Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/8d80f9-494e-4abb-9956-fc121c800b30/1/2Tv95uPf8CSpimthP9OPgPQXUBA.roa
File: 2Tv95uPf8CSpimthP9OPgPQXUBA.roa (raw, json)
Hash identifier: SKiT0Ak3Yt7Qqs6mwQu/qsrSrDuGcVJbNgHQQE5HAXg=
Subject key identifier: D9:3B:FD:E6:E3:DF:F0:24:A9:8A:6B:61:3F:D3:8F:80:F4:17:50:10
Certificate issuer: /CN=201fe30fc6b4b0d0f6db4e1bfbbd50195dca575c
Certificate serial: 018678CF4DE954776C5CC1EE416A90314399
Authority key identifier: 20:1F:E3:0F:C6:B4:B0:D0:F6:DB:4E:1B:FB:BD:50:19:5D:CA:57:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IB_jD8a0sND2204b-71QGV3KV1w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/8d80f9-494e-4abb-9956-fc121c800b30/1/2Tv95uPf8CSpimthP9OPgPQXUBA.roa
Signing time: Wed 22 Feb 2023 11:08:17 +0000
ROA not before: Wed 22 Feb 2023 11:08:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21221
IP address blocks: 82.150.140.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:78:cf:4d:e9:54:77:6c:5c:c1:ee:41:6a:90:31:43:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=201fe30fc6b4b0d0f6db4e1bfbbd50195dca575c
Validity
Not Before: Feb 22 11:08:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d93bfde6e3dff024a98a6b613fd38f80f4175010
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:24:17:d2:ad:b9:14:83:b6:b4:07:8f:34:31:
79:b8:d4:90:04:6f:1c:fb:cb:c2:23:27:25:a5:64:
54:80:66:e9:ef:f2:11:31:6e:46:df:fe:49:5a:9f:
43:6b:b7:5b:82:11:f6:82:1a:ce:2c:dc:23:36:56:
dc:29:81:8e:54:d1:07:b0:c0:5b:b1:e4:79:9a:bf:
3f:4d:b3:f0:16:75:4e:fc:7a:98:1a:6b:90:ab:f2:
a9:ba:d6:48:61:36:78:7a:67:8e:09:c1:02:bf:52:
b8:09:09:5a:27:7b:93:da:a2:a7:0a:24:27:fd:dc:
29:79:d7:9d:95:df:48:be:08:d0:fd:61:a8:f5:40:
82:0e:91:3f:64:37:19:2e:66:a7:4d:b6:1b:cd:39:
b7:e3:c0:20:44:ef:0a:d7:25:99:e9:65:66:81:f2:
ad:dc:c7:80:a3:bc:2a:2f:6c:c9:b2:8b:52:2c:a5:
e4:72:69:6c:92:5a:07:b5:36:62:ef:00:1a:e6:44:
25:c9:c1:87:0d:a4:5b:b7:b6:8d:b8:de:e2:c3:65:
c1:18:d7:70:4a:e4:7b:f0:25:67:33:42:ac:5e:19:
86:3f:62:de:64:34:dc:a9:dd:fe:03:ba:19:11:eb:
a2:13:3a:e4:ad:0a:1e:b5:76:14:09:58:96:32:2e:
2a:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:3B:FD:E6:E3:DF:F0:24:A9:8A:6B:61:3F:D3:8F:80:F4:17:50:10
X509v3 Authority Key Identifier:
keyid:20:1F:E3:0F:C6:B4:B0:D0:F6:DB:4E:1B:FB:BD:50:19:5D:CA:57:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IB_jD8a0sND2204b-71QGV3KV1w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/8d80f9-494e-4abb-9956-fc121c800b30/1/2Tv95uPf8CSpimthP9OPgPQXUBA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/8d80f9-494e-4abb-9956-fc121c800b30/1/IB_jD8a0sND2204b-71QGV3KV1w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.150.140.0/22
Signature Algorithm: sha256WithRSAEncryption
44:89:03:cc:47:13:6b:fb:3c:a3:f1:54:18:e4:b9:a5:e1:a3:
39:68:9a:f9:37:2f:38:47:9b:15:03:10:ec:20:d9:f7:de:3d:
71:62:ca:85:73:2d:c4:44:46:0e:86:41:e1:f2:c4:db:6e:ab:
ed:f8:e3:e5:2c:c6:41:73:0b:34:55:5a:a6:a5:51:17:c0:51:
42:97:61:b0:dd:7b:3b:cf:05:b9:09:80:70:1c:bd:70:60:70:
25:69:99:de:58:b4:dc:d2:44:c1:ce:ed:2a:7a:bc:2e:bb:62:
c5:fe:53:85:d2:9e:06:11:b0:5a:bd:01:a1:17:1b:b8:0a:8f:
5e:47:6e:d8:eb:a1:b4:15:7b:2e:c4:3a:b9:8f:1d:8b:c9:38:
08:f2:ae:15:5c:00:36:43:d1:88:e2:ec:aa:58:f6:d8:6b:06:
0b:a4:37:8c:83:06:ab:b4:35:3f:ca:48:f5:4f:8a:8b:17:3d:
21:7b:0e:38:04:55:6f:c5:b8:03:c4:e8:68:2c:69:04:80:ba:
81:be:6a:0f:67:bc:95:e7:2a:93:7b:c1:6e:16:0b:e9:6c:dd:
49:5f:02:4d:a0:3b:f9:57:6b:c9:4f:57:f2:eb:d6:fa:0a:7d:
52:fb:d8:4c:1d:1b:db:81:d8:44:71:ec:72:e0:9e:cf:05:ed:
45:71:4f:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:12 2023 by rpki-client on console-fra.rpki-client.org