Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/28a8f3-889e-4549-a44e-ce225187fc38/1/lmaSmEUUV0gpN9--XsOLBV0J9tI.roa
File: lmaSmEUUV0gpN9--XsOLBV0J9tI.roa (raw, json)
Hash identifier: Dwh/JHvGtSCgVzhpFd1fFUCAOezNwZA3DPUi3BPY4BQ=
Subject key identifier: 96:66:92:98:45:14:57:48:29:37:DF:BE:5E:C3:8B:05:5D:09:F6:D2
Certificate issuer: /CN=c1b050211219d18e996e086cb7f6309178804860
Certificate serial: 01856F30235C14F2D6D0B089932FE7FCDD79
Authority key identifier: C1:B0:50:21:12:19:D1:8E:99:6E:08:6C:B7:F6:30:91:78:80:48:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wbBQIRIZ0Y6Zbghst_YwkXiASGA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/28a8f3-889e-4549-a44e-ce225187fc38/1/lmaSmEUUV0gpN9--XsOLBV0J9tI.roa
Signing time: Sun 01 Jan 2023 21:15:03 +0000
ROA not before: Sun 01 Jan 2023 21:15:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201544
IP address blocks: 89.108.134.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:30:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:30:23:5c:14:f2:d6:d0:b0:89:93:2f:e7:fc:dd:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c1b050211219d18e996e086cb7f6309178804860
Validity
Not Before: Jan 1 21:15:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=96669298451457482937dfbe5ec38b055d09f6d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:0b:e6:a3:a1:57:1f:40:68:a5:16:8e:b7:b2:
0d:6a:b7:ce:dc:89:7e:20:82:7b:00:c7:b0:15:4d:
5d:23:71:e8:a2:21:87:73:e5:7b:2a:d7:df:19:90:
18:18:96:2d:b9:fc:c2:4f:ea:5b:f5:24:56:b1:8f:
be:32:70:fd:26:1c:87:09:55:80:45:39:fc:10:24:
c6:e1:60:20:86:48:61:98:72:f7:00:2f:57:03:c3:
dc:17:f4:b4:eb:63:46:7a:ab:cb:88:be:60:7d:80:
7e:81:d3:45:12:9f:84:04:f8:8a:01:b6:2a:e2:8d:
e9:45:be:0f:fc:72:21:f4:bb:d7:b7:53:f9:00:6f:
9f:0c:13:6f:77:9c:d4:91:8f:99:0f:a3:dc:e5:ad:
06:a6:8f:a3:13:fa:2f:48:f1:7f:07:89:e3:bc:21:
90:4f:1c:99:b1:0e:e7:e7:a2:ed:76:2a:64:e7:4f:
ef:77:18:56:71:da:81:57:81:f1:28:5d:3f:76:b3:
01:2e:30:de:7a:12:fb:8d:de:5d:15:d1:cf:71:49:
6a:3d:cd:7b:70:48:4b:78:9a:0b:50:82:ad:cc:5b:
12:c3:df:f5:ef:59:22:f0:07:6a:4a:26:e9:ed:dd:
38:22:08:fc:4b:19:c1:12:9a:f1:25:f6:5d:7c:71:
aa:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:66:92:98:45:14:57:48:29:37:DF:BE:5E:C3:8B:05:5D:09:F6:D2
X509v3 Authority Key Identifier:
keyid:C1:B0:50:21:12:19:D1:8E:99:6E:08:6C:B7:F6:30:91:78:80:48:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wbBQIRIZ0Y6Zbghst_YwkXiASGA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/28a8f3-889e-4549-a44e-ce225187fc38/1/lmaSmEUUV0gpN9--XsOLBV0J9tI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/28a8f3-889e-4549-a44e-ce225187fc38/1/wbBQIRIZ0Y6Zbghst_YwkXiASGA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.108.134.0/24
Signature Algorithm: sha256WithRSAEncryption
44:ba:c3:61:d6:15:31:62:29:58:8a:a5:1d:c6:bc:ef:9e:04:
7d:51:69:66:aa:42:cb:57:b2:a2:a6:9a:14:24:2b:c0:a0:dc:
92:2c:cf:92:f6:85:11:2f:9b:74:11:2a:7a:60:5e:1f:38:7e:
fb:3d:a0:d8:66:c5:05:c0:eb:54:e2:57:da:67:47:22:29:49:
3e:3a:d9:a2:9d:f7:a0:d3:7d:a4:86:d7:e4:c8:02:45:83:71:
c6:1c:1a:a8:23:c3:22:0c:8e:cb:d6:5a:8f:b6:4d:f4:8b:f1:
73:b3:de:6c:ca:73:3b:9d:a1:fc:54:0c:4c:70:93:0d:20:6f:
bf:6b:30:69:df:6a:fa:84:d1:47:a0:34:fb:b2:b3:55:eb:f3:
b9:6e:f4:7c:70:a9:13:05:50:23:46:81:4a:6b:6d:50:59:f4:
2c:a8:63:e5:c8:2b:c0:f6:7d:62:ba:8b:a5:8b:3c:92:47:ed:
69:46:1d:92:53:34:f7:eb:de:2f:a0:92:73:ec:44:3d:c1:38:
3e:18:15:be:bd:c8:56:0d:42:68:92:f5:26:53:e2:33:11:2c:
6b:4b:80:d7:62:eb:04:e3:41:dd:fd:3c:35:c2:8e:ec:03:e7:
2b:b4:a3:15:cd:ff:58:cb:5c:70:03:c6:ff:1b:ac:52:28:0b:
66:65:ea:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:13 2024 by rpki-client on console-fra.rpki-client.org