Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/v6h630wwReUgdD5rEiX-QbUFmmo.roa
File: v6h630wwReUgdD5rEiX-QbUFmmo.roa (raw, json)
Hash identifier: hOFnGVfb/zbIRBGOgkz6bUFkfHRawoLuDr9OxZR6+k4=
Subject key identifier: BF:A8:7A:DF:4C:30:45:E5:20:74:3E:6B:12:25:FE:41:B5:05:9A:6A
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 018AEF897DE907DDEA283770C488341724B5
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/v6h630wwReUgdD5rEiX-QbUFmmo.roa
Signing time: Mon 02 Oct 2023 08:37:59 +0000
ROA not before: Mon 02 Oct 2023 08:37:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 0
IP address blocks: 5.34.208.0/21 maxlen: 24
82.115.8.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 04 Oct 2023 02:49:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:ef:89:7d:e9:07:dd:ea:28:37:70:c4:88:34:17:24:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: Oct 2 08:37:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bfa87adf4c3045e520743e6b1225fe41b5059a6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:5a:4c:3c:e7:c9:da:fe:cd:82:b8:d4:9d:d2:
91:8c:b3:3f:3b:d8:26:cc:d2:c4:fa:02:6a:5f:34:
ad:60:87:96:78:54:d7:29:7d:96:91:11:b6:ec:8a:
15:aa:83:42:5d:b4:5b:0e:4e:48:c7:eb:9e:b7:06:
58:6e:ab:02:8f:db:35:28:0d:73:4d:77:de:5a:81:
d2:de:9e:87:40:a8:81:6a:9c:2d:ea:70:1e:4c:0e:
10:f2:b2:79:01:e1:01:ed:a1:22:51:72:1f:47:83:
59:33:e5:d7:56:7c:af:3f:80:3f:ae:c0:36:74:3e:
23:5b:c8:be:50:dd:72:fa:67:ad:12:20:ec:e2:a6:
55:1f:a8:f0:4b:ee:f9:c3:50:43:8b:b0:ac:ff:07:
1c:3c:0f:a8:19:99:33:99:83:53:ed:d0:d9:67:0a:
08:81:90:f6:84:bf:ef:1a:8c:32:5d:8a:a0:5d:c6:
92:48:2e:dd:6c:59:a9:44:f6:ea:28:89:93:1a:95:
8f:a9:f2:73:2d:74:00:b4:9b:a3:46:b3:34:f9:12:
2c:d3:c7:ab:dd:4c:27:86:86:2f:1b:4e:35:bb:b9:
e1:4b:99:a3:9b:d9:9c:ec:7c:08:f2:97:dd:ab:15:
c8:58:70:8a:ab:73:7e:6a:9a:7d:c4:20:bf:eb:6b:
34:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:A8:7A:DF:4C:30:45:E5:20:74:3E:6B:12:25:FE:41:B5:05:9A:6A
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/v6h630wwReUgdD5rEiX-QbUFmmo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.34.208.0/21
82.115.8.0/22
Signature Algorithm: sha256WithRSAEncryption
0b:ef:03:b5:ea:8e:ee:f1:48:4a:20:61:4b:8c:52:32:df:ce:
e6:9e:c3:83:d4:33:38:f3:44:18:31:ec:d5:a8:02:e5:34:66:
07:b4:b1:45:da:49:25:06:e9:59:c1:a1:78:18:3a:17:26:1d:
49:8a:a1:61:05:37:16:6e:20:fa:cc:7b:c3:a5:01:a3:45:06:
27:d6:dd:05:62:f3:56:36:62:05:53:19:4b:76:ea:82:c8:04:
68:f1:1a:d6:cf:d9:c4:6d:73:85:b9:98:6e:5d:97:1c:ed:70:
dc:be:64:3c:e4:9e:e9:5d:5a:b2:f3:39:e9:67:d5:53:73:6f:
17:ae:4a:61:af:4f:bc:69:23:8f:70:fc:96:96:52:85:ee:bf:
b6:1e:cb:66:ea:ba:1a:42:d2:27:06:17:77:8d:5f:c5:77:e3:
a6:be:38:f0:3e:bf:03:5a:91:32:87:24:56:01:02:0f:0d:ac:
d0:0c:73:b8:36:bb:f0:65:07:c4:8e:a9:71:d5:a1:07:15:ba:
34:a5:05:4b:e7:74:4c:bf:37:b9:92:e7:4c:e7:42:47:ad:25:
10:7c:21:07:eb:1b:b5:a7:b9:58:6e:d9:34:c2:35:e7:68:a2:
4d:2d:31:14:d6:79:0c:d6:ee:87:e7:4b:d9:b6:28:21:2e:d3:
d6:15:8d:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:16 2024 by rpki-client on console-ams.rpki-client.org