Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/ktHpufb77bzawmVhCOaPBO1EplE.roa
File: ktHpufb77bzawmVhCOaPBO1EplE.roa (raw, json)
Hash identifier: wdu8ymskgY0jhxLFRcaWHWZfL2dM55bPgFtYsd2UOwc=
Subject key identifier: 92:D1:E9:B9:F6:FB:ED:BC:DA:C2:65:61:08:E6:8F:04:ED:44:A6:51
Certificate issuer: /CN=91381bc969de6adc3d1ddc0eb89bdeeace9805cd
Certificate serial: 018968B2ACC98FC814C466701CD48996E512
Authority key identifier: 91:38:1B:C9:69:DE:6A:DC:3D:1D:DC:0E:B8:9B:DE:EA:CE:98:05:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kTgbyWneatw9HdwOuJve6s6YBc0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/ktHpufb77bzawmVhCOaPBO1EplE.roa
Signing time: Tue 18 Jul 2023 11:11:27 +0000
ROA not before: Tue 18 Jul 2023 11:11:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34224
IP address blocks: 82.112.171.0/24 maxlen: 24
82.112.175.0/24 maxlen: 24
82.112.174.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:68:b2:ac:c9:8f:c8:14:c4:66:70:1c:d4:89:96:e5:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91381bc969de6adc3d1ddc0eb89bdeeace9805cd
Validity
Not Before: Jul 18 11:11:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=92d1e9b9f6fbedbcdac2656108e68f04ed44a651
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:43:b3:40:f3:b5:98:a2:eb:aa:24:e2:fd:4d:
bd:1c:ff:1a:08:1b:64:3f:33:a0:63:39:98:88:53:
f4:bb:11:99:a6:a9:e9:9b:7b:44:50:f5:4b:1d:75:
8d:aa:15:6a:d1:81:c0:c6:ef:3f:2d:89:b5:9b:ad:
22:8e:44:19:15:b6:e5:3b:e0:36:58:c1:35:9f:1a:
7b:d0:ca:dd:9a:37:27:ea:4a:f8:08:78:64:5f:a0:
b8:3d:a0:40:b8:a1:27:f4:6e:21:c8:bd:12:89:da:
78:6a:cd:1c:28:bd:34:31:b8:77:3b:c5:fc:96:ec:
d4:4d:97:0e:34:cd:50:07:3a:c4:b1:ea:3e:16:ff:
58:89:8b:bd:99:20:3e:f7:5c:df:3d:1e:3a:cc:dc:
4a:b3:bc:f3:27:a3:05:e5:b0:3a:f4:2b:c1:9e:ea:
ab:33:9c:44:aa:bb:77:86:6f:33:f7:86:95:f3:34:
a2:b5:b9:dc:94:7c:82:26:00:19:99:64:32:7a:5a:
34:6d:78:1e:3f:05:0f:cc:5c:55:6e:74:10:e7:59:
b4:97:77:c1:24:3d:ab:b7:1a:4f:66:8f:9a:be:9e:
9a:0b:7f:39:31:01:eb:a0:4d:e0:f2:21:88:c0:5e:
04:6c:65:0e:f7:49:f6:46:45:23:5f:14:c8:8a:f0:
d6:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:D1:E9:B9:F6:FB:ED:BC:DA:C2:65:61:08:E6:8F:04:ED:44:A6:51
X509v3 Authority Key Identifier:
keyid:91:38:1B:C9:69:DE:6A:DC:3D:1D:DC:0E:B8:9B:DE:EA:CE:98:05:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kTgbyWneatw9HdwOuJve6s6YBc0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/ktHpufb77bzawmVhCOaPBO1EplE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/kTgbyWneatw9HdwOuJve6s6YBc0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.112.171.0/24
82.112.174.0/23
Signature Algorithm: sha256WithRSAEncryption
12:e4:24:bc:9f:99:e9:99:38:07:43:ba:aa:a0:ce:96:23:14:
80:45:3d:c8:2f:a1:63:96:16:2e:7d:a1:95:d3:7d:29:bd:b7:
a0:44:3b:ae:80:d0:78:6d:05:34:7e:b1:00:e0:0a:52:f0:ea:
43:10:bb:23:53:85:cb:2f:cf:9a:b7:ae:3e:93:3c:9f:b8:d6:
61:70:21:00:c5:5f:73:a0:e7:16:60:12:5b:ec:40:db:64:b5:
4e:b3:05:01:eb:1c:57:85:1b:1b:b9:51:b1:43:ba:cb:8a:5f:
22:70:c4:ed:8a:a2:42:19:bc:fe:d4:0c:5e:c3:5e:ba:d5:54:
88:0b:e7:06:67:05:6f:85:bc:da:42:b9:f5:80:39:ba:d6:2e:
d7:72:0e:5f:a1:c2:71:a5:c1:04:6a:45:1b:34:7c:57:60:b1:
c8:ba:c5:b8:2a:a9:d4:c2:60:69:73:02:66:e5:6d:84:17:99:
a5:d8:1c:00:f7:12:36:46:5c:f4:27:48:90:f4:dd:6d:ac:d2:
94:bd:57:8d:19:ad:9d:60:df:54:fc:a9:e3:0a:8f:e1:67:20:
2b:65:90:65:8a:97:18:36:2c:51:37:01:58:3a:8f:7e:30:52:
94:17:15:e2:37:aa:2c:48:9e:05:54:5c:c6:bf:f5:b7:f2:17:
42:dd:8c:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:08 2024 by rpki-client on console-ams.rpki-client.org