Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/akhLgVcq7MbjehRmNT-qXHrZHio.roa
File: akhLgVcq7MbjehRmNT-qXHrZHio.roa (raw, json)
Hash identifier: 7GkiPcd5tuRYu+LUbNAJmpPfL+CILy+x/ZzCuzc+Ttc=
Subject key identifier: 6A:48:4B:81:57:2A:EC:C6:E3:7A:14:66:35:3F:AA:5C:7A:D9:1E:2A
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018756F92A7298D5E71A05836BB1305ED23C
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/akhLgVcq7MbjehRmNT-qXHrZHio.roa
Signing time: Thu 06 Apr 2023 14:29:42 +0000
ROA not before: Thu 06 Apr 2023 14:29:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50738
IP address blocks: 83.219.97.0/24 maxlen: 24
171.22.18.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 11 Apr 2023 14:40:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:56:f9:2a:72:98:d5:e7:1a:05:83:6b:b1:30:5e:d2:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Apr 6 14:29:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6a484b81572aecc6e37a1466353faa5c7ad91e2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:bf:d5:b7:69:f1:1e:a2:c2:26:2e:19:41:e6:
13:f3:39:df:48:d2:02:09:25:1d:01:a4:7d:cd:c4:
03:c1:9c:f5:68:9b:43:1a:3e:93:dc:83:10:54:42:
9a:a5:5a:4e:1f:e0:79:37:f3:58:16:88:d3:42:d4:
22:f1:63:c5:a7:2a:0e:18:a9:cd:d5:78:2b:b0:dc:
81:4a:e5:d6:6b:bf:a8:ad:0f:2f:a0:6d:ac:b5:15:
b3:3f:5b:4b:58:bf:a7:ce:a2:7c:42:e5:52:e6:a9:
6b:6a:4d:0b:43:94:c6:36:57:8d:79:ff:d7:22:85:
03:18:10:31:af:8c:69:7b:ba:62:49:a9:9e:79:da:
3f:1b:87:f7:52:75:18:4f:0b:51:51:7d:0f:e1:ac:
8e:a5:31:a2:51:2d:2f:bd:35:15:15:3b:c4:f4:41:
17:ae:42:c7:6d:5d:2d:4f:cc:e5:c6:0e:ab:91:c8:
d4:bd:f2:9c:34:24:de:33:f2:1a:f6:45:c2:14:1a:
12:8a:fa:a0:93:9e:8b:35:18:ae:6c:58:6d:b9:35:
21:4a:01:8d:9a:a9:c8:d7:96:1d:19:40:f3:46:bf:
b6:00:47:cf:83:e6:8c:71:c9:b3:7e:7a:77:90:7a:
ac:fd:04:85:93:2d:e3:cf:bf:59:25:90:45:b8:dd:
b2:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:48:4B:81:57:2A:EC:C6:E3:7A:14:66:35:3F:AA:5C:7A:D9:1E:2A
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/akhLgVcq7MbjehRmNT-qXHrZHio.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.219.97.0/24
171.22.18.0/24
Signature Algorithm: sha256WithRSAEncryption
71:c3:f4:52:93:aa:67:4a:10:ec:d5:f2:0c:67:2f:44:21:13:
04:24:c7:99:ca:8f:d6:64:b0:6f:61:19:44:53:e8:17:92:85:
52:8d:00:d9:e6:a8:fd:5b:1c:a3:c7:d9:b4:14:99:4e:5a:59:
12:7b:78:c1:0a:6b:7b:ce:88:18:82:27:a0:a3:4f:19:74:7a:
91:f3:8c:bf:8d:2c:0d:2d:77:ca:ff:f8:96:89:dd:15:6b:b3:
34:22:65:90:8f:f0:8b:54:cd:1a:3f:10:7f:4c:5c:94:5f:1a:
4a:52:2e:f8:6d:1f:33:10:d3:c9:97:e5:61:aa:5d:bf:3c:43:
6d:35:a0:c6:d5:0d:4e:2f:f5:e7:3f:b6:3c:23:6f:6a:5d:ec:
ab:76:1d:95:53:f5:54:ba:dc:8f:6d:80:e6:69:bc:8a:3f:39:
2f:07:a0:5c:96:28:05:78:87:cf:c4:3e:f2:33:ef:39:e3:fb:
8c:30:2d:c1:51:36:e7:60:fe:ce:ba:84:07:6c:93:76:bb:5b:
8a:a4:25:4e:6e:bb:bc:fe:b1:4f:ac:74:c4:84:66:7e:aa:88:
fb:5d:41:cd:2c:4b:6c:b9:0c:ad:8c:77:c4:b1:6a:a8:0e:c2:
1c:5b:4c:92:f2:39:b4:1e:6d:c0:51:14:46:c5:cb:89:32:8d:
4f:1c:32:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:50:37 2024 by rpki-client on console-ams.rpki-client.org