Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/8d80f9-494e-4abb-9956-fc121c800b30/1/XdJCAuIycm6b4suWwqw_XlVWZUs.roa
File: XdJCAuIycm6b4suWwqw_XlVWZUs.roa (raw, json)
Hash identifier: fmCwqFpy2yvY7N0uJQ6brPBB3vKOQhDa6RhdSdjj7vg=
Subject key identifier: 5D:D2:42:02:E2:32:72:6E:9B:E2:CB:96:C2:AC:3F:5E:55:56:65:4B
Certificate issuer: /CN=201fe30fc6b4b0d0f6db4e1bfbbd50195dca575c
Certificate serial: 01856F4B763757C31CCB913787F0C8B16F0A
Authority key identifier: 20:1F:E3:0F:C6:B4:B0:D0:F6:DB:4E:1B:FB:BD:50:19:5D:CA:57:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IB_jD8a0sND2204b-71QGV3KV1w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/8d80f9-494e-4abb-9956-fc121c800b30/1/XdJCAuIycm6b4suWwqw_XlVWZUs.roa
Signing time: Sun 01 Jan 2023 21:44:54 +0000
ROA not before: Sun 01 Jan 2023 21:44:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30785
IP address blocks: 82.150.140.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:4b:76:37:57:c3:1c:cb:91:37:87:f0:c8:b1:6f:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=201fe30fc6b4b0d0f6db4e1bfbbd50195dca575c
Validity
Not Before: Jan 1 21:44:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5dd24202e232726e9be2cb96c2ac3f5e5556654b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:a8:e4:1e:21:51:3a:e3:cf:22:f7:38:7b:47:
38:1e:de:05:4b:ee:55:29:df:7a:c0:fd:67:b7:c1:
8d:82:e3:b7:73:c8:8f:f3:02:a7:c8:f9:93:6b:4f:
80:ee:fc:a2:11:76:a3:0c:5a:f5:10:0c:08:11:06:
27:d0:b0:1d:0e:91:43:92:a7:a7:af:3e:ed:aa:6f:
01:e9:19:d3:db:47:d1:4d:fd:2f:4f:6e:d7:2f:43:
af:3e:a8:d9:e8:6c:b8:f9:df:4d:42:a0:a1:ce:5e:
5c:96:21:ae:d2:43:5d:1a:c8:3f:91:c9:2c:cb:b3:
e8:94:8d:3a:cc:69:cb:16:95:2e:ad:51:21:5b:50:
79:3c:a6:e1:01:ff:d4:98:08:94:a2:07:4c:98:34:
86:9d:0c:c4:ba:2b:b5:64:a3:a9:34:59:b7:ca:d3:
46:96:b1:12:f6:a8:c4:99:98:45:aa:a5:73:bf:35:
36:d8:01:4e:3f:c5:7e:a8:04:8e:9b:d6:db:1a:16:
3b:82:50:37:fa:0e:92:b0:6a:b0:69:6a:22:c0:71:
22:49:80:c1:f4:8d:d2:82:20:ae:18:21:dc:54:c6:
ad:4c:31:c6:9d:be:07:7b:f9:86:a1:81:26:b1:79:
23:6d:35:45:79:30:ad:c9:0e:2e:3a:1a:4c:9e:0b:
c4:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:D2:42:02:E2:32:72:6E:9B:E2:CB:96:C2:AC:3F:5E:55:56:65:4B
X509v3 Authority Key Identifier:
keyid:20:1F:E3:0F:C6:B4:B0:D0:F6:DB:4E:1B:FB:BD:50:19:5D:CA:57:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IB_jD8a0sND2204b-71QGV3KV1w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/8d80f9-494e-4abb-9956-fc121c800b30/1/XdJCAuIycm6b4suWwqw_XlVWZUs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/8d80f9-494e-4abb-9956-fc121c800b30/1/IB_jD8a0sND2204b-71QGV3KV1w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.150.140.0/22
Signature Algorithm: sha256WithRSAEncryption
6c:8d:e2:db:02:eb:4d:97:a8:f7:87:da:40:47:8d:06:5c:2c:
45:5a:3f:c1:03:7a:70:ea:d5:54:b7:cc:b0:a9:ec:93:e4:8b:
ba:a4:e4:78:4a:f7:85:3d:97:f2:79:60:7f:74:ce:44:d5:bd:
eb:02:b2:90:44:1f:3c:df:be:c6:20:13:25:a8:d7:7e:91:7c:
0e:0e:a4:9f:37:31:92:20:5f:3c:54:40:ea:0e:d0:e1:a4:2b:
55:46:28:13:58:88:ee:8f:e0:3f:3a:94:c8:32:4f:ab:fd:b1:
7e:db:b5:be:bd:8e:d4:b2:db:04:f9:33:0a:d0:3f:9d:f7:29:
4d:b5:fe:59:14:96:4d:83:af:f2:75:b2:be:c4:78:98:c8:67:
11:2f:05:e2:41:1a:ab:e2:13:04:a8:af:54:0a:4c:0c:ee:c9:
43:e6:ff:c6:7b:d0:6f:a0:5c:49:c0:12:fb:3b:67:e0:90:2a:
4f:36:56:a1:6d:32:0d:f2:18:73:de:2e:83:52:74:dd:51:a9:
65:08:88:8e:fc:d3:e5:0e:6d:4a:b6:d1:b8:eb:3c:0f:bd:26:
7d:fe:d2:52:40:1a:6a:39:97:04:7e:33:51:23:5e:4e:61:ff:
c7:74:b8:de:f1:0e:c1:22:75:17:c3:d2:dd:5e:f6:b6:ed:be:
ae:47:11:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:12 2023 by rpki-client on console-fra.rpki-client.org