Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/CIgAmOAranTkG6kHFd0mD-jF2Uo.roa
File: CIgAmOAranTkG6kHFd0mD-jF2Uo.roa (raw, json)
Hash identifier: 9/VaOFR6H/maHbAHmw94+iZuLkRnqLuFsOIGxDjRdag=
Subject key identifier: 08:88:00:98:E0:2B:6A:74:E4:1B:A9:07:15:DD:26:0F:E8:C5:D9:4A
Certificate issuer: /CN=4104a40821c4176cc42e255ef6c1727473c3f00a
Certificate serial: 01857315F4C14F78EA8E8B4804A6A7CFD892
Authority key identifier: 41:04:A4:08:21:C4:17:6C:C4:2E:25:5E:F6:C1:72:74:73:C3:F0:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QQSkCCHEF2zELiVe9sFydHPD8Ao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/CIgAmOAranTkG6kHFd0mD-jF2Uo.roa
Signing time: Mon 02 Jan 2023 15:24:56 +0000
ROA not before: Mon 02 Jan 2023 15:24:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41703
IP address blocks: 89.252.227.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:30:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:15:f4:c1:4f:78:ea:8e:8b:48:04:a6:a7:cf:d8:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4104a40821c4176cc42e255ef6c1727473c3f00a
Validity
Not Before: Jan 2 15:24:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=08880098e02b6a74e41ba90715dd260fe8c5d94a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:1b:d2:d5:01:86:2a:48:87:9d:d3:57:9c:e5:
e0:23:21:95:5d:4d:99:3b:2d:2d:c7:ee:f1:eb:c5:
c0:3f:72:f1:82:1f:b6:97:5c:da:3b:4b:63:ea:73:
46:4b:9f:58:59:b2:26:19:28:66:32:3f:d7:8e:91:
11:e8:86:bd:db:73:64:0d:8b:c1:e8:2c:5b:bd:65:
d6:49:47:be:f8:74:41:44:20:1b:8e:69:e7:39:97:
6d:8e:d2:b2:40:bf:a6:92:d4:ce:87:17:c6:18:e5:
06:ab:0f:e7:b0:7c:11:75:cb:8b:58:d6:4f:c5:78:
81:67:7e:e0:30:6b:47:9f:bd:72:fd:6b:c9:36:ac:
52:d0:29:6f:35:a7:9e:fa:65:74:f6:9e:08:38:93:
8b:3d:15:d8:69:1e:87:06:c4:7b:69:ab:f8:12:78:
0d:25:3f:3d:ed:b4:78:eb:61:38:99:34:3b:e9:cc:
41:e9:b0:88:ab:1f:57:fb:36:ca:d2:48:f3:2e:5e:
65:77:95:a5:38:3f:16:6a:d4:31:4a:c5:04:fa:21:
c1:4a:e3:84:67:33:09:24:12:e0:dc:37:65:fb:7f:
7a:1d:29:e2:58:14:ff:b3:74:73:d9:40:cc:41:ba:
ad:df:16:1c:21:ef:ab:08:e9:2e:9d:ca:cc:48:d9:
a2:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:88:00:98:E0:2B:6A:74:E4:1B:A9:07:15:DD:26:0F:E8:C5:D9:4A
X509v3 Authority Key Identifier:
keyid:41:04:A4:08:21:C4:17:6C:C4:2E:25:5E:F6:C1:72:74:73:C3:F0:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QQSkCCHEF2zELiVe9sFydHPD8Ao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/CIgAmOAranTkG6kHFd0mD-jF2Uo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/QQSkCCHEF2zELiVe9sFydHPD8Ao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.252.227.0/24
Signature Algorithm: sha256WithRSAEncryption
41:60:22:8b:41:c6:c8:8e:b1:6f:48:5e:c5:7a:85:35:2d:b8:
b8:8b:1b:78:36:9d:68:b4:51:f7:f8:75:4e:6b:73:7e:28:28:
cc:37:7e:a4:ce:92:de:1c:db:83:ad:f1:90:2d:38:1f:2a:43:
32:9a:b7:d8:b0:4c:e1:67:fa:3b:80:bf:e4:8f:10:f9:af:e8:
04:7d:58:a9:5d:a5:0a:c6:61:4d:de:08:bf:0e:a6:ec:0f:81:
d9:e5:cd:f2:ef:b4:e5:9d:7a:4a:b6:c0:11:21:01:08:59:70:
4f:51:c5:e2:af:a9:a9:86:2c:32:2a:e8:5a:11:b6:39:db:22:
9f:be:ff:25:74:1c:f3:9e:04:6b:ca:dc:a4:7e:ad:f3:7b:f2:
2e:cb:34:d0:3a:6d:4a:e1:87:49:0c:93:1e:e4:98:b0:f6:13:
e8:89:cd:48:38:c9:c6:ce:8f:05:cc:b9:48:35:2c:f4:a1:7d:
5c:c3:55:63:29:1e:18:07:ea:7d:1d:c7:48:ad:cd:62:0f:c6:
28:6d:eb:11:96:98:83:08:ea:1c:97:17:da:d1:23:fe:9b:6e:
30:5f:d1:eb:8f:e6:35:2d:4c:28:41:ea:f1:23:89:9d:19:85:
b1:2c:ac:e0:ac:b8:ab:11:e6:17:9c:a4:de:06:dc:71:7d:f3:
67:50:e8:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:19 2024 by rpki-client on console-ams.rpki-client.org