Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/t25qzimpeD6Aa1n_hlGyDaXrOpg.roa
File: t25qzimpeD6Aa1n_hlGyDaXrOpg.roa (raw, json)
Hash identifier: XOnNMuQ1YIdyYz5bFyayeLjx+ysik/CYW6/n4o7bYqg=
Subject key identifier: B7:6E:6A:CE:29:A9:78:3E:80:6B:59:FF:86:51:B2:0D:A5:EB:3A:98
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 0188CE1D94554C5E8184FA6181F2D0663FD0
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/t25qzimpeD6Aa1n_hlGyDaXrOpg.roa
Signing time: Sun 18 Jun 2023 10:47:05 +0000
ROA not before: Sun 18 Jun 2023 10:47:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207459
IP address blocks: 82.115.13.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 19 Jul 2023 09:10:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:ce:1d:94:55:4c:5e:81:84:fa:61:81:f2:d0:66:3f:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: Jun 18 10:47:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b76e6ace29a9783e806b59ff8651b20da5eb3a98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:fc:c9:66:0a:eb:bd:9a:ee:78:40:43:4c:90:
e9:ab:20:be:4b:83:48:b4:46:cb:a5:0c:2d:70:b4:
8d:0c:88:f8:0f:15:12:6d:de:4e:d2:ae:6c:2a:f5:
c5:59:4a:f8:bd:dc:cc:72:38:33:01:1d:08:7f:43:
65:90:88:79:c3:30:69:73:63:dc:08:14:f7:f3:f2:
3d:d8:ca:3d:42:c2:50:d5:2d:40:ca:56:ee:6c:cc:
c7:6f:4d:d3:45:90:8d:7f:36:ea:c0:c2:83:bb:c0:
9d:11:ea:fa:11:ce:a9:2e:06:36:30:f7:8c:e2:a7:
b3:b5:a2:39:f5:86:30:dd:22:1a:93:5d:0b:dd:75:
a4:db:b5:f3:de:53:8b:dd:84:3b:16:91:34:9e:1d:
51:1c:60:d2:53:75:f7:bb:58:bc:8e:91:3d:e3:a7:
dc:85:ad:86:94:14:04:33:d9:f2:83:f7:dd:9f:32:
e4:ac:c4:32:90:6e:d9:3a:3b:c9:bd:41:e2:61:1a:
95:92:e2:43:e8:64:97:91:da:c4:48:c9:6d:ee:41:
d1:1c:4d:3a:eb:a3:21:0e:47:a1:aa:08:c1:f2:41:
1d:1e:6b:6d:a2:34:34:51:8c:3f:18:ca:57:7b:b5:
9a:50:b0:f1:5f:10:e9:4e:0a:60:83:99:c9:4d:44:
3f:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:6E:6A:CE:29:A9:78:3E:80:6B:59:FF:86:51:B2:0D:A5:EB:3A:98
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/t25qzimpeD6Aa1n_hlGyDaXrOpg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.115.13.0/24
Signature Algorithm: sha256WithRSAEncryption
bb:8c:13:09:b4:4f:15:5d:c0:18:fb:bb:6f:ef:6c:13:57:be:
87:56:b0:d1:fc:de:88:0e:18:ea:0b:96:5f:66:3d:f6:1c:92:
6a:19:e4:1b:5d:fc:55:30:3b:ed:c7:00:7a:0d:48:17:38:f2:
18:02:17:a5:28:47:93:d7:9f:b6:79:60:d5:8e:4e:cc:8f:32:
0c:93:68:e6:6c:4e:2b:2c:98:53:a1:12:20:2d:24:ae:36:a5:
b5:a0:f9:bd:96:8e:bc:bf:64:d0:ec:18:f9:fd:ee:72:08:2f:
b8:de:73:5f:c1:c7:8e:5e:de:7a:d6:8d:be:b1:e4:19:95:7b:
d7:ab:cf:72:16:c3:e7:be:60:b0:75:67:7d:9f:4e:41:fd:3f:
aa:aa:f6:f7:37:41:53:96:33:e5:75:83:20:1e:69:17:d5:df:
82:b1:42:0a:70:5c:93:e9:96:f4:e3:04:77:58:51:b0:39:60:
ef:af:f9:f1:86:d7:f6:20:09:26:87:7c:70:a4:f2:ab:ec:30:
03:a5:1c:0f:20:10:2b:9a:59:c8:19:b9:aa:06:3c:45:c2:c6:
c1:96:1c:21:84:cc:d3:68:f9:05:3a:63:bc:e2:14:01:7f:ee:
7b:75:25:99:a1:ed:a4:18:34:1a:bb:18:39:d6:08:d9:92:25:
77:74:62:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:16 2024 by rpki-client on console-ams.rpki-client.org