Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/Mr38R-NgTWPRZPiLG9zX8XkjCLA.roa
File: Mr38R-NgTWPRZPiLG9zX8XkjCLA.roa (raw, json)
Hash identifier: DcUPTnZAeBG5Tyafg7Ei7SHp3xV2kB26/qj3jyR4UcM=
Subject key identifier: 32:BD:FC:47:E3:60:4D:63:D1:64:F8:8B:1B:DC:D7:F1:79:23:08:B0
Certificate issuer: /CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Certificate serial: 018D8987CFCE6800AA47D189799E5876694C
Authority key identifier: C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/Mr38R-NgTWPRZPiLG9zX8XkjCLA.roa
Signing time: Thu 08 Feb 2024 16:23:15 +0000
ROA not before: Thu 08 Feb 2024 16:23:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 213094
IP address blocks: 89.22.196.0/22 maxlen: 24
Validation: Failed, certificate revoked on Thu 08 Feb 2024 17:52:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:89:87:cf:ce:68:00:aa:47:d1:89:79:9e:58:76:69:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Validity
Not Before: Feb 8 16:23:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=32bdfc47e3604d63d164f88b1bdcd7f1792308b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:45:99:df:24:e0:fd:bc:9d:0e:31:ec:5a:c0:
95:57:b3:df:7c:c2:ed:82:50:42:1d:74:c2:5e:c6:
2a:cb:47:16:27:9b:29:37:e8:ad:33:79:79:a9:ca:
d2:eb:a6:e2:d6:70:eb:5c:d6:f7:40:07:ee:4c:75:
13:9c:85:78:5d:c1:9c:d4:ca:3d:8a:60:ed:cb:d5:
36:96:30:33:6b:1f:e1:6c:f5:97:ac:ef:3f:c3:fe:
72:34:c2:c3:12:d4:c4:fb:99:e2:94:06:a7:67:df:
f0:14:e2:85:e0:4b:76:ed:f3:e7:d2:f6:f0:7a:4d:
3d:3c:22:81:79:98:aa:d3:75:e6:04:67:60:6c:a9:
5a:66:c4:2d:16:27:f0:70:3b:25:09:59:1b:ad:8e:
82:ab:a6:bb:39:f0:2d:fc:35:bb:c8:7b:21:f2:11:
05:03:10:6d:a6:57:c5:6a:a8:79:32:4b:3b:46:f7:
2c:00:1e:f0:31:c5:a1:40:b9:e1:78:30:24:bd:14:
a5:c7:5d:fa:6a:58:83:ea:c1:04:0a:20:91:06:a1:
56:1f:ef:06:a4:3a:ab:1b:3f:e0:79:65:7e:8a:26:
b6:58:cc:cb:20:52:9b:36:00:4c:30:58:1b:8f:d0:
b8:c6:8c:43:15:55:6a:5a:94:7b:e3:b1:33:58:2a:
7c:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:BD:FC:47:E3:60:4D:63:D1:64:F8:8B:1B:DC:D7:F1:79:23:08:B0
X509v3 Authority Key Identifier:
keyid:C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/Mr38R-NgTWPRZPiLG9zX8XkjCLA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/xm2dULO4nVHIqiST5-9HAdYlHa0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.22.196.0/22
Signature Algorithm: sha256WithRSAEncryption
8b:98:35:12:ee:43:4a:15:4f:99:f4:f3:f8:0a:23:df:ba:14:
f2:31:98:86:da:0c:f6:b3:e3:39:f5:39:7d:2d:dd:b0:37:11:
ac:7e:71:9b:02:f0:1d:b7:64:bd:8e:fd:e7:d4:c2:2f:33:61:
d2:34:fe:b7:63:51:1a:be:ef:21:e0:7b:db:7f:af:ef:3b:12:
f8:04:1f:20:87:09:0d:af:20:90:28:63:98:7b:96:0c:1a:ed:
c4:1c:b1:9b:cf:e0:3d:b1:e5:83:f7:c7:d9:94:5b:7b:bc:a5:
93:94:0f:ad:08:13:ee:23:c1:52:0d:f0:01:89:35:14:3e:c7:
b8:c7:4e:ab:38:b5:aa:89:47:80:bd:65:21:63:8a:96:5d:6b:
b4:1a:8d:79:d5:4a:a8:5f:7a:5c:c0:bc:c8:01:12:89:94:f6:
6e:f4:6a:41:3a:6d:1a:6e:31:51:2f:67:f7:45:80:92:b6:04:
73:0e:f5:0d:2c:ad:cd:47:cf:47:1f:25:af:85:20:77:4d:f2:
c2:c0:66:30:c6:86:c2:a9:a3:69:c9:0f:43:a7:09:fe:1e:55:
6f:08:be:f5:e4:ca:fb:3d:4a:8f:2a:b7:9d:15:48:13:73:26:
12:c4:e7:2b:b7:b8:1f:bb:c8:45:f6:3b:88:0e:02:8b:99:48:
67:c8:18:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:36 2024 by rpki-client on console-ams.rpki-client.org