Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/iWZhYBIONBWlp8cSrjHnO4jIM8E.roa
File: iWZhYBIONBWlp8cSrjHnO4jIM8E.roa (raw, json)
Hash identifier: FS6/wqfybPGh0TKb7s7N1WZqZqEi9m85S/hBRamVoeQ=
Subject key identifier: 89:66:61:60:12:0E:34:15:A5:A7:C7:12:AE:31:E7:3B:88:C8:33:C1
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 0192459BC61323647A83E5D3572F361288D5
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/iWZhYBIONBWlp8cSrjHnO4jIM8E.roa
Signing time: Tue 01 Oct 2024 01:04:49 +0000
ROA not before: Tue 01 Oct 2024 01:04:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 83.219.98.0/24 maxlen: 24
87.120.68.0/23 maxlen: 24
93.123.74.0/23 maxlen: 24
178.215.227.0/24 maxlen: 24
185.252.160.0/23 maxlen: 24
Validation: Failed, certificate revoked on Wed 02 Oct 2024 00:07:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:45:9b:c6:13:23:64:7a:83:e5:d3:57:2f:36:12:88:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Oct 1 01:04:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=89666160120e3415a5a7c712ae31e73b88c833c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:31:5e:f8:6f:9c:26:a4:82:dd:34:34:d3:4f:
0a:83:c9:a6:9d:15:fb:d8:d3:5e:c9:fc:ce:1f:08:
47:69:8c:7d:f5:ac:c9:a5:64:77:da:1f:e2:4f:e2:
3d:c5:f4:26:c8:b0:16:d3:08:91:78:66:dd:a2:f9:
cf:24:59:b7:55:e4:57:ad:7e:e8:47:33:cf:00:4e:
d3:f4:54:59:3a:d8:85:c7:79:c3:cc:9a:72:fe:50:
e0:6a:73:d2:e5:a8:03:7c:97:cf:f7:6f:3f:cd:f0:
8b:49:44:46:e3:20:6e:9b:b1:42:3b:07:08:ac:ab:
51:51:b3:fc:ed:e8:c2:b3:f7:67:ba:a7:cb:80:a6:
c3:d4:c8:36:2d:02:4a:2f:dd:42:73:f4:f5:66:3b:
a2:18:a9:4f:19:36:a8:17:f4:9a:78:20:fd:a8:12:
16:da:a5:d5:bf:e2:56:4a:0d:d5:2d:96:46:de:de:
f0:cf:82:5d:ae:60:9a:eb:5a:de:38:a7:22:6d:c1:
cc:df:de:20:8a:a4:29:de:cd:90:d0:bb:d7:67:c0:
91:2e:05:a6:7c:01:3b:77:1f:af:e4:1a:f8:34:ea:
b6:64:2c:32:e5:8c:bc:7e:13:22:c4:d8:34:eb:5a:
7a:f7:03:6c:d1:f0:2a:16:55:38:0a:80:ab:c3:cb:
10:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:66:61:60:12:0E:34:15:A5:A7:C7:12:AE:31:E7:3B:88:C8:33:C1
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/iWZhYBIONBWlp8cSrjHnO4jIM8E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.219.98.0/24
87.120.68.0/23
93.123.74.0/23
178.215.227.0/24
185.252.160.0/23
Signature Algorithm: sha256WithRSAEncryption
41:ec:84:3f:d4:9b:7b:c0:49:77:79:c6:28:5f:75:ac:39:15:
9e:8f:56:2a:ad:1d:0a:33:c0:00:b7:8b:e7:9e:24:f9:d4:99:
1a:ee:a2:9e:e5:a6:6b:15:4e:21:87:31:32:19:99:03:ee:ad:
64:1f:c3:ea:c5:5a:c2:c6:c6:b1:5d:1c:46:5c:39:43:37:f3:
97:26:67:5c:47:8e:06:90:76:3b:bf:fe:3f:b7:eb:7c:10:d2:
21:20:e4:5a:4e:8c:16:69:14:bc:8a:b6:f4:40:ca:3e:74:c4:
7a:bc:b3:60:88:48:a9:35:b8:f3:3f:9e:0c:80:ae:67:b2:08:
af:b7:dc:b1:ea:e4:f3:f5:a7:6e:55:77:7c:fa:8b:18:d1:92:
52:d8:67:2e:22:f9:a1:58:c2:e3:f8:26:a3:1f:4a:3c:02:55:
5c:05:a9:12:00:cc:74:c2:4f:f5:00:09:9c:2d:c5:49:08:50:
03:30:82:12:8a:55:8b:cd:77:4c:2a:23:43:09:4f:f5:e0:bf:
a8:b0:69:0f:19:94:ae:41:2e:48:88:f3:e9:e9:0e:97:c0:11:
41:fb:39:57:1d:a9:ae:f5:f9:87:22:6b:d0:c6:b9:7a:6f:65:
36:b3:74:3f:1a:8c:3c:79:3e:b2:e1:23:e9:b1:9d:1b:d0:de:
b9:d9:55:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 2 02:52:08 2024 by rpki-client on console-ams.rpki-client.org