Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/067630-306e-4c37-8bcc-4f021c73ef74/1/89AU1d6T4YnjNABo3cejMt7PIEQ.roa
File: 89AU1d6T4YnjNABo3cejMt7PIEQ.roa (raw, json)
Hash identifier: YD3VM+GF8sEfVyrT0C9a3jO7ltYhpJ2ZB3q+ypuWQ04=
Subject key identifier: F3:D0:14:D5:DE:93:E1:89:E3:34:00:68:DD:C7:A3:32:DE:CF:20:44
Certificate issuer: /CN=344fdad10ee55b3282a64246a41dc61a8922d25d
Certificate serial: 019219174740823EB23FC683750D377ADA4C
Authority key identifier: 34:4F:DA:D1:0E:E5:5B:32:82:A6:42:46:A4:1D:C6:1A:89:22:D2:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NE_a0Q7lWzKCpkJGpB3GGoki0l0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/067630-306e-4c37-8bcc-4f021c73ef74/1/89AU1d6T4YnjNABo3cejMt7PIEQ.roa
Signing time: Sun 22 Sep 2024 09:36:48 +0000
ROA not before: Sun 22 Sep 2024 09:36:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43395
IP address blocks: 185.145.184.0/22 maxlen: 22
185.186.50.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 07 Oct 2024 08:46:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:19:17:47:40:82:3e:b2:3f:c6:83:75:0d:37:7a:da:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=344fdad10ee55b3282a64246a41dc61a8922d25d
Validity
Not Before: Sep 22 09:36:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f3d014d5de93e189e3340068ddc7a332decf2044
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:8a:3c:2a:20:7f:06:17:25:c2:1d:50:0b:ac:
bd:55:7f:62:20:a4:e6:c4:37:e5:97:43:db:5e:7b:
cc:b1:e5:25:92:53:b6:2d:d6:59:b3:2a:29:58:a3:
44:01:99:70:ac:61:c9:7c:c4:4f:0a:95:66:66:49:
52:b2:ec:f9:a0:a9:d3:44:8d:02:bd:7a:96:b8:bc:
9d:40:61:b6:67:a0:cf:ef:ed:9e:3f:0f:6d:a4:d8:
f6:6e:71:48:96:00:eb:80:59:be:02:24:d7:99:f5:
0d:da:26:5e:8a:70:4b:f3:79:af:ed:49:bf:86:bd:
c3:d0:2a:44:96:92:a8:2c:73:f1:5f:55:b1:2f:26:
31:a7:1f:ad:af:87:84:32:01:96:3c:ef:f2:9a:1a:
b2:6e:aa:17:a0:a4:1a:12:b8:8a:26:9a:32:7f:9e:
c7:f2:0c:64:16:01:56:51:41:68:e2:3c:21:f5:e0:
96:ed:ab:37:75:3b:fd:26:1b:81:bf:89:6e:7c:75:
63:08:61:9d:80:61:2c:2c:8d:df:42:d3:69:d8:d2:
be:18:5e:9d:3d:d7:09:8c:97:49:97:52:91:cd:03:
24:bc:93:92:50:7c:98:ac:a3:26:49:96:7f:4d:ed:
5b:12:58:58:cc:fc:fc:9f:e1:05:fc:c8:08:f0:27:
8f:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:D0:14:D5:DE:93:E1:89:E3:34:00:68:DD:C7:A3:32:DE:CF:20:44
X509v3 Authority Key Identifier:
keyid:34:4F:DA:D1:0E:E5:5B:32:82:A6:42:46:A4:1D:C6:1A:89:22:D2:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NE_a0Q7lWzKCpkJGpB3GGoki0l0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/067630-306e-4c37-8bcc-4f021c73ef74/1/89AU1d6T4YnjNABo3cejMt7PIEQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/067630-306e-4c37-8bcc-4f021c73ef74/1/NE_a0Q7lWzKCpkJGpB3GGoki0l0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.145.184.0/22
185.186.50.0/24
Signature Algorithm: sha256WithRSAEncryption
72:18:f3:74:9b:80:08:f3:1b:aa:e9:d6:20:a2:bc:87:de:f7:
aa:ef:f7:db:f0:19:43:15:71:e3:a7:b5:70:c0:24:8a:ea:4b:
44:6a:fb:f3:39:e2:d1:45:b5:60:24:23:a0:45:68:bf:ce:09:
3d:5f:c6:dc:e9:28:d2:00:24:08:03:8b:10:36:3e:ad:b0:7a:
31:ce:e8:7a:49:fd:9a:58:1c:65:88:5d:f6:4c:6c:03:c7:c8:
04:3a:90:0f:01:5b:86:a0:72:2d:35:1d:4d:6e:51:7c:ed:46:
48:cd:80:db:f6:0f:94:6d:5b:f9:e0:67:da:fe:89:bc:7d:fd:
92:3a:77:19:42:65:98:31:69:a2:64:59:7d:dc:77:4d:4a:d0:
95:f6:d1:d7:e2:1e:eb:d1:f9:20:31:a8:46:fe:90:60:e7:48:
a3:20:04:ad:a9:bf:61:ae:30:0c:96:1f:c3:68:dc:71:cb:64:
7a:c7:43:6b:1a:32:22:1a:38:6c:a6:65:02:46:82:fd:6d:54:
70:6f:fa:f0:77:1c:cc:a5:e0:4c:6b:f8:db:21:51:ae:cd:c4:
5c:7f:eb:30:2d:d1:fb:97:bc:45:35:6d:0f:8b:02:20:3f:45:
ba:79:d8:2d:6c:6e:f0:28:7b:ab:37:25:68:98:dc:6e:8b:89:
cf:7c:3a:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:25:21 2025 by rpki-client