Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/3jIoo1mWdQaKVo0o4i8fpKweK8I.roa
File: 3jIoo1mWdQaKVo0o4i8fpKweK8I.roa (raw, json)
Hash identifier: cQMunE3Kho1LMrbBJKM+nP128FueqbltwzZrcf4c4OY=
Subject key identifier: DE:32:28:A3:59:96:75:06:8A:56:8D:28:E2:2F:1F:A4:AC:1E:2B:C2
Certificate issuer: /CN=91381bc969de6adc3d1ddc0eb89bdeeace9805cd
Certificate serial: 0185A146BB7581DCD096960483E489828FB1
Authority key identifier: 91:38:1B:C9:69:DE:6A:DC:3D:1D:DC:0E:B8:9B:DE:EA:CE:98:05:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kTgbyWneatw9HdwOuJve6s6YBc0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/3jIoo1mWdQaKVo0o4i8fpKweK8I.roa
Signing time: Wed 11 Jan 2023 14:40:45 +0000
ROA not before: Wed 11 Jan 2023 14:40:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57551
IP address blocks: 82.112.175.0/24 maxlen: 24
82.112.174.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:a1:46:bb:75:81:dc:d0:96:96:04:83:e4:89:82:8f:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91381bc969de6adc3d1ddc0eb89bdeeace9805cd
Validity
Not Before: Jan 11 14:40:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=de3228a3599675068a568d28e22f1fa4ac1e2bc2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:39:fb:18:72:a2:dc:ac:30:48:bc:62:f5:0a:
20:80:9a:f6:db:60:5e:43:86:21:5f:d1:37:11:74:
25:c3:a9:18:1d:88:fa:7b:48:ca:b5:fd:7a:f3:a4:
d7:84:88:2f:70:f2:a1:34:9d:82:1e:c9:83:c9:44:
09:dd:a4:dc:62:fc:b9:ec:ff:b7:cf:f3:0a:eb:f3:
59:f0:74:31:ae:a6:01:95:d3:e1:84:1a:5a:f3:72:
c9:a6:32:55:6f:ce:d6:e9:c1:6c:df:5d:65:1c:41:
3e:a2:a5:9f:d5:08:c5:5a:9f:e6:5d:ea:10:e6:58:
bf:f8:36:3c:11:98:18:24:42:98:e9:6c:8e:82:bb:
55:b8:9c:34:50:c1:b1:97:11:a3:a1:5e:ec:a0:bf:
c7:fd:63:a0:1e:72:2f:b7:ee:6e:a6:a2:9d:d8:db:
20:ff:7d:41:2b:68:bf:b6:14:e6:9b:21:26:d4:00:
1a:18:07:1b:95:9b:c5:a6:03:75:47:db:2d:26:e5:
dd:95:77:51:c7:e2:75:02:17:45:ca:5d:67:d5:fa:
fe:35:1a:a9:73:56:7c:9e:b6:ab:21:a1:d0:e3:8b:
57:57:f0:14:d9:32:73:57:c7:6b:26:cd:d2:90:4f:
a1:d0:f8:d4:0b:d1:40:b5:03:cd:fc:c3:57:99:22:
88:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:32:28:A3:59:96:75:06:8A:56:8D:28:E2:2F:1F:A4:AC:1E:2B:C2
X509v3 Authority Key Identifier:
keyid:91:38:1B:C9:69:DE:6A:DC:3D:1D:DC:0E:B8:9B:DE:EA:CE:98:05:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kTgbyWneatw9HdwOuJve6s6YBc0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/3jIoo1mWdQaKVo0o4i8fpKweK8I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/kTgbyWneatw9HdwOuJve6s6YBc0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.112.174.0/23
Signature Algorithm: sha256WithRSAEncryption
92:b7:b7:80:2b:ce:39:6d:9f:08:e7:3c:fd:a2:6c:e7:0c:41:
51:9b:6f:22:44:a1:7f:49:47:2a:32:f0:f9:43:8e:ad:f7:29:
43:50:5f:5e:a3:c4:b9:69:80:97:1b:d0:eb:3e:41:44:eb:c8:
be:34:b4:bc:55:45:b3:41:1a:a9:c3:23:50:c0:1b:7a:81:14:
5b:87:6a:9c:17:82:88:26:ed:ad:99:5d:70:31:53:b0:50:b2:
c2:01:f8:fc:40:d9:87:47:1c:0f:c8:79:d3:fc:d0:51:2b:8b:
42:36:1f:e3:1c:77:a4:56:49:40:b3:18:bd:3d:4b:2f:3f:09:
b4:72:f4:b8:b1:86:14:c9:3d:8c:8c:c2:1a:22:6b:d8:d4:ed:
72:14:bd:2a:a7:69:9a:5d:da:ce:93:ed:77:fe:bd:b5:8e:bd:
d5:b4:c3:1b:39:ba:7b:70:0a:22:72:0a:99:35:b6:de:1e:1c:
c3:73:91:e4:2b:b8:ee:ff:ff:e6:01:e8:a1:6e:d7:a2:35:cb:
e1:67:87:3c:e1:16:2c:1c:37:a9:16:9e:58:44:37:07:88:c5:
e5:0c:ec:8b:92:7f:7e:53:ff:87:44:e0:ea:08:c7:dd:ba:ce:
57:fe:9c:13:6b:49:94:38:43:6e:4b:51:29:c8:1f:ad:4a:cf:
ae:34:ff:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 13:11:01 2024 by rpki-client on console-ams.rpki-client.org