Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/y3WJS_ur6H1CP-AlLDmWP6gnx8Y.roa
File: y3WJS_ur6H1CP-AlLDmWP6gnx8Y.roa (raw, json)
Hash identifier: lsGxZD0MoFt5KBHphXLEUTf8AfmcuWC4bAqSCJGsgOg=
Subject key identifier: CB:75:89:4B:FB:AB:E8:7D:42:3F:E0:25:2C:39:96:3F:A8:27:C7:C6
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 0188E26392A64636A5CCABD6C56E6AB4809D
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/y3WJS_ur6H1CP-AlLDmWP6gnx8Y.roa
Signing time: Thu 22 Jun 2023 09:15:56 +0000
ROA not before: Thu 22 Jun 2023 09:15:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 89.185.24.0/22 maxlen: 24
109.72.116.0/22 maxlen: 24
89.185.0.0/22 maxlen: 22
81.22.132.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 26 Jun 2023 12:06:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:e2:63:92:a6:46:36:a5:cc:ab:d6:c5:6e:6a:b4:80:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: Jun 22 09:15:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cb75894bfbabe87d423fe0252c39963fa827c7c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:a6:47:f8:d7:35:ab:03:86:47:b1:12:c2:8a:
bb:25:e3:b9:73:67:a2:12:fe:30:e9:ce:77:cb:bc:
5c:dc:08:db:40:bb:09:a5:c5:47:e2:39:d9:01:0e:
be:3c:3f:2e:e5:03:c1:9b:d5:3d:ca:a8:93:ee:14:
ae:b0:43:f5:aa:79:2d:81:94:c6:86:de:cd:b9:b1:
4c:4d:02:b9:e2:db:07:9f:8e:63:55:03:3a:4c:7a:
f0:86:23:df:66:f3:1f:7e:a2:6e:cd:db:ec:33:6d:
a8:88:0c:e9:49:42:99:43:ae:90:10:c1:ee:70:6e:
7e:7e:0e:3e:24:a4:9b:95:55:0e:d8:80:b1:7f:22:
6e:bd:31:74:de:f2:3d:9a:a5:8d:4c:4b:88:9d:80:
99:4a:3a:54:30:d6:b2:cf:63:32:c6:4a:8e:4d:b6:
98:f1:30:42:38:d9:e0:76:e1:d6:5b:95:2b:a1:c9:
cc:6a:35:a4:8d:98:0f:08:8f:8a:cb:1d:33:fe:6c:
8a:c0:14:b8:69:75:af:69:ee:76:5c:a1:e2:9d:89:
a6:4d:35:52:98:f0:90:64:82:ec:57:29:a4:b1:82:
95:e5:c4:18:4b:3c:36:1a:58:2b:a0:8b:79:ae:01:
45:8c:f3:48:73:7f:5a:c2:cc:cb:b2:c5:02:70:98:
9d:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:75:89:4B:FB:AB:E8:7D:42:3F:E0:25:2C:39:96:3F:A8:27:C7:C6
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/y3WJS_ur6H1CP-AlLDmWP6gnx8Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.22.132.0/24
89.185.0.0/22
89.185.24.0/22
109.72.116.0/22
Signature Algorithm: sha256WithRSAEncryption
7b:de:08:5e:88:74:db:cc:a3:d8:7b:f9:d0:7b:29:df:5d:e3:
7c:90:30:b5:44:f0:f0:54:9e:a4:70:88:26:94:29:b2:d9:96:
3a:04:a0:40:ce:59:83:40:32:44:6e:cf:04:73:77:66:27:e6:
b9:d5:28:b8:fb:25:ff:7f:32:01:ee:50:ae:ca:21:42:2f:ed:
9b:36:d6:2d:22:54:c8:90:fe:59:23:6b:a2:57:c6:02:e5:8c:
5e:2d:85:a6:5e:16:95:65:a9:54:50:d5:17:75:ed:f7:1b:ab:
40:64:7c:0c:42:34:1e:ce:36:20:1d:6d:4a:fd:90:ae:dd:0a:
83:fe:9b:c7:fa:d2:0d:55:18:7a:2e:b5:e6:66:b9:7b:64:af:
f1:7c:a9:34:74:4a:f8:78:9a:4b:0b:36:e4:b0:63:27:4a:02:
33:e3:42:c0:7c:0d:0f:6b:a9:4d:a6:ab:66:90:33:57:02:29:
ce:d7:2f:07:51:c0:17:d9:66:81:f2:20:38:88:1e:d4:a6:2a:
11:4b:b7:38:99:58:bc:ba:ea:47:64:ff:47:18:6e:82:c6:51:
cb:4f:e7:6a:af:6a:9b:81:a5:14:45:98:18:f0:bd:37:d0:96:
d5:af:84:37:e1:74:16:f8:ec:61:98:2c:6b:42:ee:23:ca:cc:
fd:5c:ed:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:15 2024 by rpki-client on console-fra.rpki-client.org