Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/3dac73-d7c7-40bb-ab55-95135daf5147/1/rmKD9xlmZ3at9qR7xlWUnZGC6kA.roa
File: rmKD9xlmZ3at9qR7xlWUnZGC6kA.roa (raw, json)
Hash identifier: PCa8D+Uwgh6gwKffz70h46r+/CpR7vm8hq2CBH8pEb4=
Subject key identifier: AE:62:83:F7:19:66:67:76:AD:F6:A4:7B:C6:55:94:9D:91:82:EA:40
Certificate issuer: /CN=5cb90fd62bcc0fe929dae53036fc55e511c54b45
Certificate serial: 018CC493326AEF7479B2914B8F4D686002BD
Authority key identifier: 5C:B9:0F:D6:2B:CC:0F:E9:29:DA:E5:30:36:FC:55:E5:11:C5:4B:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XLkP1ivMD-kp2uUwNvxV5RHFS0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/3dac73-d7c7-40bb-ab55-95135daf5147/1/rmKD9xlmZ3at9qR7xlWUnZGC6kA.roa
Signing time: Mon 01 Jan 2024 10:30:30 +0000
ROA not before: Mon 01 Jan 2024 10:30:30 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48563
IP address blocks: 89.39.174.0/23 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 01:48:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:93:32:6a:ef:74:79:b2:91:4b:8f:4d:68:60:02:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5cb90fd62bcc0fe929dae53036fc55e511c54b45
Validity
Not Before: Jan 1 10:30:30 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ae6283f719666776adf6a47bc655949d9182ea40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:a8:b6:af:9e:c5:a8:45:6d:6e:d4:7d:93:94:
a2:b4:a2:2a:c9:26:ce:91:54:bf:3d:d1:81:53:21:
2b:48:d7:aa:53:fc:3c:77:51:d2:49:99:c1:20:81:
9e:44:24:7a:13:1c:ea:81:17:3a:f0:00:d4:0a:57:
85:22:10:64:fb:29:51:73:5c:92:91:31:a3:f9:84:
65:c4:08:c6:ed:9c:85:f4:ab:c2:ba:b8:bd:47:74:
40:58:7b:01:c7:37:d4:5b:b3:94:2f:05:f5:bc:51:
f9:2e:c9:9a:8c:46:ac:79:72:8e:06:13:62:2d:30:
89:a9:f8:17:bb:56:51:cf:04:62:47:6f:a2:26:51:
71:ca:7a:58:bd:de:22:9b:85:74:25:86:ee:68:8f:
f1:ee:ce:62:51:04:59:1f:6a:82:95:78:96:c9:b3:
b6:60:64:b4:18:4e:1a:e4:41:58:17:4e:fb:d2:73:
3a:b1:b0:80:47:7f:8c:5e:bd:42:25:8e:78:84:44:
68:7b:3c:38:0d:14:0a:6b:bb:27:b3:19:0a:74:75:
16:94:b1:98:8e:12:9c:1c:cc:4d:ac:a1:c4:3b:06:
5d:23:b9:9b:36:a8:fe:7f:3b:c8:4b:95:c8:31:8f:
86:2c:5a:10:c8:34:12:4f:d7:dc:cd:64:bc:8c:21:
1d:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:62:83:F7:19:66:67:76:AD:F6:A4:7B:C6:55:94:9D:91:82:EA:40
X509v3 Authority Key Identifier:
keyid:5C:B9:0F:D6:2B:CC:0F:E9:29:DA:E5:30:36:FC:55:E5:11:C5:4B:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XLkP1ivMD-kp2uUwNvxV5RHFS0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/3dac73-d7c7-40bb-ab55-95135daf5147/1/rmKD9xlmZ3at9qR7xlWUnZGC6kA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/3dac73-d7c7-40bb-ab55-95135daf5147/1/XLkP1ivMD-kp2uUwNvxV5RHFS0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.39.174.0/23
Signature Algorithm: sha256WithRSAEncryption
3d:08:3e:7e:a8:03:da:8a:37:6d:05:80:55:81:82:10:d6:5a:
68:66:06:f4:e8:d2:5c:57:7e:e4:1d:56:ae:6f:dc:ac:34:0c:
2c:78:23:7d:9a:f1:bd:75:4e:25:9f:9a:f0:6f:2c:23:eb:55:
1f:c7:ed:24:aa:52:85:20:e7:db:05:2b:35:f0:33:26:a9:36:
66:4a:3c:88:5f:14:51:24:78:e5:90:da:03:9c:4b:12:8c:ba:
53:7f:8f:4d:ed:f5:8e:76:f6:45:7e:52:2c:36:09:22:47:8a:
eb:40:07:d2:6b:6d:e6:1f:73:bb:b2:10:a1:30:ef:49:c9:70:
22:3a:cd:4f:e6:a3:de:74:59:f0:80:b5:26:24:9f:5e:dc:13:
b2:37:83:f8:0a:44:63:18:45:1a:ac:30:11:5e:65:58:4a:8d:
0b:b4:45:fd:e9:c7:4a:51:e6:ba:2b:47:af:ee:ae:ec:f4:61:
af:86:d2:9c:20:8c:91:98:6e:93:41:b4:c7:82:be:12:0b:5d:
d4:4d:ab:68:56:83:e7:b9:10:f1:57:1e:5f:a3:50:49:6e:6f:
0e:f0:63:f7:09:b9:3f:e8:b5:31:52:0f:15:d0:92:77:ad:d0:
ea:3b:e7:5f:57:cb:93:6f:19:12:fd:a3:30:88:05:e0:fe:78:
ea:61:89:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:20:00 2025 by rpki-client