Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/652eb4-321c-48c0-9272-3ae711af034b/1/82Lwh03dHUmSMy6ANBFiPurFE3k.roa
File: 82Lwh03dHUmSMy6ANBFiPurFE3k.roa (raw, json)
Hash identifier: IFHuAk78QrQJBPMzPmrPkTglceO6/nnD72qKTcKtoXY=
Subject key identifier: F3:62:F0:87:4D:DD:1D:49:92:33:2E:80:34:11:62:3E:EA:C5:13:79
Certificate issuer: /CN=8f2824c61357dc344bbdf35b83577459b9d3fc44
Certificate serial: 0188F7856EF46F3B87043E66DA9785C7C1A3
Authority key identifier: 8F:28:24:C6:13:57:DC:34:4B:BD:F3:5B:83:57:74:59:B9:D3:FC:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jygkxhNX3DRLvfNbg1d0WbnT_EQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/652eb4-321c-48c0-9272-3ae711af034b/1/82Lwh03dHUmSMy6ANBFiPurFE3k.roa
Signing time: Mon 26 Jun 2023 11:44:56 +0000
ROA not before: Mon 26 Jun 2023 11:44:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 2a00:4bc0:2000::/44 maxlen: 56
2a00:4bc0:2400::/40 maxlen: 48
2a00:4bc0:2100::/40 maxlen: 48
2a00:4bc0:2300::/40 maxlen: 48
Validation: Failed, certificate revoked on Fri 17 Nov 2023 08:35:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:f7:85:6e:f4:6f:3b:87:04:3e:66:da:97:85:c7:c1:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f2824c61357dc344bbdf35b83577459b9d3fc44
Validity
Not Before: Jun 26 11:44:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f362f0874ddd1d4992332e803411623eeac51379
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:f0:46:89:85:26:45:f5:c3:5a:b2:75:21:1d:
7f:2e:f4:8d:f7:f0:1b:02:f6:e2:73:11:00:04:b4:
1d:7a:fb:a0:20:d0:c6:b8:08:d8:2e:f9:38:1e:87:
27:a4:cd:95:b7:4f:e6:67:c9:be:0f:de:04:4b:ac:
f3:97:cf:17:75:34:97:ae:52:14:ea:53:39:51:1e:
e9:42:82:85:16:a6:f8:32:72:5c:30:7d:27:b7:79:
47:03:e1:87:d8:78:c3:26:c9:ea:e1:72:d9:44:a4:
be:5f:5c:a5:46:07:57:fe:84:cd:7e:8d:90:14:be:
0a:a4:b0:62:ff:0e:56:e3:21:9e:49:23:d5:3e:ff:
d6:91:85:97:c6:f0:4e:ea:a6:aa:33:f7:89:f2:df:
6d:01:e1:30:b0:64:fd:69:91:31:e4:fc:40:83:06:
ef:ea:c1:18:53:a9:2e:d6:b1:09:e4:22:c5:ee:f0:
dc:b3:75:28:3e:d3:e8:29:67:bb:3f:dc:37:6d:f2:
12:0e:8a:86:d0:30:29:ec:86:21:22:67:04:3b:6c:
01:37:21:82:3a:dc:68:af:9c:ce:0f:b9:8f:f5:19:
2e:86:e6:75:2b:28:dc:f0:6f:97:01:42:b8:d1:3a:
f2:1b:a0:81:be:20:dd:aa:f5:50:76:c7:55:a0:1e:
62:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:62:F0:87:4D:DD:1D:49:92:33:2E:80:34:11:62:3E:EA:C5:13:79
X509v3 Authority Key Identifier:
keyid:8F:28:24:C6:13:57:DC:34:4B:BD:F3:5B:83:57:74:59:B9:D3:FC:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jygkxhNX3DRLvfNbg1d0WbnT_EQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/652eb4-321c-48c0-9272-3ae711af034b/1/82Lwh03dHUmSMy6ANBFiPurFE3k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/652eb4-321c-48c0-9272-3ae711af034b/1/jygkxhNX3DRLvfNbg1d0WbnT_EQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:4bc0:2000::/44
2a00:4bc0:2100::/40
2a00:4bc0:2300::-2a00:4bc0:24ff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
7e:f0:0d:8b:b0:28:74:8d:04:4b:a0:63:8c:34:78:b5:66:3c:
b7:38:c4:07:04:01:3a:aa:7b:03:bf:0a:5e:97:af:0d:03:1a:
f0:a1:50:e8:fe:36:10:29:87:5e:2f:4e:e1:e2:21:90:2f:81:
9a:22:05:ad:b6:fd:45:35:e7:01:a9:80:78:28:fe:6f:b1:b2:
6f:c1:32:e6:34:b1:60:25:31:63:7e:8a:51:72:c7:46:e8:da:
a5:2a:e4:f4:67:2b:17:03:c4:39:27:27:39:7c:13:be:7f:44:
21:b6:2b:25:72:f8:37:29:a4:96:41:c0:e0:bd:d2:59:5d:a0:
04:38:f9:15:e7:6a:6e:e6:7f:7b:fb:c0:e3:91:1f:9f:85:b7:
94:a8:08:2b:81:c0:c1:a6:bb:5d:bf:7a:65:62:75:fd:2c:20:
0a:80:16:19:dd:70:91:04:73:25:25:cd:f7:5a:89:99:05:ec:
ec:3d:7b:05:4d:a4:f4:bc:13:41:67:32:9d:3e:e7:b0:53:1e:
ac:12:69:d6:66:41:af:93:fe:9d:1d:99:99:b1:35:5a:53:27:
21:8e:25:3e:a2:9b:a6:fe:26:e5:22:76:6c:92:3b:29:c0:c2:
72:fc:c0:21:80:80:79:ad:33:f0:27:5e:b4:65:d8:5b:a1:97:
48:23:3d:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:46 2024 by rpki-client on console-fra.rpki-client.org