Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/8d80f9-494e-4abb-9956-fc121c800b30/1/FN-AZcsoWnQ96kFRGXfSk1qgwK4.roa
File: FN-AZcsoWnQ96kFRGXfSk1qgwK4.roa (raw, json)
Hash identifier: HDiz11c63ols5chyxPoVMd+fXQwjlHFufTSBGW4fSfk=
Subject key identifier: 14:DF:80:65:CB:28:5A:74:3D:EA:41:51:19:77:D2:93:5A:A0:C0:AE
Certificate issuer: /CN=201fe30fc6b4b0d0f6db4e1bfbbd50195dca575c
Certificate serial: 01880F16C0F9853EDF0E870D1E7C0DB80BC5
Authority key identifier: 20:1F:E3:0F:C6:B4:B0:D0:F6:DB:4E:1B:FB:BD:50:19:5D:CA:57:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IB_jD8a0sND2204b-71QGV3KV1w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/8d80f9-494e-4abb-9956-fc121c800b30/1/FN-AZcsoWnQ96kFRGXfSk1qgwK4.roa
Signing time: Fri 12 May 2023 08:32:09 +0000
ROA not before: Fri 12 May 2023 08:32:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21221
IP address blocks: 82.150.140.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:0f:16:c0:f9:85:3e:df:0e:87:0d:1e:7c:0d:b8:0b:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=201fe30fc6b4b0d0f6db4e1bfbbd50195dca575c
Validity
Not Before: May 12 08:32:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=14df8065cb285a743dea41511977d2935aa0c0ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:ad:a0:68:6b:80:40:55:ce:a7:49:e5:58:56:
7e:cc:98:95:b3:7e:7f:b7:c8:bc:04:8b:0f:c0:05:
eb:c9:42:df:65:3d:c8:0b:92:a8:28:39:20:00:12:
53:45:5b:11:29:14:b2:47:e2:3e:8b:f7:a0:a1:49:
f9:38:75:f9:d6:b2:0d:e4:b4:f9:75:1a:0f:bd:23:
23:bf:9c:e6:c3:ca:ba:21:95:3d:20:02:57:60:92:
f1:00:b2:59:1e:23:33:5c:6a:66:09:5b:2b:61:56:
0c:65:a3:c5:ef:2c:3f:6a:75:e0:96:70:07:98:22:
81:61:5c:86:ac:13:df:cf:b9:12:6c:21:e1:4f:24:
94:45:ad:97:46:59:5e:6f:b4:93:b8:49:90:27:b4:
58:e8:bb:67:c9:79:d8:2c:72:f3:07:cf:1f:72:d0:
ab:ea:13:32:ac:1f:5d:ce:32:a1:e9:73:81:f5:4c:
f5:a6:96:58:79:29:40:b8:b4:d6:41:cf:9c:49:f3:
52:18:e3:d7:db:db:33:7a:16:3d:ad:86:cf:47:09:
f3:cb:5b:b1:1f:77:3d:91:5b:79:fb:af:a0:59:55:
db:7e:92:7e:3a:5f:7b:fb:80:fd:3d:cc:9f:d5:7b:
84:20:c1:88:65:7f:be:dd:fc:8c:41:03:29:d3:95:
39:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:DF:80:65:CB:28:5A:74:3D:EA:41:51:19:77:D2:93:5A:A0:C0:AE
X509v3 Authority Key Identifier:
keyid:20:1F:E3:0F:C6:B4:B0:D0:F6:DB:4E:1B:FB:BD:50:19:5D:CA:57:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IB_jD8a0sND2204b-71QGV3KV1w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/8d80f9-494e-4abb-9956-fc121c800b30/1/FN-AZcsoWnQ96kFRGXfSk1qgwK4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/8d80f9-494e-4abb-9956-fc121c800b30/1/IB_jD8a0sND2204b-71QGV3KV1w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.150.140.0/22
Signature Algorithm: sha256WithRSAEncryption
34:5e:c1:7c:e8:79:a2:55:90:17:4a:a5:fd:53:82:13:3d:39:
cc:0a:f9:d3:7e:49:48:40:ae:e9:e5:bb:95:e8:84:5a:bc:e2:
2b:48:ea:d4:8e:d5:07:c7:d5:3d:f6:98:26:82:b1:fa:9a:5c:
22:a9:dd:dc:9c:cf:8e:18:fe:d5:f6:f0:54:6c:32:0f:3a:aa:
3a:e1:0b:0b:97:73:ee:a1:b2:94:c1:0c:0c:96:6d:fa:59:c9:
f0:7a:2e:30:18:dc:98:e7:51:dc:5c:73:50:ac:06:a9:61:f4:
66:64:bd:66:a1:d4:10:27:76:cb:a7:16:9f:82:28:a8:0d:be:
d2:e4:1c:96:5d:10:66:db:37:c8:f8:df:79:bd:95:63:50:95:
5a:3f:31:c0:f6:91:64:cf:f2:aa:15:33:a7:8b:22:60:7c:de:
b7:90:ff:a5:07:40:81:08:04:f8:5d:39:d8:97:10:9f:01:0b:
bc:c6:e8:9f:ac:a4:fa:55:ff:93:a8:d4:56:cd:2e:bd:4c:30:
73:7d:f2:34:fc:f9:64:95:05:f4:e2:30:dd:48:5b:24:02:0f:
05:0c:16:fb:30:e2:7a:f8:4d:43:a5:a7:dc:c7:39:27:48:a9:
b4:94:8e:57:70:2d:46:a5:6c:57:17:00:ac:65:9e:02:a4:25:
c2:bb:16:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 13:24:00 2024 by rpki-client on console-fra.rpki-client.org