Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/IXuszuPLZyGui2mZn503YOl7RsA.roa
File: IXuszuPLZyGui2mZn503YOl7RsA.roa (raw, json)
Hash identifier: 0Xo5aJVLs4ERGYWDqi74z1M+qsl44JGW9ecHpNI4mgc=
Subject key identifier: 21:7B:AC:CE:E3:CB:67:21:AE:8B:69:99:9F:9D:37:60:E9:7B:46:C0
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 0187FED11BD36D571A94FC8E1864CD94E9C6
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/IXuszuPLZyGui2mZn503YOl7RsA.roa
Signing time: Tue 09 May 2023 04:42:09 +0000
ROA not before: Tue 09 May 2023 04:42:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213305
IP address blocks: 89.185.22.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 04 Sep 2023 17:28:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:fe:d1:1b:d3:6d:57:1a:94:fc:8e:18:64:cd:94:e9:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: May 9 04:42:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=217baccee3cb6721ae8b69999f9d3760e97b46c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:10:27:c6:72:5e:91:3f:0c:0d:01:48:68:ee:
ad:ab:10:c7:8e:ce:cf:96:99:34:cd:0d:c1:d3:41:
8f:0b:21:8c:18:70:9a:24:3d:f1:07:3e:da:90:12:
85:82:da:24:04:5e:ca:00:c6:94:06:cd:22:d0:77:
3f:43:fc:e4:52:fb:c9:ea:d0:d6:f2:e4:d0:cb:59:
88:20:ea:c5:26:76:46:ab:b6:73:47:50:9e:66:fe:
43:6a:a9:c4:bb:28:24:01:80:ae:50:fc:71:63:30:
1c:a3:26:35:73:65:7c:d9:80:96:1b:64:b2:c0:e0:
01:6b:05:f6:d0:39:22:df:dc:f6:b1:cf:af:3c:76:
90:38:53:07:a1:05:14:04:b1:dd:d8:ff:82:61:3b:
7d:b4:7e:b4:4d:3f:15:61:9f:5c:6a:b2:c8:45:e5:
98:02:aa:8a:b4:cd:7a:0e:c0:a2:09:87:ba:95:e9:
01:8d:aa:f1:ff:2f:78:0c:f8:1f:ac:4f:21:91:f5:
b6:94:64:d3:f0:0d:18:8a:bd:fe:69:58:7e:43:fd:
4b:b6:07:1c:8c:59:22:9b:27:17:84:28:15:7c:84:
77:94:2b:cc:8b:32:7c:c8:55:24:06:56:90:99:56:
7d:24:7f:ff:1a:2b:9f:20:c4:74:56:4b:83:7b:d4:
27:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:7B:AC:CE:E3:CB:67:21:AE:8B:69:99:9F:9D:37:60:E9:7B:46:C0
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/IXuszuPLZyGui2mZn503YOl7RsA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.185.22.0/24
Signature Algorithm: sha256WithRSAEncryption
34:01:0b:22:d4:cc:ca:a6:59:ff:75:e2:5f:de:f7:9b:ac:a5:
43:4e:5d:7b:ac:7b:92:89:e7:e1:fc:3a:93:f1:0b:59:85:b1:
54:f2:f2:e3:35:73:7b:3b:2d:8c:24:69:e7:58:ec:b5:34:05:
2e:2d:7f:6f:2d:02:cf:4d:47:c1:46:16:fc:86:d0:a5:51:eb:
85:55:7d:91:6d:9a:65:72:a9:ba:9c:80:5f:02:7d:39:37:67:
46:e5:8d:2d:4a:f5:12:9a:29:78:ba:d8:1c:37:38:5f:8a:5c:
49:c2:4a:b9:d5:97:a4:05:8b:22:1a:90:86:0f:13:27:d9:d0:
b8:6b:c0:ee:f2:c7:50:f0:87:12:05:dc:25:a6:f8:7e:ea:6d:
fb:66:0b:31:3a:0f:43:4a:b7:a4:6e:a0:e3:0a:44:ef:c5:c9:
45:7a:3d:5c:45:25:a0:25:4a:d9:75:05:6d:a9:3c:6a:ce:89:
ba:65:42:c4:bb:f8:8c:8d:86:36:89:2a:a7:75:0c:1f:39:8c:
e8:aa:84:4a:e3:aa:8d:e8:fa:68:1e:27:b6:f2:04:c6:e0:3a:
49:75:72:5c:81:8c:e6:21:dd:a7:48:69:c8:5b:7f:c5:d6:55:
2b:54:3e:d8:b9:70:a8:98:b8:f9:08:76:a7:04:89:f1:12:8c:
85:54:81:53
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYf+0RvTbVcalPyOGGTNlOnGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk4MmNmODA5YzBlM2U4ZTU1NTJmOWQwZGQyZTI3ZTBkZDJk
OGRhYmUwHhcNMjMwNTA5MDQ0MjA5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyMTdiYWNjZWUzY2I2NzIxYWU4YjY5OTk5ZjlkMzc2MGU5N2I0NmMwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiRAnxnJekT8MDQFIaO6tqxDHjs7P
lpk0zQ3B00GPCyGMGHCaJD3xBz7akBKFgtokBF7KAMaUBs0i0Hc/Q/zkUvvJ6tDW
8uTQy1mIIOrFJnZGq7ZzR1CeZv5DaqnEuygkAYCuUPxxYzAcoyY1c2V82YCWG2Sy
wOABawX20Dki39z2sc+vPHaQOFMHoQUUBLHd2P+CYTt9tH60TT8VYZ9carLIReWY
AqqKtM16DsCiCYe6lekBjarx/y94DPgfrE8hkfW2lGTT8A0Yir3+aVh+Q/1Ltgcc
jFkimycXhCgVfIR3lCvMizJ8yFUkBlaQmVZ9JH//GiufIMR0VkuDe9QnjwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCF7rM7jy2chrotpmZ+dN2Dpe0bAMB8GA1UdIwQY
MBaAFJgs+AnA4+jlVS+dDdLifg3S2Nq+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbUN6NENjRGo2T1ZWTDUwTjB1Si1EZExZMnI0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC82MTY4ZDctOTQ2Yy00NTc0LTkxZWEt
ODJhZDE0NTU1ZWFhLzEvSVh1c3p1UExaeUd1aTJtWm41MDNZT2w3UnNBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZC82MTY4ZDctOTQ2Yy00NTc0LTkxZWEtODJhZDE0NTU1ZWFh
LzEvbUN6NENjRGo2T1ZWTDUwTjB1Si1EZExZMnI0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWbkWMA0G
CSqGSIb3DQEBCwUAA4IBAQA0AQsi1MzKpln/deJf3vebrKVDTl17rHuSiefh/DqT
8QtZhbFU8vLjNXN7Oy2MJGnnWOy1NAUuLX9vLQLPTUfBRhb8htClUeuFVX2RbZpl
cqm6nIBfAn05N2dG5Y0tSvUSmil4utgcNzhfilxJwkq51ZekBYsiGpCGDxMn2dC4
a8Du8sdQ8IcSBdwlpvh+6m37ZgsxOg9DSrekbqDjCkTvxclFej1cRSWgJUrZdQVt
qTxqzom6ZULEu/iMjYY2iSqndQwfOYzoqoRK46qN6PpoHie28gTG4DpJdXJcgYzm
Id2nSGnIW3/F1lUrVD7YuXComLj5CHanBInxEoyFVIFT
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:15 2024 by rpki-client on console-fra.rpki-client.org