Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/8YvAuAAY03yUqe6z7UfFdqO34d8.roa
File: 8YvAuAAY03yUqe6z7UfFdqO34d8.roa (raw, json)
Hash identifier: hpwsL/5LHMMt7UFGbhYi+z3r1vawAZFqCPPMnkmZHoc=
Subject key identifier: F1:8B:C0:B8:00:18:D3:7C:94:A9:EE:B3:ED:47:C5:76:A3:B7:E1:DF
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 01857CDE9FC54AB44839DA581DA381B3B73A
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/8YvAuAAY03yUqe6z7UfFdqO34d8.roa
Signing time: Wed 04 Jan 2023 13:00:42 +0000
ROA not before: Wed 04 Jan 2023 13:00:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60849
IP address blocks: 82.115.208.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 29 May 2023 06:30:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:7c:de:9f:c5:4a:b4:48:39:da:58:1d:a3:81:b3:b7:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jan 4 13:00:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f18bc0b80018d37c94a9eeb3ed47c576a3b7e1df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:24:2b:7e:2d:66:b1:16:0a:63:57:b7:fb:b5:
c4:f3:ed:ee:39:28:fd:ff:0d:4b:48:dc:d8:30:8f:
2b:5f:3f:1c:a5:79:b9:70:25:3a:57:51:c4:cc:4d:
5b:e0:9e:a0:d3:fd:30:c2:87:0c:27:b5:90:fc:e4:
d5:2e:21:fc:bb:7c:2d:5d:aa:88:3c:41:f2:bb:88:
22:4e:e3:1a:47:4f:ec:a6:1b:05:e8:0a:ce:fd:73:
e5:bc:90:b1:7f:d6:0c:39:00:c2:5f:ac:3c:90:c0:
bd:56:f1:92:96:60:01:df:30:41:f5:5f:dd:40:15:
5e:35:ea:2a:fb:25:eb:df:c8:ea:49:b9:9f:a2:ba:
8b:38:7b:ec:de:29:0b:82:55:6e:a6:7c:d0:6d:93:
19:33:39:c1:54:4a:bf:c8:f1:e6:e4:22:e8:97:c0:
0b:2f:6c:89:66:a2:2f:8b:d8:98:23:dd:65:03:b5:
4e:e3:2d:76:e4:d6:c1:74:0a:28:85:8d:5d:2f:b6:
9d:d3:0d:c9:0c:63:41:7c:98:74:38:e2:f1:33:63:
92:ec:db:26:6b:6b:a8:06:13:3e:93:ee:3c:e3:ed:
c1:de:04:ff:48:76:06:2f:04:49:9c:3f:a8:3e:62:
7a:64:cd:1d:3f:f1:fd:15:d4:ad:63:42:a6:75:a5:
81:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:8B:C0:B8:00:18:D3:7C:94:A9:EE:B3:ED:47:C5:76:A3:B7:E1:DF
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/8YvAuAAY03yUqe6z7UfFdqO34d8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.115.208.0/24
Signature Algorithm: sha256WithRSAEncryption
21:51:d6:4b:33:df:ce:69:26:07:27:6e:e0:cc:f6:29:ca:c5:
54:28:b2:fe:49:02:48:fc:b2:db:39:9f:b1:06:26:c9:30:4d:
c5:a8:e0:41:6a:a5:11:43:c6:13:11:f0:f8:50:09:4a:ac:ab:
4b:d5:df:15:27:a9:5e:f2:ff:79:06:20:5b:f4:3b:3f:5c:b4:
4e:48:8c:83:de:7b:55:42:9c:42:ff:aa:17:51:21:64:a2:41:
ea:b9:72:f2:d9:68:3f:05:a5:55:69:6d:c8:32:30:52:b6:c2:
3c:8f:de:53:21:67:85:dc:09:da:02:ef:ba:95:b1:2a:9f:d0:
5a:e4:bb:dd:80:13:6c:10:a3:bd:d6:f0:0a:9e:7c:0c:bc:d7:
ee:3a:b9:1d:ff:c1:7c:57:97:72:71:be:b7:90:12:93:46:c1:
e8:67:96:08:92:9c:34:93:61:0d:b9:72:c8:2c:ce:b4:8d:bd:
ef:08:2a:f7:69:03:06:0c:19:3a:73:07:f7:16:31:10:97:8b:
9b:61:79:e4:40:24:9b:46:0e:fe:6e:73:11:8d:16:40:37:32:
6e:a9:f0:49:1f:56:8e:3e:51:ae:dc:8f:c7:86:19:68:34:74:
64:ec:93:3b:1f:e7:1b:6e:e9:17:9e:8d:aa:fd:bc:88:68:ca:
7d:2e:39:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:50:25 2024 by rpki-client on console-ams.rpki-client.org