Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/766988-3f1e-43d4-bec4-9fa95aa9b079/1/G2Wj46mw5_g0cKHY6L6WEAKqiMI.roa
File: G2Wj46mw5_g0cKHY6L6WEAKqiMI.roa (raw, json)
Hash identifier: eaXQN8Cm+Wc2Zn5SMeu1hEVxllYo/L+hfe6E+J2yJGA=
Subject key identifier: 1B:65:A3:E3:A9:B0:E7:F8:34:70:A1:D8:E8:BE:96:10:02:AA:88:C2
Certificate issuer: /CN=c9b4d6823ecb28b4a35e40dc11ef229cb2375cdf
Certificate serial: 018CC26D3A549D5888ABD52DB9578775910B
Authority key identifier: C9:B4:D6:82:3E:CB:28:B4:A3:5E:40:DC:11:EF:22:9C:B2:37:5C:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ybTWgj7LKLSjXkDcEe8inLI3XN8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/766988-3f1e-43d4-bec4-9fa95aa9b079/1/G2Wj46mw5_g0cKHY6L6WEAKqiMI.roa
Signing time: Mon 01 Jan 2024 00:29:47 +0000
ROA not before: Mon 01 Jan 2024 00:29:47 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 209522
IP address blocks: 152.89.52.0/22 maxlen: 22
Validation: Failed, certificate revoked on Wed 01 Jan 2025 19:47:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6d:3a:54:9d:58:88:ab:d5:2d:b9:57:87:75:91:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9b4d6823ecb28b4a35e40dc11ef229cb2375cdf
Validity
Not Before: Jan 1 00:29:47 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1b65a3e3a9b0e7f83470a1d8e8be961002aa88c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:76:d1:59:f1:78:62:cf:4f:73:f7:09:af:22:
a0:e1:3b:5f:f9:b4:f1:90:50:40:ef:a0:b1:a2:85:
cb:c2:1d:78:0b:e0:ce:89:dd:7c:77:34:6a:9d:1d:
4b:a1:8b:0b:d4:c3:ef:62:bb:d9:e3:03:17:51:99:
f7:80:17:61:89:73:fc:79:e3:32:81:b1:08:ab:f7:
8d:94:83:c5:66:ef:c8:46:58:63:a7:a0:6d:5c:f6:
9a:70:86:4a:f6:f0:23:4a:45:c0:15:0f:3f:2a:0f:
af:7c:5a:02:36:70:90:b1:10:5a:23:a1:57:a6:3e:
15:8b:91:06:e5:1c:d1:e2:24:4b:a7:d2:bf:d1:5d:
ed:ed:03:b4:53:25:bd:0b:20:a6:fe:40:ae:d3:98:
a7:38:8c:7e:a2:25:36:0b:11:5c:a2:59:0e:c3:0c:
27:6e:b2:71:c1:ae:52:f6:43:45:6e:90:9a:a8:ae:
a7:a1:83:e6:71:a1:f0:8b:30:a7:b6:51:c0:0b:0d:
86:11:cc:34:5b:51:24:6c:97:b1:aa:32:a0:27:2c:
63:34:78:31:3a:dd:3d:a1:1c:d9:86:c1:2c:14:34:
39:0e:f4:3a:c1:1f:09:85:68:68:c5:33:e0:a9:43:
3f:ce:63:02:38:5f:38:fc:10:86:d1:47:77:bb:6a:
ec:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:65:A3:E3:A9:B0:E7:F8:34:70:A1:D8:E8:BE:96:10:02:AA:88:C2
X509v3 Authority Key Identifier:
keyid:C9:B4:D6:82:3E:CB:28:B4:A3:5E:40:DC:11:EF:22:9C:B2:37:5C:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ybTWgj7LKLSjXkDcEe8inLI3XN8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/766988-3f1e-43d4-bec4-9fa95aa9b079/1/G2Wj46mw5_g0cKHY6L6WEAKqiMI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/766988-3f1e-43d4-bec4-9fa95aa9b079/1/ybTWgj7LKLSjXkDcEe8inLI3XN8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
152.89.52.0/22
Signature Algorithm: sha256WithRSAEncryption
4e:4c:6e:a4:12:fc:b3:50:34:8b:1e:0f:9a:ec:4c:d0:1a:07:
ee:07:a9:d3:3b:ee:0d:7a:92:01:78:23:89:b8:5f:cc:81:78:
72:cb:51:74:72:ab:ee:65:41:8e:2e:fd:88:b5:75:19:97:53:
d8:7b:5c:5d:33:ff:ab:85:6e:e6:de:72:f3:04:77:7f:d2:05:
5e:3f:bd:d9:3c:15:9e:27:ff:bd:8a:2b:65:12:0c:c9:38:12:
66:8e:db:9d:db:f1:7f:de:78:5e:dc:6b:cc:be:61:60:55:71:
56:44:63:57:5f:22:e2:8a:bb:ab:d8:fc:12:57:9c:cb:6e:2b:
8d:bd:19:36:09:83:6f:23:5d:ca:33:ad:c1:f8:d2:67:69:14:
ed:97:fe:4e:50:76:9c:5b:c0:36:7d:0a:bb:8b:31:9d:3b:9b:
e5:65:05:17:b1:39:8f:7a:6c:1c:47:d2:68:ec:b6:ac:c9:a9:
5d:2b:2f:3d:35:38:d1:bf:6b:7f:04:f1:45:e5:53:4a:75:31:
db:b5:91:84:b8:c9:31:24:06:fd:df:ca:cc:40:5c:f0:da:37:
49:68:7c:f7:3b:3f:b7:69:64:e3:9f:9c:d9:17:d6:72:be:0c:
b8:8c:72:be:7d:f3:f0:52:b6:9d:ad:cd:c7:60:db:b8:97:6e:
20:5d:68:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:12:57 2025 by rpki-client