Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/1c1eb2-1f65-4f71-8b32-b4bfe456dde0/1/N-Ghc3AuuGgyQTQ6Y79u7n_qCm4.roa
File: N-Ghc3AuuGgyQTQ6Y79u7n_qCm4.roa (raw, json)
Hash identifier: kwjxNLQ3SXTD2bvFmFTGS8yLPJsTGqGr+KwzNGaMUZI=
Subject key identifier: 37:E1:A1:73:70:2E:B8:68:32:41:34:3A:63:BF:6E:EE:7F:EA:0A:6E
Certificate issuer: /CN=996721831afb8b38307b49f5b9ee6292ad1e5850
Certificate serial: 01859C6D2D6C220DB74B938E2BA3F169A9AB
Authority key identifier: 99:67:21:83:1A:FB:8B:38:30:7B:49:F5:B9:EE:62:92:AD:1E:58:50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mWchgxr7izgwe0n1ue5ikq0eWFA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/1c1eb2-1f65-4f71-8b32-b4bfe456dde0/1/N-Ghc3AuuGgyQTQ6Y79u7n_qCm4.roa
Signing time: Tue 10 Jan 2023 16:04:38 +0000
ROA not before: Tue 10 Jan 2023 16:04:38 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212041
IP address blocks: 89.43.152.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:9c:6d:2d:6c:22:0d:b7:4b:93:8e:2b:a3:f1:69:a9:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=996721831afb8b38307b49f5b9ee6292ad1e5850
Validity
Not Before: Jan 10 16:04:38 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=37e1a173702eb8683241343a63bf6eee7fea0a6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:9c:ca:ce:57:3b:2e:1a:15:7a:23:96:9d:f3:
a9:bd:8d:f1:ed:8b:40:21:00:4b:d4:0d:13:a3:95:
75:11:23:e0:25:12:ec:99:c8:fe:6c:6b:54:8f:6e:
94:c7:5d:18:f1:6a:74:00:ba:cb:5c:f1:89:35:1b:
04:b5:a1:e6:de:18:1b:76:59:f7:12:66:87:90:c6:
e4:db:81:a5:80:26:6f:84:fe:68:01:58:bd:45:ac:
59:1f:52:41:8d:d9:bc:22:d0:3c:ba:d7:4b:84:10:
fb:75:18:b1:72:5c:34:2e:f5:f0:80:a0:c3:6d:4b:
19:35:7f:50:67:16:6d:95:a0:86:f7:2e:10:bf:ea:
41:2a:97:0b:a8:2c:f1:78:4a:ff:c1:a2:02:48:0f:
73:09:21:c9:75:57:fd:88:0c:38:e7:c2:bd:f1:93:
33:b6:8b:d0:41:12:91:5b:77:22:fd:4c:78:ec:9d:
44:02:65:6d:cf:08:33:e9:1a:40:1f:0f:1a:d7:35:
d9:d4:df:0e:49:a5:62:ac:aa:c6:13:6c:9f:9e:d3:
03:2f:6f:65:aa:41:9a:8d:97:1a:01:20:00:fc:5b:
e6:fa:48:91:59:ed:67:83:23:00:e7:c4:76:96:fc:
0d:23:0a:c5:54:47:d3:ff:4e:2f:cf:ae:fe:c9:e3:
de:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:E1:A1:73:70:2E:B8:68:32:41:34:3A:63:BF:6E:EE:7F:EA:0A:6E
X509v3 Authority Key Identifier:
keyid:99:67:21:83:1A:FB:8B:38:30:7B:49:F5:B9:EE:62:92:AD:1E:58:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mWchgxr7izgwe0n1ue5ikq0eWFA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/1c1eb2-1f65-4f71-8b32-b4bfe456dde0/1/N-Ghc3AuuGgyQTQ6Y79u7n_qCm4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/1c1eb2-1f65-4f71-8b32-b4bfe456dde0/1/mWchgxr7izgwe0n1ue5ikq0eWFA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.43.152.0/22
Signature Algorithm: sha256WithRSAEncryption
3a:1e:3c:47:fe:b6:f6:d6:40:5d:93:d0:4d:57:14:80:12:68:
b0:23:5b:b1:f4:f3:62:75:67:11:fd:50:3a:4b:b6:5e:25:7d:
f0:fe:19:2c:6c:35:94:a3:de:44:13:aa:57:87:76:ff:00:35:
59:3e:19:24:9a:4c:a4:73:a5:38:e5:f0:d4:0d:5e:b3:71:2e:
82:99:e1:12:9a:d7:b4:e8:ed:72:c4:11:c1:29:8f:8e:89:ce:
7f:e0:5c:16:dc:58:dd:e3:a1:b0:54:5f:50:e8:fc:d1:17:7b:
d7:9c:9f:1a:02:99:a4:94:7f:2e:2a:87:59:ce:ba:89:43:fa:
eb:70:a2:55:80:f9:98:e7:3c:e7:ad:ba:db:0c:c2:12:08:ff:
0f:ee:03:4a:bf:58:0c:7e:23:ca:9c:86:99:dc:bb:25:c9:39:
29:65:43:c3:23:60:f0:7b:4a:3d:d2:4e:d6:e1:07:b0:5e:e7:
93:c5:cf:05:85:cb:3a:a8:8d:1e:e0:ed:75:45:1f:54:d4:2c:
c4:4b:69:72:3a:63:64:14:fc:24:81:aa:27:65:c0:ea:19:2a:
a7:8a:a5:67:5c:c7:85:69:8c:12:63:e4:69:c4:d5:bb:50:48:
f1:7b:15:e9:6e:43:fa:55:13:38:f7:b3:af:78:b3:91:41:50:
76:86:4e:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:46 2024 by rpki-client on console-fra.rpki-client.org