Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/7cb179-ad2c-4824-a1e5-ae07f32e4102/1/42qAL_65BorRW9hHgQvcLQclLLo.roa
File: 42qAL_65BorRW9hHgQvcLQclLLo.roa (raw, json)
Hash identifier: v2icc29ZiZj2tetkiOG5NAfPrSErxaUowGS6RM7Ilfc=
Subject key identifier: E3:6A:80:2F:FE:B9:06:8A:D1:5B:D8:47:81:0B:DC:2D:07:25:2C:BA
Certificate issuer: /CN=fc44297e9271c6edf064915f6180ae12690dda8b
Certificate serial: 018CC56E1C0E4D4872065F7B44271678F5E5
Authority key identifier: FC:44:29:7E:92:71:C6:ED:F0:64:91:5F:61:80:AE:12:69:0D:DA:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_EQpfpJxxu3wZJFfYYCuEmkN2os.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/7cb179-ad2c-4824-a1e5-ae07f32e4102/1/42qAL_65BorRW9hHgQvcLQclLLo.roa
Signing time: Mon 01 Jan 2024 14:29:36 +0000
ROA not before: Mon 01 Jan 2024 14:29:36 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199270
IP address blocks: 82.114.44.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 12 Feb 2024 15:58:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:1c:0e:4d:48:72:06:5f:7b:44:27:16:78:f5:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fc44297e9271c6edf064915f6180ae12690dda8b
Validity
Not Before: Jan 1 14:29:36 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e36a802ffeb9068ad15bd847810bdc2d07252cba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:26:7f:91:b0:7d:5a:25:27:c6:22:9c:97:48:
fc:ef:1a:b7:a1:0c:47:1d:19:ad:a1:87:25:da:2a:
10:43:3e:59:ef:bc:f3:bd:92:87:19:e1:67:35:41:
6f:1f:4b:90:c2:05:72:e6:04:62:11:2b:6d:e2:6e:
aa:7c:8e:98:bb:31:dd:68:1d:5a:a5:f7:9d:5a:52:
8f:0d:87:cc:4e:ff:6d:03:74:55:51:39:cb:66:c4:
3e:17:7e:c0:54:0b:ec:b3:f5:21:2b:2c:67:7c:9a:
c2:c5:c0:96:07:82:e1:66:e0:08:c7:cf:bf:08:8d:
04:3f:b5:5a:99:c3:11:d4:90:59:15:33:67:c9:a0:
b5:ee:e3:37:4d:cc:13:5a:16:9f:f8:19:fe:01:5a:
ae:eb:94:57:82:93:4f:27:a6:60:f8:6a:d2:be:5d:
f8:69:1c:18:cc:5c:1f:9a:98:06:9d:82:51:43:3e:
83:74:e5:2e:77:fd:93:c6:4f:fc:aa:47:3e:1f:6d:
e3:73:d9:cf:7d:47:b5:ef:c3:bd:13:db:d6:ac:d2:
e5:ef:b1:68:85:67:0e:a0:0a:a9:c0:3d:52:00:da:
48:50:0d:0a:bb:b8:0e:bc:fe:36:b8:63:f2:9b:47:
e8:d6:0d:0d:49:7f:f9:66:c6:c7:07:f0:67:00:fc:
94:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:6A:80:2F:FE:B9:06:8A:D1:5B:D8:47:81:0B:DC:2D:07:25:2C:BA
X509v3 Authority Key Identifier:
keyid:FC:44:29:7E:92:71:C6:ED:F0:64:91:5F:61:80:AE:12:69:0D:DA:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_EQpfpJxxu3wZJFfYYCuEmkN2os.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/7cb179-ad2c-4824-a1e5-ae07f32e4102/1/42qAL_65BorRW9hHgQvcLQclLLo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/7cb179-ad2c-4824-a1e5-ae07f32e4102/1/_EQpfpJxxu3wZJFfYYCuEmkN2os.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.114.44.0/22
Signature Algorithm: sha256WithRSAEncryption
41:8a:25:ea:09:f2:a5:ce:ca:88:25:16:5c:84:24:cc:ee:ea:
8c:7f:09:61:2b:ba:25:0e:f1:b5:40:b7:29:c4:00:c3:99:c6:
16:0a:20:2b:89:d4:4f:2d:69:a4:18:d1:c7:4e:64:da:94:7c:
37:60:c0:86:17:4f:60:dd:3f:4b:21:35:dc:03:2f:ad:25:e7:
74:51:12:36:ca:e8:80:17:43:db:c5:43:ff:36:97:e6:2d:38:
ac:7e:07:59:5b:ae:47:08:aa:d8:4e:d1:fc:8b:42:e7:3b:3f:
42:03:4e:24:bf:63:9f:77:2b:2d:b5:c7:86:73:4d:95:c8:b2:
bf:07:f6:1d:4f:88:c7:aa:b2:40:83:8b:53:97:33:b6:a1:b9:
38:e0:fa:4c:53:ee:d3:2d:29:cb:68:c9:9f:7f:1c:d0:73:e7:
32:28:f3:a7:7c:8d:a8:82:7f:74:86:01:18:06:26:cb:90:6a:
d9:15:97:79:97:49:ec:37:c8:0f:64:32:30:c7:08:ee:52:d6:
78:70:02:ee:7e:da:73:78:f6:66:08:46:0e:03:9d:cd:2e:44:
25:4a:c0:95:1a:28:8b:2f:ff:2f:2c:78:ac:07:50:13:e4:70:
3d:35:16:8e:4c:d0:d2:10:f9:73:a8:15:81:ea:91:15:49:f7:
83:f8:e4:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:53 2024 by rpki-client on console-ams.rpki-client.org