Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/c94c65-ea02-405a-bba7-ca0474adf373/1/aE08QpXOMobJl7U8oYg22QMrAyM.roa
File: aE08QpXOMobJl7U8oYg22QMrAyM.roa (raw, json)
Hash identifier: q2XPeJxY8NcKHA3CIKAG0xkUZlh4Agf9HUELlfRpwiA=
Subject key identifier: 68:4D:3C:42:95:CE:32:86:C9:97:B5:3C:A1:88:36:D9:03:2B:03:23
Certificate issuer: /CN=7826b604f6f8c03fe9df6c98e61f39eaed7555a5
Certificate serial: 0185728C8DDA39DA2046A70D41EE79BE4333
Authority key identifier: 78:26:B6:04:F6:F8:C0:3F:E9:DF:6C:98:E6:1F:39:EA:ED:75:55:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eCa2BPb4wD_p32yY5h856u11VaU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/c94c65-ea02-405a-bba7-ca0474adf373/1/aE08QpXOMobJl7U8oYg22QMrAyM.roa
Signing time: Mon 02 Jan 2023 12:54:51 +0000
ROA not before: Mon 02 Jan 2023 12:54:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203735
IP address blocks: 185.89.98.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:8c:8d:da:39:da:20:46:a7:0d:41:ee:79:be:43:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7826b604f6f8c03fe9df6c98e61f39eaed7555a5
Validity
Not Before: Jan 2 12:54:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=684d3c4295ce3286c997b53ca18836d9032b0323
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:3f:4b:6c:0d:55:28:f7:ea:72:c6:d5:98:f3:
4a:e6:28:3f:e1:33:4d:d7:ec:30:61:c7:f1:0b:f4:
85:c2:60:23:71:98:72:62:4f:d6:7f:d3:58:99:d0:
47:87:56:0e:56:5a:7d:f4:18:57:54:c3:c3:20:7d:
ba:8f:b4:69:06:3d:2d:5c:74:55:15:0d:f1:c1:22:
8c:cb:9e:b6:d5:9a:9f:23:1c:60:ea:33:26:12:a3:
6f:03:a2:8e:79:ef:08:6f:e5:22:7d:92:a6:2d:fc:
0e:5c:16:c5:bb:36:d0:37:11:02:49:ad:31:25:df:
f0:6e:78:58:b5:52:a2:fa:2d:2e:a6:76:2d:60:9c:
6f:e1:80:c7:64:e3:18:71:33:d9:3e:9b:1b:52:bd:
ab:38:75:ef:f4:a5:03:e7:8d:b4:7b:d3:eb:e4:76:
a5:60:85:ba:a6:d8:89:27:81:8a:44:72:99:ac:63:
04:19:f5:6d:cb:8f:86:09:de:8a:b0:9e:1e:12:98:
92:54:60:6c:7b:cc:fb:13:0e:50:50:09:17:0e:f6:
e1:db:43:4b:99:c7:1f:44:e7:5d:07:6d:e1:52:f1:
80:9a:00:dc:62:bd:d1:1c:5b:18:60:34:ff:5d:dd:
7a:db:32:92:3a:04:ae:13:53:50:38:ca:7a:63:b1:
93:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:4D:3C:42:95:CE:32:86:C9:97:B5:3C:A1:88:36:D9:03:2B:03:23
X509v3 Authority Key Identifier:
keyid:78:26:B6:04:F6:F8:C0:3F:E9:DF:6C:98:E6:1F:39:EA:ED:75:55:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eCa2BPb4wD_p32yY5h856u11VaU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/c94c65-ea02-405a-bba7-ca0474adf373/1/aE08QpXOMobJl7U8oYg22QMrAyM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/c94c65-ea02-405a-bba7-ca0474adf373/1/eCa2BPb4wD_p32yY5h856u11VaU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.89.98.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:03:72:83:cc:b8:0c:49:f1:55:6d:85:b1:e6:f4:20:ef:fb:
