Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/8d80f9-494e-4abb-9956-fc121c800b30/1/SBFkAnFnYjXWLsvZV5q1my55kLM.roa
File: SBFkAnFnYjXWLsvZV5q1my55kLM.roa (raw, json)
Hash identifier: bRjPUhkaSFOnNhrhfBl4AsNKXyNvexM9PQffriJg9rM=
Subject key identifier: 48:11:64:02:71:67:62:35:D6:2E:CB:D9:57:9A:B5:9B:2E:79:90:B3
Certificate issuer: /CN=201fe30fc6b4b0d0f6db4e1bfbbd50195dca575c
Certificate serial: 01856F4B799104D8AB0918C72FD5C28D5C9E
Authority key identifier: 20:1F:E3:0F:C6:B4:B0:D0:F6:DB:4E:1B:FB:BD:50:19:5D:CA:57:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IB_jD8a0sND2204b-71QGV3KV1w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/8d80f9-494e-4abb-9956-fc121c800b30/1/SBFkAnFnYjXWLsvZV5q1my55kLM.roa
Signing time: Sun 01 Jan 2023 21:44:55 +0000
ROA not before: Sun 01 Jan 2023 21:44:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60781
IP address blocks: 82.150.152.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:4b:79:91:04:d8:ab:09:18:c7:2f:d5:c2:8d:5c:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=201fe30fc6b4b0d0f6db4e1bfbbd50195dca575c
Validity
Not Before: Jan 1 21:44:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4811640271676235d62ecbd9579ab59b2e7990b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:fe:eb:08:37:76:e0:75:03:61:35:3a:40:73:
94:23:ff:d1:8f:0a:c6:aa:fe:e9:a7:b9:29:09:ec:
62:6f:15:f4:54:dd:37:49:af:6e:c7:6c:c3:5b:88:
4c:88:6c:82:c8:7c:d2:a0:5a:f9:7e:d3:d3:7d:b3:
2a:f0:56:8a:2f:9d:46:ae:cd:b3:3c:25:4a:2c:61:
4b:d5:19:1c:ec:36:c4:7e:a2:c2:2e:f1:73:71:ff:
ed:65:11:fe:e8:15:d6:5e:b6:59:8b:a6:c9:3d:84:
c7:1d:b4:6d:a7:cf:c9:25:d8:c1:f2:c4:51:55:36:
c7:2a:9d:49:7b:31:07:d1:86:b0:59:28:cf:9a:14:
4c:db:c5:04:69:de:e7:f3:b5:7c:b9:85:e4:ed:3d:
c4:2c:de:bd:9d:ed:6a:c5:71:20:6d:e0:8d:c0:90:
b2:2b:58:a8:71:8f:6a:c5:8a:f2:30:e6:28:0d:36:
29:01:81:28:a4:14:54:14:7e:8f:b4:bf:db:b7:41:
2c:2e:8f:85:74:64:23:a4:eb:10:75:e9:78:3f:69:
60:85:1c:25:e3:cc:e6:95:1a:22:2d:95:9b:a5:4c:
b3:12:c2:2b:79:a4:3f:34:6c:2a:e1:ad:6a:89:98:
33:1e:76:08:0c:19:91:09:9d:12:c3:a4:df:71:67:
38:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:11:64:02:71:67:62:35:D6:2E:CB:D9:57:9A:B5:9B:2E:79:90:B3
X509v3 Authority Key Identifier:
keyid:20:1F:E3:0F:C6:B4:B0:D0:F6:DB:4E:1B:FB:BD:50:19:5D:CA:57:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IB_jD8a0sND2204b-71QGV3KV1w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/8d80f9-494e-4abb-9956-fc121c800b30/1/SBFkAnFnYjXWLsvZV5q1my55kLM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/8d80f9-494e-4abb-9956-fc121c800b30/1/IB_jD8a0sND2204b-71QGV3KV1w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.150.152.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:b2:e3:43:b1:b2:f6:1e:86:02:65:e0:65:e2:4a:30:a1:09:
de:66:69:d3:aa:b5:73:98:b3:1b:f6:9d:03:f3:9d:88:02:a2:
77:14:ed:cd:3c:94:69:64:19:6f:18:d2:3e:1f:c9:d3:ab:c9:
dc:8a:ff:3b:6f:cd:a0:77:ad:78:3a:99:86:05:a7:7d:5e:0e:
85:ad:95:c3:ef:78:1a:a7:ac:93:be:5d:21:6e:e2:6d:fe:07:
a0:db:a3:a6:1e:fe:76:58:c0:06:d9:88:ce:98:f8:3b:e6:60:
b1:a3:ae:80:49:12:d0:e6:11:fb:ec:f4:46:ef:53:d3:a7:ea:
e6:ba:0f:ac:1e:d0:0c:ec:57:c3:97:76:3e:fa:3a:74:52:a0:
30:c7:0e:f9:83:6e:80:83:f1:27:8e:ac:93:f3:97:92:55:3d:
69:e0:e6:d0:c7:a7:cc:f9:b7:5c:3b:d2:79:06:f1:03:b7:9a:
04:25:72:5b:07:ed:22:75:a9:70:58:eb:bc:a7:18:a8:9d:18:
41:c1:5a:f4:ca:57:88:08:65:2a:63:10:3d:fc:cd:13:b3:62:
f5:59:ca:96:64:de:45:39:0c:1b:98:d3:c8:20:66:cc:60:ee:
19:1f:db:8c:e8:69:37:bc:4d:4e:7a:d2:ce:a6:3e:e5:11:62:
c5:bb:18:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 13:24:00 2024 by rpki-client on console-fra.rpki-client.org