Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/8d1756-225f-4579-b1e6-9d609770a9ea/1/ooDrRTVnOT9lKthzF3rVZfsgzUs.roa
File: ooDrRTVnOT9lKthzF3rVZfsgzUs.roa (raw, json)
Hash identifier: JM5vQLC18Zq9eN3fCRorJUWi3iGMZgF5Mp0NbIVX5Wo=
Subject key identifier: A2:80:EB:45:35:67:39:3F:65:2A:D8:73:17:7A:D5:65:FB:20:CD:4B
Certificate issuer: /CN=89d5d1288a3c2ae17f99cbb18917700189bd4720
Certificate serial: 018770999F01D0A2518D54B2FDCE844D5D38
Authority key identifier: 89:D5:D1:28:8A:3C:2A:E1:7F:99:CB:B1:89:17:70:01:89:BD:47:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/idXRKIo8KuF_mcuxiRdwAYm9RyA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/8d1756-225f-4579-b1e6-9d609770a9ea/1/ooDrRTVnOT9lKthzF3rVZfsgzUs.roa
Signing time: Tue 11 Apr 2023 13:55:28 +0000
ROA not before: Tue 11 Apr 2023 13:55:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7155
IP address blocks: 185.155.198.0/23 maxlen: 23
185.155.198.0/24 maxlen: 24
185.155.196.0/24 maxlen: 24
37.99.208.0/21 maxlen: 21
Validation: Failed, certificate revoked on Wed 28 Jun 2023 15:02:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:70:99:9f:01:d0:a2:51:8d:54:b2:fd:ce:84:4d:5d:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89d5d1288a3c2ae17f99cbb18917700189bd4720
Validity
Not Before: Apr 11 13:55:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a280eb453567393f652ad873177ad565fb20cd4b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:ce:4a:4f:f1:a5:72:f4:dd:c5:69:60:0f:f5:
35:b6:a8:10:fd:54:a5:de:9f:71:d8:60:b7:b6:11:
7c:68:48:90:dc:a4:45:39:c7:27:c4:2c:db:c2:d3:
29:00:a8:34:56:5b:0a:ab:2e:08:47:ae:54:68:a5:
a4:2b:c2:dd:62:74:c5:6f:ff:df:9f:9c:e8:8e:7c:
80:6d:42:ad:bf:99:32:28:6b:4d:90:ec:a8:bd:5f:
be:31:72:6a:e4:e0:5b:2c:a7:40:57:99:39:ef:13:
2a:46:f2:c2:f4:3b:c7:a3:8f:5d:b4:b9:f6:4c:20:
1e:6d:d2:7c:25:ba:90:a4:99:1c:56:cd:be:7c:b7:
4f:b7:88:50:84:b6:fe:48:23:8c:44:09:6c:65:01:
ae:63:dd:dd:b9:dc:df:83:a9:ee:14:97:34:a1:82:
ab:ba:f4:85:0c:10:1e:c2:ab:57:0c:46:fd:94:67:
a0:b6:b3:ea:3d:99:95:32:05:30:ba:19:a3:af:bb:
dc:d0:5d:fc:dd:66:33:32:5b:af:14:0a:24:f9:9c:
5b:61:9b:2e:4c:91:74:52:9f:03:51:48:ff:6d:d9:
60:23:89:4e:34:10:12:57:b7:35:57:4c:13:04:3e:
b4:cc:12:b1:5e:19:e4:a7:5a:04:c1:31:d8:a4:be:
c4:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:80:EB:45:35:67:39:3F:65:2A:D8:73:17:7A:D5:65:FB:20:CD:4B
X509v3 Authority Key Identifier:
keyid:89:D5:D1:28:8A:3C:2A:E1:7F:99:CB:B1:89:17:70:01:89:BD:47:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/idXRKIo8KuF_mcuxiRdwAYm9RyA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/8d1756-225f-4579-b1e6-9d609770a9ea/1/ooDrRTVnOT9lKthzF3rVZfsgzUs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/8d1756-225f-4579-b1e6-9d609770a9ea/1/idXRKIo8KuF_mcuxiRdwAYm9RyA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.99.208.0/21
185.155.196.0/24
185.155.198.0/23
Signature Algorithm: sha256WithRSAEncryption
4d:5b:c5:f1:94:6e:7d:ac:ab:32:ef:d2:2d:af:25:bc:32:e6:
95:ca:a3:d0:55:5b:1a:0f:fb:29:75:bb:87:f9:c8:9b:bd:79:
75:1f:2e:ac:28:68:03:ad:57:82:54:83:5e:51:d1:c8:3a:79:
07:ad:5c:4a:52:91:de:e9:cf:ed:eb:61:6e:f8:3a:8c:d2:91:
71:57:4d:16:81:d3:d0:f1:db:94:ae:d3:92:d8:9f:3d:da:27:
03:0b:3b:64:47:72:2c:61:d3:dd:42:05:0c:59:85:0b:4b:55:
cc:06:52:32:62:4d:e7:72:a5:65:16:74:c4:e0:05:de:88:c4:
34:fc:6c:e8:9c:b6:08:3c:98:a7:23:3e:de:b9:19:d5:ea:13:
60:fb:37:00:4f:e8:91:a4:75:d4:36:59:78:16:86:6e:0f:a5:
66:13:3e:8f:ed:54:62:9d:e5:00:eb:84:d0:5d:58:c3:fb:95:
6a:6a:e3:f7:a9:bf:57:a7:40:5f:62:a0:17:59:bb:81:36:81:
b9:62:b7:4f:e8:88:b0:fb:67:5f:77:62:85:09:a8:21:b2:bf:
92:d0:18:e5:33:e4:20:d1:db:9d:58:b1:d4:a2:a8:9d:af:b4:
df:84:74:b7:1b:c0:f8:e0:0e:a9:09:ab:66:08:67:27:b3:43:
99:e7:f9:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:17 2024 by rpki-client on console-fra.rpki-client.org