Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/78BbyW6ADdA5a0ZLWqpP1pfxOVw.roa
File: 78BbyW6ADdA5a0ZLWqpP1pfxOVw.roa (raw, json)
Hash identifier: bEfU5LwcPHoZRF1xQH1x9Ed+M/g9o9ToN/iKYd9d6PQ=
Subject key identifier: EF:C0:5B:C9:6E:80:0D:D0:39:6B:46:4B:5A:AA:4F:D6:97:F1:39:5C
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 018FCC32BAE07FFF09782BFC61900687C09F
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/78BbyW6ADdA5a0ZLWqpP1pfxOVw.roa
Signing time: Fri 31 May 2024 01:10:27 +0000
ROA not before: Fri 31 May 2024 01:10:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42532
IP address blocks: 82.115.4.0/22 maxlen: 24
Validation: Failed, certificate revoked on Fri 02 Aug 2024 11:59:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:cc:32:ba:e0:7f:ff:09:78:2b:fc:61:90:06:87:c0:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: May 31 01:10:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=efc05bc96e800dd0396b464b5aaa4fd697f1395c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:1d:cb:6f:2b:aa:a5:21:15:be:7a:43:fe:09:
f3:e0:a4:fd:f9:c7:61:12:e2:58:f4:53:62:c7:75:
92:ab:80:27:67:46:56:68:e1:2d:00:d0:66:be:b1:
6e:12:f6:62:44:e8:69:81:2c:17:9e:46:5b:bf:c9:
df:fa:97:c3:f5:91:fb:87:44:ff:76:ce:b6:ce:76:
54:e2:47:57:4f:37:83:80:aa:ee:59:3a:62:2d:c6:
63:d0:ab:c2:00:8d:b6:14:05:49:04:aa:02:f5:e4:
59:b7:75:32:27:65:5f:c3:24:7f:e6:fc:42:fb:89:
a4:24:67:ae:68:28:df:d0:c0:0e:3a:8a:d4:61:3c:
e5:d8:73:b2:56:27:33:15:8c:ca:06:62:43:c3:a4:
54:98:b2:be:79:47:03:39:78:fe:43:a5:3e:72:6d:
d0:6d:4d:c0:7e:78:ce:23:bc:c7:c1:69:29:5c:01:
b3:c8:73:69:d2:56:33:03:54:7e:6a:7e:38:c2:e5:
ed:f3:38:f7:96:c2:51:28:74:b1:2d:f9:79:65:cb:
90:86:0a:80:11:e8:da:6f:55:38:c2:04:ac:3e:b0:
c5:f4:0f:2f:8e:46:0f:08:c7:7a:99:3a:b2:3e:45:
3b:3c:4f:b1:c3:ba:6d:e7:1d:7c:78:d6:03:1a:19:
18:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:C0:5B:C9:6E:80:0D:D0:39:6B:46:4B:5A:AA:4F:D6:97:F1:39:5C
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/78BbyW6ADdA5a0ZLWqpP1pfxOVw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.115.4.0/22
Signature Algorithm: sha256WithRSAEncryption
d5:9d:b6:0a:3e:14:17:ee:4d:fc:31:18:1c:35:d2:a0:97:8c:
97:ee:b5:bb:51:48:59:00:76:bf:46:14:e7:3b:2e:df:f6:0c:
ba:00:56:e5:74:70:0b:e5:59:fd:a6:9d:f2:40:06:4e:39:68:
81:92:5f:ca:51:b7:55:f5:f1:d0:71:61:50:34:55:0f:97:97:
e7:22:3f:15:79:61:03:d0:90:8b:3a:3e:ba:1c:ed:8e:7e:8b:
6f:ac:5f:43:31:aa:ec:c3:2b:b2:36:cb:b3:2c:ad:b5:7e:9b:
57:56:0c:f7:b8:7b:f1:07:c0:7f:08:5f:7c:5d:fc:33:ab:76:
3e:51:4c:e5:16:3f:07:ef:7f:06:21:50:32:f3:4f:74:9e:cb:
4c:53:42:b4:23:2f:93:9a:18:c4:72:b8:31:36:93:fb:9e:51:
f0:7a:d8:f4:c0:f6:3d:d2:9a:b8:17:b2:98:51:43:a1:51:82:
42:59:6f:b7:2b:b9:be:3b:f7:ce:8d:e2:bf:80:d5:70:f5:5d:
e3:72:a8:37:0b:55:cb:41:cd:af:41:f1:95:d4:a0:1d:01:64:
c4:0d:63:d8:93:1f:3c:15:48:9a:ac:72:f3:e8:fd:89:69:a3:
69:07:1e:ce:55:03:f8:51:b9:f2:01:68:0e:f1:4f:fe:6c:a7:
de:f3:31:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 2 13:49:46 2024 by rpki-client on console-fra.rpki-client.org