Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/8d80f9-494e-4abb-9956-fc121c800b30/1/AMbGJeDfbT2cahcqGGEg39fOY2o.roa
File: AMbGJeDfbT2cahcqGGEg39fOY2o.roa (raw, json)
Hash identifier: d192NikC+OcNOb5tAcbck45Kpm/stIiMfR5mRgXlP+I=
Subject key identifier: 00:C6:C6:25:E0:DF:6D:3D:9C:6A:17:2A:18:61:20:DF:D7:CE:63:6A
Certificate issuer: /CN=201fe30fc6b4b0d0f6db4e1bfbbd50195dca575c
Certificate serial: 01856F4B7942E840C70C38C6F928B16CD707
Authority key identifier: 20:1F:E3:0F:C6:B4:B0:D0:F6:DB:4E:1B:FB:BD:50:19:5D:CA:57:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IB_jD8a0sND2204b-71QGV3KV1w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/8d80f9-494e-4abb-9956-fc121c800b30/1/AMbGJeDfbT2cahcqGGEg39fOY2o.roa
Signing time: Sun 01 Jan 2023 21:44:55 +0000
ROA not before: Sun 01 Jan 2023 21:44:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43366
IP address blocks: 82.150.136.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:4b:79:42:e8:40:c7:0c:38:c6:f9:28:b1:6c:d7:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=201fe30fc6b4b0d0f6db4e1bfbbd50195dca575c
Validity
Not Before: Jan 1 21:44:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=00c6c625e0df6d3d9c6a172a186120dfd7ce636a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:dc:cf:e2:02:17:22:87:ea:b8:62:c7:e7:cd:
0b:b7:34:b0:e5:73:44:67:27:8c:c7:7c:e9:d4:1b:
73:ee:ec:6b:5e:f5:5d:8e:5b:48:0f:77:83:0b:ec:
f8:92:65:46:ef:89:61:67:1a:fd:25:30:8c:19:1e:
07:b0:47:d9:c2:03:19:d4:6a:2e:77:8d:05:7e:e9:
ad:36:cd:f6:49:f5:ee:25:35:88:d3:2b:49:44:c8:
be:10:05:4b:ec:0b:bd:5b:f2:9d:2c:96:24:a5:87:
5e:ce:e4:d9:ed:39:22:15:65:b8:25:f8:30:c7:e4:
ef:c7:81:26:eb:bc:f7:3d:85:61:7e:7f:91:ff:04:
cf:36:ac:b4:8e:4e:80:76:ab:3a:bb:16:18:31:13:
c9:ba:16:c3:04:de:6f:a9:f3:bb:a7:7b:8c:d2:df:
35:79:56:b4:32:c8:65:1d:db:9c:98:7b:38:6f:e3:
a2:dc:c6:08:9f:3a:e8:66:aa:77:af:50:5d:4a:af:
dc:9f:d2:46:44:d3:e3:3b:0b:99:bd:bb:33:28:fc:
4d:6b:d2:7d:54:45:20:bf:5b:07:fa:e5:0f:bf:36:
74:a4:61:e8:c7:bc:66:ab:4c:ae:58:68:38:7d:a8:
79:30:d9:c3:77:2d:fe:fa:c9:6b:11:64:73:fd:1e:
3f:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:C6:C6:25:E0:DF:6D:3D:9C:6A:17:2A:18:61:20:DF:D7:CE:63:6A
X509v3 Authority Key Identifier:
keyid:20:1F:E3:0F:C6:B4:B0:D0:F6:DB:4E:1B:FB:BD:50:19:5D:CA:57:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IB_jD8a0sND2204b-71QGV3KV1w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/8d80f9-494e-4abb-9956-fc121c800b30/1/AMbGJeDfbT2cahcqGGEg39fOY2o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/8d80f9-494e-4abb-9956-fc121c800b30/1/IB_jD8a0sND2204b-71QGV3KV1w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.150.136.0/24
Signature Algorithm: sha256WithRSAEncryption
45:92:41:14:4e:10:7d:d8:37:7d:c7:4a:33:a5:bc:10:15:b0:
c6:b0:e2:19:9c:80:c5:6f:b4:f1:92:61:d5:9a:ab:98:dc:d4:
ae:50:0b:30:e5:1f:f5:e7:46:ff:1e:37:c8:3f:d6:33:18:89:
16:25:3d:b3:61:55:85:57:c9:48:f8:cd:3e:9e:82:f6:b0:6c:
f2:8b:4f:26:82:ec:60:4e:c8:51:81:20:a6:c3:1b:19:25:8e:
59:8e:a2:80:d8:56:46:c9:36:5e:a3:74:31:ff:46:1f:87:a9:
96:8c:75:bc:a4:95:92:4e:e1:6f:88:8a:c4:cb:d3:13:59:b7:
b4:4f:f4:71:52:cd:11:74:68:f3:0e:03:62:5a:24:8c:34:b1:
9a:b3:67:ad:6b:4b:51:3e:f4:e2:8d:d1:cc:7a:9c:27:4a:a3:
b4:8a:91:08:31:b7:64:d8:14:74:21:2f:9e:12:2f:66:93:a5:
4c:f6:02:21:f6:cc:61:cf:30:ff:71:24:5d:57:56:08:7b:1e:
32:7d:7b:62:d8:76:d6:d9:7d:58:6a:04:43:21:72:28:bd:71:
1d:3f:0d:47:88:07:f8:5f:66:bb:ca:38:1a:33:88:ed:b0:2e:
85:6b:9f:38:96:98:ef:44:11:38:5b:34:0c:89:f4:a9:7b:ca:
e3:23:1d:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 13:24:00 2024 by rpki-client on console-fra.rpki-client.org