Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/2117bc-1f9e-4590-a550-4269b56bf7d4/1/0mQdWOcS1-uJk94c9HPjJzdthSs.roa
File: 0mQdWOcS1-uJk94c9HPjJzdthSs.roa (raw, json)
Hash identifier: lSM5Tntk1j1q/h/UItZ1Yb+tbKlYF2GoDTitR/6kVBs=
Subject key identifier: D2:64:1D:58:E7:12:D7:EB:89:93:DE:1C:F4:73:E3:27:37:6D:85:2B
Certificate issuer: /CN=62a15cc88659f578cc159c52b3a7e9ec5819fb20
Certificate serial: 018CC8017CA6062F37EAC19A528F82653161
Authority key identifier: 62:A1:5C:C8:86:59:F5:78:CC:15:9C:52:B3:A7:E9:EC:58:19:FB:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YqFcyIZZ9XjMFZxSs6fp7FgZ-yA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/2117bc-1f9e-4590-a550-4269b56bf7d4/1/0mQdWOcS1-uJk94c9HPjJzdthSs.roa
Signing time: Tue 02 Jan 2024 02:29:49 +0000
ROA not before: Tue 02 Jan 2024 02:29:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 1239
IP address blocks: 93.89.216.0/24 maxlen: 24
93.89.218.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 31 Jul 2024 08:44:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:7c:a6:06:2f:37:ea:c1:9a:52:8f:82:65:31:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62a15cc88659f578cc159c52b3a7e9ec5819fb20
Validity
Not Before: Jan 2 02:29:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d2641d58e712d7eb8993de1cf473e327376d852b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:2d:70:96:3c:06:92:93:d6:94:f2:d9:d0:84:
16:9e:1c:8e:0f:e4:87:a2:d8:6a:a7:0c:c7:56:6b:
f3:21:d0:46:06:3e:05:bb:92:51:a9:83:51:21:5e:
ce:8e:9b:7a:5c:8c:1b:2b:ae:74:d4:d3:4f:21:4c:
3f:f3:14:3f:2b:ee:6b:98:96:d0:a9:3e:a1:83:70:
2d:eb:b1:f9:2b:60:f0:b0:50:7d:23:6a:79:da:17:
66:9e:18:e5:62:56:7e:a7:d8:cf:3a:9d:69:c0:a4:
bf:4c:79:d1:9c:1f:18:e1:a6:f7:1a:e5:e6:27:93:
e1:08:18:df:fd:8a:ba:d7:0d:3f:7c:ee:d7:65:59:
10:a8:14:3c:32:ee:5f:aa:46:66:9a:53:30:e1:b9:
94:98:fb:d0:aa:93:51:16:9e:ed:5d:8d:e8:ff:0d:
b5:67:44:b5:df:43:93:ac:c4:98:f6:a8:8a:ff:44:
44:83:b3:67:69:f6:af:28:02:f2:8b:8d:13:18:26:
ff:f1:80:13:0f:26:e6:a7:cc:89:99:1b:6d:25:8c:
d7:33:cb:1b:5b:82:34:47:48:e6:a6:77:48:c5:85:
a6:7d:1a:92:d4:b8:8b:f2:58:12:1a:50:a1:0f:92:
a4:55:1f:87:8b:0a:26:16:b6:7e:a0:f3:b4:1f:bb:
0f:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:64:1D:58:E7:12:D7:EB:89:93:DE:1C:F4:73:E3:27:37:6D:85:2B
X509v3 Authority Key Identifier:
keyid:62:A1:5C:C8:86:59:F5:78:CC:15:9C:52:B3:A7:E9:EC:58:19:FB:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YqFcyIZZ9XjMFZxSs6fp7FgZ-yA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/2117bc-1f9e-4590-a550-4269b56bf7d4/1/0mQdWOcS1-uJk94c9HPjJzdthSs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/2117bc-1f9e-4590-a550-4269b56bf7d4/1/YqFcyIZZ9XjMFZxSs6fp7FgZ-yA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.89.216.0/24
93.89.218.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:f1:37:04:8c:36:81:57:7b:e1:7e:d0:fc:1e:03:ab:6c:c2:
c0:4e:b9:82:18:98:2e:b3:4f:5d:dd:18:56:6c:7c:bd:f5:73:
ce:94:da:6b:8b:36:c2:1c:17:22:42:32:97:f6:bc:82:d6:ad:
71:99:15:5f:81:d2:5f:ad:a5:63:a0:8f:f8:bd:8a:98:b6:a0:
80:b8:e2:b0:5d:b3:50:c6:50:f3:b1:20:c5:2e:d3:7d:24:82:
87:4a:0d:dc:0f:aa:ac:ce:5a:8f:4c:5d:6e:44:db:79:f4:0e:
bb:34:88:ad:5f:6e:e6:cf:18:e7:08:cc:aa:96:65:93:28:e4:
15:81:c2:f3:be:60:d0:87:20:18:d5:31:b4:17:03:f6:45:74:
78:0c:68:a6:60:40:a8:ca:35:1f:91:52:63:75:ff:15:81:72:
dd:1a:cb:31:89:aa:c7:7c:b3:9e:44:f8:f7:08:45:59:2e:41:
f9:76:46:bc:67:90:2c:89:2c:9b:8b:a0:4c:e9:d9:65:36:90:
c8:e0:77:ea:ca:35:ac:23:9e:15:fd:41:9c:6b:cf:3d:24:d9:
a8:48:3a:de:ec:bf:4f:d8:35:fe:a8:c7:40:1c:72:e0:df:c1:
38:96:f2:d8:cd:63:ff:2f:09:ec:69:fe:6e:f1:09:2d:49:2f:
e7:53:54:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 31 12:12:33 2024 by rpki-client on console-ams.rpki-client.org