Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/93c17e-8490-4e91-9815-72c33daf3156/1/Q8AGl3YbD8EJmiJr5atlBxN2UVk.roa
File: Q8AGl3YbD8EJmiJr5atlBxN2UVk.roa (raw, json)
Hash identifier: Rh5kFb4gY+T13yql/j2LTTdPveWwmV/K/fbeQY6auyM=
Subject key identifier: 43:C0:06:97:76:1B:0F:C1:09:9A:22:6B:E5:AB:65:07:13:76:51:59
Certificate issuer: /CN=10768d39f932791007a097209b0983fe85560cb8
Certificate serial: 01857094FE842D4DF6ECF93F18BB20455BC3
Authority key identifier: 10:76:8D:39:F9:32:79:10:07:A0:97:20:9B:09:83:FE:85:56:0C:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EHaNOfkyeRAHoJcgmwmD_oVWDLg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/93c17e-8490-4e91-9815-72c33daf3156/1/Q8AGl3YbD8EJmiJr5atlBxN2UVk.roa
Signing time: Mon 02 Jan 2023 03:44:50 +0000
ROA not before: Mon 02 Jan 2023 03:44:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31273
IP address blocks: 82.113.224.0/19 maxlen: 24
2a00:6f00::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:94:fe:84:2d:4d:f6:ec:f9:3f:18:bb:20:45:5b:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10768d39f932791007a097209b0983fe85560cb8
Validity
Not Before: Jan 2 03:44:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=43c00697761b0fc1099a226be5ab650713765159
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:2d:c0:84:29:4b:e1:0c:f6:c0:3f:af:eb:b0:
3c:24:72:72:28:9a:64:be:4d:17:fa:f9:fc:ec:dd:
7d:c4:e3:d1:1d:69:16:5d:88:8a:74:fc:26:f1:8e:
4e:f6:3d:0b:a0:95:0c:0d:7e:84:16:13:dc:c4:16:
70:92:59:12:2d:b9:b8:1a:ac:48:8b:e3:65:48:8c:
71:fd:ef:44:32:06:3c:fa:13:27:7d:8b:e2:5c:ce:
90:b2:be:55:96:89:96:05:28:45:29:32:95:c5:a6:
b4:a4:09:91:a9:8d:ae:51:de:b0:b4:ca:50:74:e2:
67:24:f9:46:4b:ed:0a:77:45:de:6b:b1:d7:e3:2c:
4d:c1:89:d3:25:09:8d:3c:33:e8:62:10:e2:46:b9:
6b:4d:e2:eb:87:20:b2:d8:5e:97:99:a8:c5:93:8e:
2a:fd:09:6f:48:fe:d4:15:92:ae:94:fe:f1:ba:e7:
16:80:6d:3d:5f:71:1d:7d:c4:b4:6f:07:c3:9d:f4:
10:71:1b:97:8f:57:da:47:4f:77:bb:8a:c8:d4:20:
c4:17:ef:7c:66:84:64:a3:c5:3c:22:8d:45:5a:02:
46:4f:a8:93:ec:5c:89:98:8e:2b:24:04:de:5e:1c:
e9:86:a2:30:70:b9:8c:39:c3:e2:75:16:79:bf:9a:
90:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:C0:06:97:76:1B:0F:C1:09:9A:22:6B:E5:AB:65:07:13:76:51:59
X509v3 Authority Key Identifier:
keyid:10:76:8D:39:F9:32:79:10:07:A0:97:20:9B:09:83:FE:85:56:0C:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EHaNOfkyeRAHoJcgmwmD_oVWDLg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/93c17e-8490-4e91-9815-72c33daf3156/1/Q8AGl3YbD8EJmiJr5atlBxN2UVk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/93c17e-8490-4e91-9815-72c33daf3156/1/EHaNOfkyeRAHoJcgmwmD_oVWDLg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.113.224.0/19
IPv6:
2a00:6f00::/32
Signature Algorithm: sha256WithRSAEncryption
30:f0:8d:35:8a:52:a5:34:9f:46:d0:3e:6c:e5:a7:a1:8c:48:
e9:50:31:f9:7b:63:77:84:b8:c6:51:e6:bb:00:95:4c:57:67:
2b:b3:e5:22:bf:d8:0d:d5:e7:8b:a6:f0:88:3f:cd:cf:97:db:
4c:31:31:47:dd:40:bb:04:86:f1:ff:8e:aa:ef:bf:91:fd:e4:
0d:b2:fd:dd:3b:63:9c:ca:a3:c8:13:9c:f1:5e:39:13:a4:60:
ae:ce:5b:b3:be:cf:0b:33:03:b8:77:e1:57:3c:34:54:26:d9:
61:b1:55:87:a4:eb:54:f7:33:a4:21:c8:7d:d4:59:37:01:63:
05:a0:4f:8a:58:f4:50:4a:10:f8:69:fc:75:cd:8d:28:95:91:
be:50:26:f7:37:1c:dc:d7:5a:aa:60:b4:c1:94:41:83:55:5f:
8a:27:fc:77:22:7c:9a:ba:8e:8d:91:72:b1:4e:be:62:07:f6:
4e:68:d9:59:a7:8b:2d:a3:e3:6b:42:68:8d:fc:d2:30:6d:7c:
84:c0:2b:9f:3d:b6:bb:d1:3d:88:40:49:54:36:32:f2:2a:96:
de:00:4f:d1:00:b7:9d:a8:25:fa:aa:4c:c2:81:2b:f6:20:48:
f4:d3:64:ec:db:18:47:35:70:af:0a:41:74:9b:84:b7:84:84:
c4:bd:9c:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 06:30:56 2024 by rpki-client on console-fra.rpki-client.org