Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/lvCcA7M8h5wjxpRhTW4dOTnAGNI.roa
File: lvCcA7M8h5wjxpRhTW4dOTnAGNI.roa (raw, json)
Hash identifier: ilVKf/V/GtpHaPF2uPeurmBafBYkmMjOD3pEWIZ9Nak=
Subject key identifier: 96:F0:9C:03:B3:3C:87:9C:23:C6:94:61:4D:6E:1D:39:39:C0:18:D2
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 018B1EA9554E02B550BDDD8738EFF82036F7
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/lvCcA7M8h5wjxpRhTW4dOTnAGNI.roa
Signing time: Wed 11 Oct 2023 12:14:55 +0000
ROA not before: Wed 11 Oct 2023 12:14:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 0
IP address blocks: 82.97.240.0/20 maxlen: 24
Validation: Failed, certificate revoked on Tue 28 Nov 2023 12:29:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:1e:a9:55:4e:02:b5:50:bd:dd:87:38:ef:f8:20:36:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: Oct 11 12:14:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=96f09c03b33c879c23c694614d6e1d3939c018d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:24:a9:8b:a3:a4:46:f9:8d:a3:ec:6b:97:1e:
2c:cc:dd:70:52:40:02:30:a8:3c:22:a4:12:b5:4b:
6d:23:d6:99:3d:8b:7d:85:37:ad:da:53:1e:b2:d4:
c3:7a:ea:a6:cc:1d:bc:f5:ac:2e:a0:64:ed:02:88:
52:89:77:ca:26:11:71:0d:84:ad:d8:75:18:7c:83:
6d:fc:b2:51:78:f3:24:7b:b1:e5:d6:58:fc:b3:68:
1b:87:7a:21:7d:09:22:85:07:31:67:46:2c:e1:b8:
dc:61:ed:7c:10:81:f2:af:b7:6a:b7:e7:7c:24:3d:
2c:08:4c:06:9a:8d:62:d7:d9:ff:ff:9f:32:da:3f:
bc:83:fd:9f:ae:d4:6a:b0:6b:f0:c8:ee:4b:e3:0c:
70:86:9f:e1:dc:6c:c6:f9:2c:42:ae:99:81:5b:aa:
d0:b8:30:1a:f3:c6:bf:6f:86:53:db:b3:08:d0:de:
1b:cc:ce:37:06:4c:e7:05:cc:09:46:6b:f1:a3:c1:
0e:21:2b:0e:cd:08:ca:c9:2b:42:da:91:25:b2:96:
65:5b:91:a6:c3:54:10:cc:8e:a3:80:ad:c6:9e:bf:
37:81:48:b0:38:43:b2:3f:bc:11:53:ab:89:74:f3:
50:d0:06:21:f9:f3:0d:fb:99:37:eb:8e:ae:ba:f2:
d6:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:F0:9C:03:B3:3C:87:9C:23:C6:94:61:4D:6E:1D:39:39:C0:18:D2
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/lvCcA7M8h5wjxpRhTW4dOTnAGNI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.97.240.0/20
Signature Algorithm: sha256WithRSAEncryption
0d:6a:ea:eb:fb:05:12:11:e5:4a:3f:af:e5:e9:d6:d7:08:15:
9f:3d:d1:18:d3:2f:d6:eb:4b:21:2e:14:56:2c:66:a0:17:fc:
3e:70:4a:f8:17:3b:ff:a9:f6:1b:88:1d:c4:b4:10:05:1c:7e:
ec:69:32:b4:b8:0c:6e:6f:87:0e:d8:11:32:c7:f3:da:ac:b7:
bb:c4:7f:6e:06:0c:e1:63:ef:91:cd:c9:c0:7a:34:fb:f9:24:
73:87:e0:d0:8b:2b:60:24:14:28:ec:a8:b9:5b:a6:3f:97:1e:
23:8f:a9:2c:ed:4d:13:16:14:8a:a2:68:37:a9:6e:84:a7:ab:
65:d8:48:98:5e:17:41:06:99:c8:fc:7b:97:46:aa:c2:34:3d:
20:02:3d:f5:54:22:5e:ca:9f:93:81:24:fa:b6:5f:bf:79:37:
8f:d6:8c:9a:a5:d9:a2:8d:3a:e5:7f:5f:7b:60:76:cb:da:26:
98:9e:98:15:dd:c2:81:0e:d6:b4:66:5f:ce:de:89:05:e2:89:
5f:03:e3:3b:48:5d:ad:26:84:0c:52:ea:e9:94:c4:4d:80:59:
e2:c8:f3:74:70:e5:7f:7a:1b:55:44:4d:7b:76:e7:db:e3:df:
c9:e4:03:15:f6:6f:80:f9:b7:49:40:dd:1b:78:45:55:4c:67:
e1:d4:b7:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:16 2024 by rpki-client on console-ams.rpki-client.org