Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/957bb3-2de5-45cf-acf3-c3a02d7c0697/1/jHbNAQRUJU-aY0WZ-aEIiigMw14.roa
File: jHbNAQRUJU-aY0WZ-aEIiigMw14.roa (raw, json)
Hash identifier: miauXEfeEsn08m19XaBLr4TPISNm5UIt+X6o5BXV8xA=
Subject key identifier: 8C:76:CD:01:04:54:25:4F:9A:63:45:99:F9:A1:08:8A:28:0C:C3:5E
Certificate issuer: /CN=8756d27768e11d94a0bbcdfb3fbcd740d45a00f4
Certificate serial: 018BD7337BFD51B767A30508E2DCF1EC32FC
Authority key identifier: 87:56:D2:77:68:E1:1D:94:A0:BB:CD:FB:3F:BC:D7:40:D4:5A:00:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h1bSd2jhHZSgu837P7zXQNRaAPQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/957bb3-2de5-45cf-acf3-c3a02d7c0697/1/jHbNAQRUJU-aY0WZ-aEIiigMw14.roa
Signing time: Thu 16 Nov 2023 08:15:57 +0000
ROA not before: Thu 16 Nov 2023 08:15:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16589
IP address blocks: 82.146.16.0/22 maxlen: 24
Validation: Failed, certificate revoked on Thu 23 Nov 2023 21:14:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:d7:33:7b:fd:51:b7:67:a3:05:08:e2:dc:f1:ec:32:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8756d27768e11d94a0bbcdfb3fbcd740d45a00f4
Validity
Not Before: Nov 16 08:15:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8c76cd010454254f9a634599f9a1088a280cc35e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:e3:04:05:d0:96:22:1e:8e:24:33:1c:9e:9e:
3d:6e:b3:05:2c:87:84:87:38:3f:6e:65:65:bd:72:
89:5c:79:fa:71:73:2b:77:b5:8e:c6:15:3e:c9:7a:
ca:13:82:37:b6:cf:05:65:c8:3c:b0:78:93:49:ef:
c2:7c:2d:6f:bd:26:61:bc:18:a9:7a:65:48:0c:0a:
59:a9:d9:ec:da:69:04:05:04:96:f2:fe:c2:86:f9:
9b:e6:3d:dc:ce:a1:d2:fb:13:c5:ca:2e:7c:55:cc:
3a:19:9e:aa:2e:7d:93:cf:3d:9c:93:cd:da:0a:85:
00:a9:f1:b6:5f:39:c4:82:4d:62:db:52:a8:1f:23:
8f:ab:14:2a:85:b3:e7:2a:1f:f3:5d:0b:83:95:95:
7b:26:89:a3:f5:b6:10:16:b2:66:9a:2d:c8:ff:69:
78:85:26:e5:48:b8:90:4b:42:ba:8d:98:49:17:0a:
d1:85:5a:9e:3b:6f:60:65:2b:31:91:80:b7:29:b7:
da:14:13:f9:68:24:ff:fb:e1:b8:63:52:e2:bd:f5:
45:e1:ec:27:42:5e:7e:a7:03:b5:5c:31:f1:9b:b8:
3a:b1:4c:09:cd:e5:7b:74:35:c0:28:9f:22:13:ec:
5e:42:f3:6f:f1:b4:88:a2:2d:8f:ec:3d:93:68:c6:
95:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:76:CD:01:04:54:25:4F:9A:63:45:99:F9:A1:08:8A:28:0C:C3:5E
X509v3 Authority Key Identifier:
keyid:87:56:D2:77:68:E1:1D:94:A0:BB:CD:FB:3F:BC:D7:40:D4:5A:00:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h1bSd2jhHZSgu837P7zXQNRaAPQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/957bb3-2de5-45cf-acf3-c3a02d7c0697/1/jHbNAQRUJU-aY0WZ-aEIiigMw14.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/957bb3-2de5-45cf-acf3-c3a02d7c0697/1/h1bSd2jhHZSgu837P7zXQNRaAPQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.146.16.0/22
Signature Algorithm: sha256WithRSAEncryption
20:c0:57:39:88:37:d7:cc:58:bf:f8:c6:f6:79:78:52:43:ad:
0c:e9:fc:83:b9:e5:bb:7a:b9:31:de:bc:c6:fd:53:66:64:6f:
8e:15:01:0b:67:27:fa:83:c4:25:e9:50:2b:69:57:29:1c:4d:
09:29:e9:49:b9:6d:98:37:cf:56:8d:e1:7a:1c:73:02:b5:4c:
cf:40:86:e8:24:c5:cc:c3:e0:b3:0c:ea:e3:86:0b:ee:b7:8b:
78:c6:be:66:59:ea:d6:04:5e:29:8e:79:11:78:52:af:f4:2f:
ad:4a:3f:a0:bd:fd:42:b4:e8:ab:9c:b4:09:c9:a3:ec:56:a8:
bc:e6:ef:e7:b8:06:07:e8:2b:9d:53:f1:9a:5c:ef:98:24:e1:
49:f7:fa:4e:ae:ad:9a:2e:56:d8:2a:2b:3b:38:60:af:8f:de:
9a:69:1a:ff:bc:cb:03:cd:ab:06:45:49:0f:6a:16:8d:8e:ac:
06:78:35:1c:39:a0:d2:2b:ba:64:51:8a:65:72:d5:62:2d:cc:
d9:7a:c5:58:76:c4:5c:d6:e2:31:24:8c:a3:4c:7e:1f:6f:5c:
d3:30:6e:bb:c0:20:77:48:fa:67:59:93:b4:07:7e:08:50:14:
2b:b9:46:f3:65:69:2b:32:cf:e1:c6:d6:19:89:df:22:31:03:
cc:7e:c0:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:24 2024 by rpki-client on console-fra.rpki-client.org