Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/b9cea0-6928-4584-b321-7d7f4b634849/1/PDwPiYNErHa0bOSDnGv0kcTGMrs.roa
File: PDwPiYNErHa0bOSDnGv0kcTGMrs.roa (raw, json)
Hash identifier: l0dnCzK6VJUbzKZuFINenN+V24dsr8wOzwC0XzpfuAQ=
Subject key identifier: 3C:3C:0F:89:83:44:AC:76:B4:6C:E4:83:9C:6B:F4:91:C4:C6:32:BB
Certificate issuer: /CN=797a48cc13e200e2d3f38af83318d1bcaf6f6331
Certificate serial: 01909174547BBE0D6C6112A6373766E259A2
Authority key identifier: 79:7A:48:CC:13:E2:00:E2:D3:F3:8A:F8:33:18:D1:BC:AF:6F:63:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eXpIzBPiAOLT84r4MxjRvK9vYzE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/b9cea0-6928-4584-b321-7d7f4b634849/1/PDwPiYNErHa0bOSDnGv0kcTGMrs.roa
Signing time: Mon 08 Jul 2024 08:27:18 +0000
ROA not before: Mon 08 Jul 2024 08:27:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 209980
IP address blocks: 89.185.140.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 09:49:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:91:74:54:7b:be:0d:6c:61:12:a6:37:37:66:e2:59:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=797a48cc13e200e2d3f38af83318d1bcaf6f6331
Validity
Not Before: Jul 8 08:27:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3c3c0f898344ac76b46ce4839c6bf491c4c632bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:71:a5:df:d6:4f:9a:bf:c3:9c:c5:4c:8e:c2:
ce:30:19:ec:40:0c:fd:15:63:4b:a6:79:7f:2e:2d:
75:2c:0f:d0:10:d1:d4:e8:58:be:7e:20:58:c9:ef:
59:71:ba:8b:5e:e0:41:42:9e:e3:9d:c9:ad:8a:2e:
54:ac:d8:7d:20:cd:c6:93:72:aa:c1:3f:50:2a:ee:
41:82:b6:f8:00:02:d9:9f:d9:f6:09:df:58:da:ad:
3b:21:74:77:32:03:8f:6b:cb:ee:85:21:72:b1:10:
7e:e2:fd:26:93:c8:43:df:6a:e5:8e:97:65:f0:52:
ce:3f:75:a7:e8:91:17:38:8c:39:33:9e:1c:50:bc:
ca:dd:1f:70:d1:25:b1:e3:a6:dc:f5:54:c1:8b:7a:
8c:8c:55:f4:0d:81:cd:23:6a:7e:4b:14:db:82:70:
0e:5e:6e:17:93:1f:d6:08:01:48:64:38:7d:30:42:
57:4c:9f:84:e2:1f:b7:7e:0b:f4:cb:6c:fe:3b:8e:
db:17:09:37:1d:36:f2:f1:11:23:68:fc:06:3d:ff:
e0:c9:7f:f2:be:27:c6:d1:3f:a3:d7:9f:21:36:d1:
a8:15:b5:a8:ca:d2:28:8a:79:1f:19:f4:51:05:58:
c6:99:27:5d:72:ac:66:2f:3e:ea:6a:a4:50:0e:0b:
f3:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:3C:0F:89:83:44:AC:76:B4:6C:E4:83:9C:6B:F4:91:C4:C6:32:BB
X509v3 Authority Key Identifier:
keyid:79:7A:48:CC:13:E2:00:E2:D3:F3:8A:F8:33:18:D1:BC:AF:6F:63:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eXpIzBPiAOLT84r4MxjRvK9vYzE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/b9cea0-6928-4584-b321-7d7f4b634849/1/PDwPiYNErHa0bOSDnGv0kcTGMrs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/b9cea0-6928-4584-b321-7d7f4b634849/1/eXpIzBPiAOLT84r4MxjRvK9vYzE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.185.140.0/24
Signature Algorithm: sha256WithRSAEncryption
27:cb:5d:d7:18:f5:23:b4:8f:9f:c8:76:54:b6:93:62:3b:a5:
8a:0a:1f:16:3e:1d:f5:98:02:92:27:e3:b1:65:92:12:b8:d0:
33:9e:b9:35:fb:29:73:fb:e2:6a:e1:ae:e2:de:7e:32:64:ec:
6c:28:21:20:7f:9a:67:3c:b4:d8:ef:0f:58:88:75:84:50:12:
a8:60:f0:83:51:db:10:c4:49:f4:71:ee:c9:32:90:81:20:de:
49:38:fd:4a:16:c9:18:71:88:1b:5b:75:87:c1:9c:a4:ce:b4:
4b:89:80:d5:ab:d3:6f:f8:75:1c:3d:7a:05:50:dd:5c:d4:c4:
0b:0f:4c:56:fd:b2:1b:19:55:04:5f:cf:3a:f9:5f:ec:02:a0:
e6:42:93:c3:26:8e:fa:97:ce:b6:7b:55:e0:56:34:08:4f:b9:
b2:90:24:a8:00:2f:04:d0:7e:70:ec:8b:42:ba:bc:f7:6a:db:
ea:51:c2:7f:52:67:8c:91:98:2f:dd:82:bc:2a:d8:f1:78:22:
92:ed:37:84:35:64:02:a9:d6:32:fd:3d:67:b5:44:ba:e6:93:
d9:8d:12:41:a7:a7:44:cb:e2:aa:94:c6:a6:47:3f:91:9b:65:
1c:04:a5:af:b8:45:54:47:1a:8f:81:92:c3:b1:fc:ee:dc:6b:
aa:b5:7f:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:02:54 2025 by rpki-client