Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/8SPmIycQJoHTt6iQsw2ljy13TL0.roa
File: 8SPmIycQJoHTt6iQsw2ljy13TL0.roa (raw, json)
Hash identifier: rbfK7mARRLCY4f3XLMn+SUF5BrkdFkXgjiitoHFH6tE=
Subject key identifier: F1:23:E6:23:27:10:26:81:D3:B7:A8:90:B3:0D:A5:8F:2D:77:4C:BD
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 01867766972090093752CA68B5369C260EEF
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/8SPmIycQJoHTt6iQsw2ljy13TL0.roa
Signing time: Wed 22 Feb 2023 04:34:17 +0000
ROA not before: Wed 22 Feb 2023 04:34:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 0
IP address blocks: 82.115.8.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 22 Feb 2023 07:45:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:77:66:97:20:90:09:37:52:ca:68:b5:36:9c:26:0e:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: Feb 22 04:34:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f123e62327102681d3b7a890b30da58f2d774cbd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:99:f3:94:c6:8d:28:a5:73:ce:5f:a3:0d:11:
6e:48:eb:95:ce:4d:21:19:62:42:35:18:c8:43:e6:
42:e2:66:58:47:24:21:4c:08:95:1e:37:49:4b:c6:
d3:19:fc:91:00:5a:e1:60:19:db:57:52:ae:cd:3d:
62:29:b4:f7:e4:c3:1b:85:3a:23:f0:2f:90:61:99:
1c:4d:38:71:b1:11:8c:ed:83:92:b7:92:46:6b:1f:
7e:76:12:c6:9d:47:d6:95:3d:8b:10:dc:15:dc:f6:
4b:09:9e:f0:68:7c:ce:4e:17:75:0a:21:bc:6d:2a:
d4:8f:76:15:55:09:16:46:47:52:b2:f5:c3:ec:1e:
51:44:54:34:9e:6e:e4:05:db:f3:e4:ca:b2:95:9a:
3c:c0:98:8e:68:e1:67:ce:ca:07:c7:ba:b2:14:1c:
21:3f:1a:e6:33:90:99:30:aa:a9:75:15:fa:6a:23:
38:fa:cb:ed:78:12:9d:00:ee:cc:0d:3f:07:f3:92:
69:a7:c9:0b:72:af:72:d5:6b:8b:97:74:87:ed:bd:
0e:7c:51:00:79:e4:ba:e3:b9:0d:2e:0f:9b:88:1f:
fe:51:8b:fc:80:d9:a0:91:cb:3a:3c:03:3c:08:4f:
f0:40:cf:4e:47:3e:00:04:23:96:34:2f:4c:0b:55:
1f:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:23:E6:23:27:10:26:81:D3:B7:A8:90:B3:0D:A5:8F:2D:77:4C:BD
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/8SPmIycQJoHTt6iQsw2ljy13TL0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.115.8.0/22
Signature Algorithm: sha256WithRSAEncryption
b6:f0:6c:51:90:52:66:e8:24:7c:66:f3:07:fb:47:85:c5:96:
97:6d:61:c5:c4:b2:b2:c2:54:0a:c6:2b:02:3f:d5:30:64:4a:
3d:6e:b8:61:00:68:51:6e:71:0d:43:5e:5d:78:70:78:2e:36:
49:09:3a:bb:6b:00:b4:30:d8:80:10:49:51:f5:c8:34:04:03:
fe:11:6f:ed:03:5a:7a:a4:ae:66:dd:7c:15:da:77:15:5f:24:
97:2c:82:68:01:fd:1b:07:9b:75:17:e4:6c:b4:07:45:77:31:
d6:f8:9d:eb:8f:60:bf:75:37:97:88:9a:4f:cf:dd:84:d3:c3:
ca:95:0c:90:a0:a7:db:7e:30:8f:fc:77:0c:af:38:00:ed:ad:
d3:fe:6d:41:23:25:70:21:bc:94:6d:09:18:6d:66:59:2d:d3:
bf:2a:c3:68:23:de:8b:6e:97:08:d4:0a:06:d6:1c:1a:20:73:
bd:bb:ea:7e:a1:1c:f6:a9:bd:d2:7d:c1:cd:ca:ef:f6:59:36:
de:54:6c:f4:55:ac:ae:47:8e:9b:a3:3f:f9:2d:cd:2e:07:6d:
a4:ac:25:f2:d7:a0:28:ae:9d:6c:69:fc:0b:f5:99:45:f7:4b:
c8:40:fd:40:6d:9c:ba:09:b7:c2:98:0e:e6:a3:e1:c1:43:ac:
27:30:96:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:15 2024 by rpki-client on console-ams.rpki-client.org