Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/185cb5-4752-43b8-8e46-c43ab2a12d55/1/eDnXMfJH6u06gQOzRErznOxrEmw.roa
File: eDnXMfJH6u06gQOzRErznOxrEmw.roa (raw, json)
Hash identifier: yJYy5+BvkgkdVg0cLCuaZGNC2g6Y87QoMSkr1xpNyhs=
Subject key identifier: 78:39:D7:31:F2:47:EA:ED:3A:81:03:B3:44:4A:F3:9C:EC:6B:12:6C
Certificate issuer: /CN=87f41ae0779e37defc69b2a5b0f7ab8fd40cd3e7
Certificate serial: 01856F30037A77C49099B60968CE69D85CD6
Authority key identifier: 87:F4:1A:E0:77:9E:37:DE:FC:69:B2:A5:B0:F7:AB:8F:D4:0C:D3:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h_Qa4HeeN978abKlsPerj9QM0-c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/185cb5-4752-43b8-8e46-c43ab2a12d55/1/eDnXMfJH6u06gQOzRErznOxrEmw.roa
Signing time: Sun 01 Jan 2023 21:14:55 +0000
ROA not before: Sun 01 Jan 2023 21:14:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199087
IP address blocks: 89.190.0.0/19 maxlen: 19
185.151.76.0/22 maxlen: 22
2a03:7c00::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:30:03:7a:77:c4:90:99:b6:09:68:ce:69:d8:5c:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87f41ae0779e37defc69b2a5b0f7ab8fd40cd3e7
Validity
Not Before: Jan 1 21:14:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7839d731f247eaed3a8103b3444af39cec6b126c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:6c:6c:74:93:ad:03:cf:ca:95:54:8d:b4:7f:
43:52:a2:6b:82:85:e4:e2:c3:63:c8:14:6f:7b:1f:
2b:6b:7c:bd:5e:5e:9f:b7:bf:c8:79:4f:d1:84:c6:
5a:03:4d:99:ce:3d:0f:cf:4a:29:ca:fe:05:1f:3d:
e8:fa:da:c6:da:c5:c7:bc:d1:50:7b:d7:dc:4f:b8:
e7:c7:4b:f4:fe:e3:14:dd:28:e5:81:da:25:06:e9:
06:5a:0d:b8:51:12:9d:a1:57:bc:04:91:8b:f4:77:
11:5f:0f:36:3a:53:2d:d2:81:7e:2d:ae:51:d9:5d:
50:5b:ef:1e:02:41:c6:6b:49:19:e6:9d:3a:a9:81:
71:b0:1d:bf:64:75:99:aa:3b:10:75:f1:19:56:81:
6f:4d:62:78:4c:ca:ad:23:82:cd:8f:cc:d5:1a:0f:
7b:f5:fc:87:5d:fd:7e:bb:54:ff:d2:bb:b6:5e:f9:
5d:16:f0:88:a1:86:ad:99:48:c0:b8:d6:71:fe:7e:
18:3b:02:23:43:f3:e3:94:20:cf:3c:a8:e9:73:33:
06:83:e7:b4:68:c6:70:bb:c1:7e:66:24:36:67:ae:
d0:1a:77:84:18:18:ec:c5:aa:96:8c:45:d4:71:34:
4f:64:cb:68:cb:e4:af:76:ab:51:5f:4b:24:f8:1f:
ad:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:39:D7:31:F2:47:EA:ED:3A:81:03:B3:44:4A:F3:9C:EC:6B:12:6C
X509v3 Authority Key Identifier:
keyid:87:F4:1A:E0:77:9E:37:DE:FC:69:B2:A5:B0:F7:AB:8F:D4:0C:D3:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h_Qa4HeeN978abKlsPerj9QM0-c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/185cb5-4752-43b8-8e46-c43ab2a12d55/1/eDnXMfJH6u06gQOzRErznOxrEmw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/185cb5-4752-43b8-8e46-c43ab2a12d55/1/h_Qa4HeeN978abKlsPerj9QM0-c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.190.0.0/19
185.151.76.0/22
IPv6:
2a03:7c00::/32
Signature Algorithm: sha256WithRSAEncryption
3a:d4:1b:27:ff:53:2a:a9:a1:12:ff:b3:d5:44:07:2c:99:23:
38:40:a6:59:44:3d:07:2d:94:5c:16:90:4b:77:66:28:fc:a3:
a0:d8:93:88:17:26:d2:fc:ca:65:6c:4e:5c:c8:4d:b8:d0:43:
2e:43:da:8a:b8:01:4d:49:0b:d5:00:e7:d2:5a:61:93:6f:86:
98:c3:85:94:be:c7:b4:0e:4a:db:ce:7e:f9:91:6f:c8:9c:3c:
15:86:fe:37:0e:78:f8:1f:d3:ed:f3:db:61:65:f5:59:67:c4:
9c:d0:b4:fc:1c:5d:1e:36:e2:86:e6:c0:86:15:ea:a8:c8:65:
72:cc:b4:e9:7a:2e:53:14:01:6e:65:33:bb:0d:6d:6f:1b:cf:
ce:63:79:08:bf:ae:08:fe:eb:5f:9b:e0:10:3e:5f:c3:2b:47:
fd:52:ba:42:e4:c9:b1:bc:6c:c5:d6:ff:9e:1d:a4:70:90:b4:
6d:94:d4:0d:74:42:8e:22:d1:95:48:9e:40:0a:30:28:b7:cc:
0b:fa:53:8f:5e:63:df:da:63:f7:8e:00:57:49:ba:d5:75:3c:
b3:11:f0:1b:bb:cd:30:0c:28:08:02:5f:4f:ae:a0:25:7e:6b:
54:96:0c:ee:fb:59:71:da:fb:f9:cf:0b:63:e7:dc:c4:72:e5:
cd:ba:9d:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:09 2024 by rpki-client on console-ams.rpki-client.org