Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/e348f1-bb70-4b34-be12-219e79d84e43/1/x2sWmMD0vQbhbRicj3VtLqdTqng.roa
File: x2sWmMD0vQbhbRicj3VtLqdTqng.roa (raw, json)
Hash identifier: m3ZS72hqvRKz1dmEWZqMWNxlTEA2Ci7cCubNv+WA5nM=
Subject key identifier: C7:6B:16:98:C0:F4:BD:06:E1:6D:18:9C:8F:75:6D:2E:A7:53:AA:78
Certificate issuer: /CN=c4cc02f8fa74cf0da81e8ce2943ea7f9ed2a85f4
Certificate serial: 018B09C6788FE49E3A0C205A10BBF3A242C9
Authority key identifier: C4:CC:02:F8:FA:74:CF:0D:A8:1E:8C:E2:94:3E:A7:F9:ED:2A:85:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xMwC-Pp0zw2oHozilD6n-e0qhfQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/e348f1-bb70-4b34-be12-219e79d84e43/1/x2sWmMD0vQbhbRicj3VtLqdTqng.roa
Signing time: Sat 07 Oct 2023 10:54:43 +0000
ROA not before: Sat 07 Oct 2023 10:54:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57069
IP address blocks: 89.22.64.0/24 maxlen: 24
89.22.66.0/23 maxlen: 23
89.22.68.0/22 maxlen: 22
89.22.72.0/21 maxlen: 21
89.22.84.0/22 maxlen: 22
89.22.88.0/21 maxlen: 21
Validation: Failed, certificate revoked on Sat 07 Oct 2023 19:59:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:09:c6:78:8f:e4:9e:3a:0c:20:5a:10:bb:f3:a2:42:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4cc02f8fa74cf0da81e8ce2943ea7f9ed2a85f4
Validity
Not Before: Oct 7 10:54:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c76b1698c0f4bd06e16d189c8f756d2ea753aa78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:90:c4:61:9d:e7:69:41:0a:1d:85:57:ea:14:
c1:8f:1a:1e:64:e3:fd:9e:44:b4:90:ad:02:4b:5f:
ec:dc:be:ef:cd:5c:be:75:f1:e4:d4:f8:80:8a:4a:
b6:9e:4d:3c:fb:a8:33:62:5f:a6:2f:fd:e0:fa:d8:
9d:5d:0b:9c:c5:79:53:fd:3d:95:c9:4d:e6:13:2f:
04:4c:02:fe:88:97:81:f3:01:ca:ad:85:d7:61:4f:
08:6b:a2:ab:13:7c:c4:c4:a4:17:3d:aa:d5:f2:11:
a1:bb:d7:d2:09:b6:93:2c:32:8b:a8:7e:01:46:bc:
55:bb:08:02:9f:3e:6d:6d:d7:03:da:9a:3f:05:90:
dd:54:ec:68:4e:3a:09:d4:83:45:88:bc:e2:da:9b:
35:58:46:b6:1e:9b:ef:8c:19:83:9a:70:c4:13:65:
b5:b8:15:92:55:6c:75:53:35:d2:43:38:69:75:e8:
da:0a:82:55:9d:f0:7d:b8:ff:5d:45:f8:81:0e:7e:
8d:6b:5b:8d:4c:93:c3:76:cf:bb:2f:fb:86:b6:1e:
f1:43:cd:98:23:db:a4:97:e2:b4:ce:95:b9:22:16:
b8:ba:52:d6:a3:e8:48:1b:ce:c0:76:bc:e4:a1:e8:
9c:0d:2a:18:d9:ec:a2:c2:52:a4:4b:fc:b1:c4:10:
82:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:6B:16:98:C0:F4:BD:06:E1:6D:18:9C:8F:75:6D:2E:A7:53:AA:78
X509v3 Authority Key Identifier:
keyid:C4:CC:02:F8:FA:74:CF:0D:A8:1E:8C:E2:94:3E:A7:F9:ED:2A:85:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xMwC-Pp0zw2oHozilD6n-e0qhfQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/e348f1-bb70-4b34-be12-219e79d84e43/1/x2sWmMD0vQbhbRicj3VtLqdTqng.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/e348f1-bb70-4b34-be12-219e79d84e43/1/xMwC-Pp0zw2oHozilD6n-e0qhfQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.22.64.0/24
89.22.66.0-89.22.79.255
89.22.84.0-89.22.95.255
Signature Algorithm: sha256WithRSAEncryption
78:7d:07:b0:33:44:5f:e3:57:ac:77:ce:8a:18:e8:3e:a2:99:
0d:ae:35:d7:07:91:91:02:4b:9b:4c:48:35:5a:8e:3a:7c:90:
20:82:9f:ba:0a:2a:6e:57:e1:53:04:ba:6d:67:ba:ac:f7:46:
49:40:75:6d:5c:1e:45:cb:38:aa:49:a9:d2:6c:d0:5a:23:52:
2f:62:50:ff:15:18:87:bb:c5:7c:14:2b:0f:b1:fe:df:54:9e:
92:c1:c6:17:f7:e1:e1:c4:8e:39:18:d2:2d:d4:5b:b3:73:ca:
7c:79:c7:2e:85:03:28:df:2e:c6:f2:21:54:a0:3b:b3:fd:8a:
63:7b:02:4d:3f:03:9a:b8:0a:6c:2d:d7:ce:ec:1a:a8:72:d2:
bf:c1:7f:39:29:cc:51:92:36:6a:f1:b8:52:17:f3:49:3a:1e:
e9:ea:ea:cd:9d:b6:75:dc:dc:3b:f9:4f:d7:95:c6:ae:87:e4:
e8:43:56:8a:0c:6b:16:83:b3:2d:d5:b3:f1:8f:9b:8f:71:ce:
c0:1f:58:da:1d:55:f1:a3:0d:69:56:aa:5e:b9:4c:ff:d5:31:
8e:22:2a:5b:b9:bd:d2:b3:fb:ef:2a:dd:f2:84:df:a9:06:ec:
4f:33:3f:f9:cf:b6:68:08:16:b4:4b:9d:51:04:aa:46:92:5b:
96:09:68:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:19 2024 by rpki-client on console-fra.rpki-client.org