Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/WSmHBO-0peAz7U3hRZONAZ4kgRg.roa
File: WSmHBO-0peAz7U3hRZONAZ4kgRg.roa (raw, json)
Hash identifier: on7NRoXLh1orQ47Lt+OWz0KcsjNHbqNBCO3G6k1KlwM=
Subject key identifier: 59:29:87:04:EF:B4:A5:E0:33:ED:4D:E1:45:93:8D:01:9E:24:81:18
Certificate issuer: /CN=da00e981953061972c896bd6d27738d083aadb0e
Certificate serial: 018641784C3D4DD2BCE8ACA686EE8FB8A84E
Authority key identifier: DA:00:E9:81:95:30:61:97:2C:89:6B:D6:D2:77:38:D0:83:AA:DB:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2gDpgZUwYZcsiWvW0nc40IOq2w4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/WSmHBO-0peAz7U3hRZONAZ4kgRg.roa
Signing time: Sat 11 Feb 2023 17:14:08 +0000
ROA not before: Sat 11 Feb 2023 17:14:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 996
IP address blocks: 89.40.176.0/22 maxlen: 24
89.37.188.0/22 maxlen: 24
89.36.236.0/22 maxlen: 24
89.36.32.0/22 maxlen: 24
89.37.228.0/22 maxlen: 24
89.37.236.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:41:78:4c:3d:4d:d2:bc:e8:ac:a6:86:ee:8f:b8:a8:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da00e981953061972c896bd6d27738d083aadb0e
Validity
Not Before: Feb 11 17:14:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=59298704efb4a5e033ed4de145938d019e248118
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:1f:53:63:43:78:ac:eb:ee:e4:79:85:8d:d7:
d5:86:23:38:62:8a:29:2b:75:e1:25:12:18:a8:65:
71:cf:54:5c:b0:d0:f7:f4:d8:83:6a:a0:3d:07:52:
6c:75:8b:a7:bb:95:0a:e6:ee:d3:8f:56:68:42:51:
44:90:5c:96:f5:c0:ac:e9:b2:03:4a:10:11:07:ef:
57:ee:91:8f:1f:40:6d:ad:d3:f5:41:1f:92:f1:64:
03:18:4b:33:d9:c5:40:48:01:78:bf:9d:a9:5f:7c:
c5:e6:3e:76:dc:8a:b4:bc:68:ed:60:a1:7d:4c:88:
c9:dc:4e:df:86:90:8f:65:0b:48:9e:70:06:d5:d7:
8d:7e:56:68:76:0f:e1:09:98:13:82:7c:bb:62:e7:
e5:68:17:6c:e8:d9:7f:34:c4:a2:55:f6:19:06:bb:
c3:a2:45:cc:f3:9c:92:06:bf:71:3e:6a:73:95:13:
5e:93:76:e1:a4:6d:51:b8:48:fe:0d:53:92:d0:4f:
c3:6b:a3:bc:35:c6:2e:af:15:0a:43:2d:4e:84:cf:
f2:46:3d:95:7f:74:2b:eb:a7:43:50:eb:6b:56:2d:
84:14:7c:82:c3:c0:b9:66:9b:b3:77:1e:a6:1d:63:
dc:54:85:11:24:7a:fe:d0:90:50:bb:79:63:71:26:
d5:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:29:87:04:EF:B4:A5:E0:33:ED:4D:E1:45:93:8D:01:9E:24:81:18
X509v3 Authority Key Identifier:
keyid:DA:00:E9:81:95:30:61:97:2C:89:6B:D6:D2:77:38:D0:83:AA:DB:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2gDpgZUwYZcsiWvW0nc40IOq2w4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/WSmHBO-0peAz7U3hRZONAZ4kgRg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/2gDpgZUwYZcsiWvW0nc40IOq2w4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.36.32.0/22
89.36.236.0/22
89.37.188.0/22
89.37.228.0/22
89.37.236.0/22
89.40.176.0/22
Signature Algorithm: sha256WithRSAEncryption
48:90:53:e2:ba:45:25:ef:21:61:11:10:93:ee:f5:3b:f7:35:
f1:73:0d:b4:36:f3:31:1b:b7:d2:36:02:ab:95:7b:f0:8b:1f:
4c:4f:c2:08:4f:22:1b:ad:f8:51:1f:14:ce:01:9c:14:d7:b6:
63:1b:03:2c:21:1d:ad:a0:bd:62:65:f2:94:0a:4c:80:0a:cc:
30:57:f4:8d:f4:23:50:c6:ce:ff:d9:a2:6f:56:33:22:b3:60:
ff:49:e7:b5:49:4b:2b:e4:5f:a8:aa:ae:db:19:4f:ca:a7:3b:
d3:a7:bf:a3:19:e0:ca:1e:db:c4:13:1c:90:86:80:e8:4c:e9:
29:9f:1d:1d:fa:68:be:61:fb:95:cc:be:1a:20:b0:9a:b5:7d:
0a:07:34:8a:6d:fd:59:0c:ce:2f:e2:31:f8:2a:1e:f3:9e:84:
71:7f:5e:c5:61:48:7d:3c:61:7f:d7:e1:9d:06:4a:d2:8c:7f:
b1:95:23:74:aa:ed:54:d4:e0:6e:a4:fe:40:6a:da:9e:3a:20:
3c:cb:db:bb:53:65:77:71:ef:bc:69:bd:9d:04:df:5e:76:10:
bb:1e:9a:53:c8:75:43:4a:a8:e2:98:58:21:11:29:b9:02:c7:
2f:fb:68:2d:87:63:34:0e:15:b2:af:0c:5d:d9:ba:75:d1:99:
51:93:09:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:55 2023 by rpki-client on console-ams.rpki-client.org