA not before: Mon 01 Jan 2024 18:29:35 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 397630
IP address blocks: 89.185.22.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 30 Jan 2024 08:13:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:49:cf:d3:75:ee:85:87:ec:35:cd:d7:9f:9d:32:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: Jan 1 18:29:35 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c0a785b875c55a1e2d42c111350daa21b4d474ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:72:9e:12:27:a2:e7:c2:b5:4a:76:a1:49:68:
29:da:59:0c:8f:2c:c9:89:e2:8b:83:b5:18:f8:c3:
1d:9e:84:e9:1e:59:45:d1:b0:3d:eb:0a:6b:26:0b:
e3:62:a1:1f:f2:ca:7c:7e:d0:c2:85:66:02:9f:d4:
68:a3:03:36:64:c0:d6:01:97:7c:33:8d:75:a1:eb:
ae:cc:af:00:0f:35:f4:00:68:52:b0:47:a9:8a:2f:
77:43:21:64:03:71:62:cb:db:72:c8:0d:81:6a:a7:
75:31:8d:fe:d8:c9:e2:8f:cb:06:d0:9f:c6:98:4f:
44:a0:ce:32:fd:79:a2:2a:d1:de:b4:0c:18:69:b4:
6f:89:6a:88:5d:62:68:c1:e5:ee:e1:24:71:7a:b8:
49:0e:77:29:ec:f0:02:01:9c:8d:38:0a:0e:11:2f:
84:16:83:d2:c3:8c:75:94:a0:7b:90:33:20:c8:f2:
13:3f:6f:17:5d:f3:04:9a:fc:5f:86:b4:2d:1b:3b:
ca:d4:5d:37:c3:ba:2b:2b:05:89:ff:32:5d:7e:cb:
f1:73:fe:ec:57:8c:ba:33:16:2c:3a:1e:77:48:8a:
71:5e:ee:34:a0:fc:f7:5b:18:63:06:67:bd:20:f1:
9b:3f:5f:2b:d8:a6:5b:5c:d4:19:2d:64:de:ce:ce:
f8:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:A7:85:B8:75:C5:5A:1E:2D:42:C1:11:35:0D:AA:21:B4:D4:74:FF
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/wKeFuHXFWh4tQsERNQ2qIbTUdP8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.185.22.0/24
Signature Algorithm: sha256WithRSAEncryption
16:a4:22:ca:6e:58:a1:94:6e:3f:21:a9:83:cf:b0:6e:c3:7f:
b2:79:0a:8e:d1:0e:de:d7:35:25:a4:03:ce:98:79:ec:b5:7a:
39:0d:2a:57:cc:a7:93:5f:89:21:0b:72:54:74:06:c4:05:e0:
72:d1:8d:69:96:0a:ad:ac:a9:49:b6:3a:18:8d:29:8e:71:76:
c2:be:e2:a3:cd:d0:bc:c1:69:3d:ed:31:74:62:43:da:5a:3d:
c2:60:da:e8:c4:a4:76:b2:bc:a8:fd:ff:e1:24:59:9b:5c:6f:
1b:75:4d:91:c5:b5:bb:4c:3b:7a:22:67:7b:65:82:94:b5:24:
4e:8b:e2:2b:3c:2d:69:b3:c0:45:78:0e:aa:cc:44:d4:e0:30:
46:8c:fc:c3:e8:a6:10:a4:68:2c:0d:c8:6d:a8:41:70:73:a5:
cc:af:47:e0:b7:fe:6f:45:28:95:c5:a1:4f:fb:0d:4d:72:3a:
3e:63:ae:d7:42:40:40:1e:1d:f2:7a:36:17:e8:21:0c:9e:41:
bd:d6:bd:61:7f:5b:d4:3c:bd:7c:2d:3a:86:f7:36:6e:5d:3a:
f7:35:c2:8a:4a:5b:5c:2c:e3:f6:21:c8:ef:57:f2:d0:51:49:
97:0e:1c:31:e2:9e:5e:a5:eb:36:9d:4e:a2:ed:9d:9b:82:17:
3b:f2:33:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:15 2024 by rpki-client on console-fra.rpki-client.org