5a:4b:78:5f:ed:9e:e9:2e:07:92:fb:24:d3:d6:39:95:a4:97:
1a:cd:85:55:1a:30:90:b2:3e:f6:8a:fb:60:c2:9e:32:9e:c0:
66:6b:f8:2d:ad:a6:a7:c5:62:9d:87:43:05:34:11:40:fd:27:
25:7c:d6:36:86:af:cd:68:c4:75:04:18:e1:68:c2:ed:3c:6a:
fe:7c:a4:68:6d:56:4e:5f:fd:5e:87:ad:33:e6:da:63:0f:e1:
80:fa:6e:b8:fe:6e:9f:54:a3:7d:52:b8:c6:6a:ca:b2:42:6f:
71:d6:cc:61:6b:59:51:bc:0e:9e:ad:f6:41:98:5d:ae:35:1d:
c6:89:6e:2d:dd:11:21:79:44:b0:7a:a5:2d:db:55:f4:5f:ed:
dc:a1:5a:58:48:8a:2e:71:e8:df:2d:5f:62:ba:64:9b:35:f4:
b8:70:00:6c:5d:d6:44:75:35:d0:3f:2a:39:41:ad:8c:5f:39:
62:10:0a:9b:77:c5:28:6b:ee:ca:33:4c:b4:51:1e:8c:a7:43:
8b:b6:af:5e:49:a7:b3:12:08:12:ab:25:c5:6f:7a:fd:40:0e:
98:a1:28:9c:6f:07:e0:1a:4a:6a:bb:8a:ef:8d:25:d3:a8:62:
bb:37:f8:db
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVyjI3aOdogRqcNQe55vkMzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc4MjZiNjA0ZjZmOGMwM2ZlOWRmNmM5OGU2MWYzOWVhZWQ3
NTU1YTUwHhcNMjMwMTAyMTI1NDUxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2ODRkM2M0Mjk1Y2UzMjg2Yzk5N2I1M2NhMTg4MzZkOTAzMmIwMzIzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgD9LbA1VKPfqcsbVmPNK5ig/4TNN
1+wwYcfxC/SFwmAjcZhyYk/Wf9NYmdBHh1YOVlp99BhXVMPDIH26j7RpBj0tXHRV
FQ3xwSKMy5621ZqfIxxg6jMmEqNvA6KOee8Ib+UifZKmLfwOXBbFuzbQNxECSa0x
Jd/wbnhYtVKi+i0upnYtYJxv4YDHZOMYcTPZPpsbUr2rOHXv9KUD5420e9Pr5Hal
YIW6ptiJJ4GKRHKZrGMEGfVty4+GCd6KsJ4eEpiSVGBse8z7Ew5QUAkXDvbh20NL
mccfROddB23hUvGAmgDcYr3RHFsYYDT/Xd162zKSOgSuE1NQOMp6Y7GTvQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGhNPEKVzjKGyZe1PKGINtkDKwMjMB8GA1UdIwQY
MBaAFHgmtgT2+MA/6d9smOYfOertdVWlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZUNhMkJQYjR3RF9wMzJ5WTVoODU2dTExVmFVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NC9jOTRjNjUtZWEwMi00MDVhLWJiYTct
Y2EwNDc0YWRmMzczLzEvYUUwOFFwWE9Nb2JKbDdVOG9ZZzIyUU1yQXlNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85NC9jOTRjNjUtZWEwMi00MDVhLWJiYTctY2EwNDc0YWRmMzcz
LzEvZUNhMkJQYjR3RF9wMzJ5WTVoODU2dTExVmFVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuVliMA0G
CSqGSIb3DQEBCwUAA4IBAQAvA3KDzLgMSfFVbYWx5vQg7/taS3hf7Z7pLgeS+yTT
1jmVpJcazYVVGjCQsj72ivtgwp4ynsBma/gtraanxWKdh0MFNBFA/SclfNY2hq/N
aMR1BBjhaMLtPGr+fKRobVZOX/1eh60z5tpjD+GA+m64/m6fVKN9UrjGasqyQm9x
1sxha1lRvA6erfZBmF2uNR3GiW4t3REheUSweqUt21X0X+3coVpYSIoucejfLV9i
umSbNfS4cABsXdZEdTXQPyo5Qa2MXzliEAqbd8Uoa+7KM0y0UR6Mp0OLtq9eSaez
EggSqyXFb3r9QA6YoSicbwfgGkpqu4rvjSXTqGK7N/jb
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:29 2024 by rpki-client on console-ams.rpki-client.org