Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/8d80f9-494e-4abb-9956-fc121c800b30/1/dKt3hiAe2RA39QcjCEWnv1zerig.roa
File: dKt3hiAe2RA39QcjCEWnv1zerig.roa (raw, json)
Hash identifier: yGPm9se2kMUd2bUoMfuyhzQ9Yyzkr/lm2F9RN1PPbrc=
Subject key identifier: 74:AB:77:86:20:1E:D9:10:37:F5:07:23:08:45:A7:BF:5C:DE:AE:28
Certificate issuer: /CN=201fe30fc6b4b0d0f6db4e1bfbbd50195dca575c
Certificate serial: 01856F4B7AA33C0D1B58FE0A8F2EBF414104
Authority key identifier: 20:1F:E3:0F:C6:B4:B0:D0:F6:DB:4E:1B:FB:BD:50:19:5D:CA:57:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IB_jD8a0sND2204b-71QGV3KV1w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/8d80f9-494e-4abb-9956-fc121c800b30/1/dKt3hiAe2RA39QcjCEWnv1zerig.roa
Signing time: Sun 01 Jan 2023 21:44:55 +0000
ROA not before: Sun 01 Jan 2023 21:44:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205307
IP address blocks: 82.150.146.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:4b:7a:a3:3c:0d:1b:58:fe:0a:8f:2e:bf:41:41:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=201fe30fc6b4b0d0f6db4e1bfbbd50195dca575c
Validity
Not Before: Jan 1 21:44:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=74ab7786201ed91037f507230845a7bf5cdeae28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:2d:c4:35:a3:21:fa:1e:bc:8f:6f:85:a1:20:
70:fe:a5:44:7a:b0:30:70:39:ab:87:8c:cf:29:35:
26:32:5a:21:42:1f:66:19:3b:c4:d7:68:b5:16:98:
0b:65:d1:27:ac:92:e9:a0:bf:7a:7a:9b:13:44:e9:
3f:2e:d5:f7:60:fe:05:c6:d7:b5:46:3e:36:e6:d7:
5e:1d:3f:67:54:e7:ce:ca:3c:dd:8b:a7:7b:f7:17:
c2:67:fd:e0:f7:72:22:5a:89:0e:f6:d3:dc:38:91:
d8:42:2d:27:88:d7:41:ca:e9:15:2e:ac:af:07:62:
01:cd:63:de:8f:c1:7b:c6:75:40:78:b8:30:0b:d8:
8a:18:4a:4a:05:09:ef:a2:27:ce:e3:70:6e:35:9e:
25:38:d4:04:ee:01:44:24:c6:da:c0:23:b8:89:60:
3a:8c:64:cc:bf:83:6f:d7:d2:0a:8a:07:35:f5:05:
10:68:4f:30:87:46:fc:c5:d9:df:21:9f:38:44:1a:
ab:e5:42:58:b0:3d:5c:61:5c:af:d6:ec:82:2c:8c:
0c:54:9e:18:60:46:66:ed:fb:31:15:88:a8:41:e6:
50:b9:b6:36:19:33:be:9e:f5:99:d7:1a:52:bc:f2:
31:b2:c7:e0:33:a3:38:96:3b:b6:b7:c8:03:90:82:
08:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:AB:77:86:20:1E:D9:10:37:F5:07:23:08:45:A7:BF:5C:DE:AE:28
X509v3 Authority Key Identifier:
keyid:20:1F:E3:0F:C6:B4:B0:D0:F6:DB:4E:1B:FB:BD:50:19:5D:CA:57:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IB_jD8a0sND2204b-71QGV3KV1w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/8d80f9-494e-4abb-9956-fc121c800b30/1/dKt3hiAe2RA39QcjCEWnv1zerig.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/8d80f9-494e-4abb-9956-fc121c800b30/1/IB_jD8a0sND2204b-71QGV3KV1w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.150.146.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:ab:55:3d:a4:17:ce:8f:83:dc:fa:9f:36:ac:f4:9d:67:88:
2a:15:91:9b:74:d9:fb:39:74:1d:da:45:a1:ac:55:c6:46:d7:
6b:0d:51:1c:03:f0:7e:f6:83:80:ba:62:72:3d:a2:b7:21:3e:
88:f0:65:79:44:89:f9:09:08:60:83:f4:c1:80:74:9b:9f:c9:
54:e0:c9:50:42:71:94:3d:7c:d1:76:b1:f5:35:3f:47:66:a3:
2d:cb:53:e1:ff:37:4a:a1:15:90:7a:dc:15:d5:8e:fb:4b:1a:
e8:22:f3:ae:17:29:d5:6f:88:82:02:c1:0d:9d:20:29:14:00:
1f:a5:ac:c8:ad:d3:ff:4f:37:b2:18:50:93:3d:f3:c5:33:dc:
1f:8b:74:cb:57:ea:b7:1f:32:f3:d5:96:9d:e7:31:da:fe:b9:
62:7c:23:7c:7a:8d:8f:33:9a:88:ab:0e:53:ab:c4:ee:17:a6:
c8:8a:e5:d9:17:23:62:e1:85:e3:38:d0:0f:88:24:58:09:06:
2d:ac:c3:e3:81:fb:8b:62:1d:58:ee:6d:19:65:42:a7:32:de:
97:c7:1a:9d:7b:8f:53:a4:be:d9:94:a1:b0:6a:ec:5d:35:2c:
85:3d:c1:a4:dc:c3:29:95:3a:39:8d:45:c2:8b:7b:01:b9:34:
73:2d:ba:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:12 2023 by rpki-client on console-fra.rpki-client.org