Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/bade34-0ac1-421f-8934-bb1fc4547033/1/aRWdRDtHwHE4sNleGhlbJmpQ7UM.roa
File: aRWdRDtHwHE4sNleGhlbJmpQ7UM.roa (raw, json)
Hash identifier: +KiVSkEHCaYxEfzhrIiOB0KpzwHw6HfLyqLFQVv8/78=
Subject key identifier: 69:15:9D:44:3B:47:C0:71:38:B0:D9:5E:1A:19:5B:26:6A:50:ED:43
Certificate issuer: /CN=41da10d665c10e1cb6ec6c2150e3e6024045b9da
Certificate serial: 01856F0B6C0EE5A2E52DD3251A5BE2FD517F
Authority key identifier: 41:DA:10:D6:65:C1:0E:1C:B6:EC:6C:21:50:E3:E6:02:40:45:B9:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QdoQ1mXBDhy27GwhUOPmAkBFudo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/bade34-0ac1-421f-8934-bb1fc4547033/1/aRWdRDtHwHE4sNleGhlbJmpQ7UM.roa
Signing time: Sun 01 Jan 2023 20:34:57 +0000
ROA not before: Sun 01 Jan 2023 20:34:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34917
IP address blocks: 83.143.144.0/21 maxlen: 21
62.182.112.0/21 maxlen: 21
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:29:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:0b:6c:0e:e5:a2:e5:2d:d3:25:1a:5b:e2:fd:51:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41da10d665c10e1cb6ec6c2150e3e6024045b9da
Validity
Not Before: Jan 1 20:34:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=69159d443b47c07138b0d95e1a195b266a50ed43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:bf:a0:ce:80:74:9b:5b:d2:ae:82:41:2d:93:
dd:d3:dd:b2:a4:f5:df:7e:31:89:1b:5d:77:d7:d1:
5f:f2:7a:44:1e:4d:cc:b6:94:68:32:ac:0c:89:0d:
23:8d:6f:33:d4:39:9c:93:b3:ba:c8:f5:3e:f5:04:
64:61:c3:0a:ae:b6:56:08:c2:79:7c:ad:cd:c3:dc:
c4:09:ff:7e:f9:76:7e:34:09:bb:ea:8c:64:4b:12:
0a:14:1c:b6:75:22:ba:f6:e5:43:b2:49:26:c9:e4:
ee:ec:d0:1c:80:85:a1:19:55:12:3b:42:e2:e8:57:
25:d2:b4:5b:74:e0:da:ad:a0:8a:8f:11:a0:94:43:
5e:25:f3:79:e8:17:f6:f3:e7:95:b3:4b:9b:4f:0e:
9e:97:6a:1b:39:8a:44:1a:56:52:49:12:c1:5d:ab:
3c:20:3d:d4:5c:42:b5:58:50:b6:b9:a8:b7:2b:67:
19:4b:60:68:14:fb:90:f4:a1:50:45:3a:75:e2:c7:
f1:65:d2:e8:d6:72:42:24:32:07:d9:42:f6:1b:a6:
27:ed:e9:50:cd:5c:fa:9c:96:29:65:ad:8b:2b:67:
94:6b:06:2e:b9:1a:2e:25:35:c3:f2:fb:01:14:1d:
a4:24:cb:f4:01:14:0d:44:af:43:8b:70:d4:f0:7c:
af:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:15:9D:44:3B:47:C0:71:38:B0:D9:5E:1A:19:5B:26:6A:50:ED:43
X509v3 Authority Key Identifier:
keyid:41:DA:10:D6:65:C1:0E:1C:B6:EC:6C:21:50:E3:E6:02:40:45:B9:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QdoQ1mXBDhy27GwhUOPmAkBFudo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/bade34-0ac1-421f-8934-bb1fc4547033/1/aRWdRDtHwHE4sNleGhlbJmpQ7UM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/bade34-0ac1-421f-8934-bb1fc4547033/1/QdoQ1mXBDhy27GwhUOPmAkBFudo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.182.112.0/21
83.143.144.0/21
Signature Algorithm: sha256WithRSAEncryption
78:b6:3b:14:79:a2:66:7b:6a:16:3d:38:bf:d2:33:4b:d8:ae:
d0:3e:92:83:5b:09:af:18:d3:32:83:02:e2:e6:3a:2e:de:8c:
9e:bc:51:62:fd:4d:cb:33:bb:69:16:13:26:3b:2f:9d:cc:13:
29:a0:d7:34:9d:24:b0:f6:65:39:f0:0a:59:38:fa:c0:00:d3:
7f:3b:3f:e5:46:24:3b:f4:cf:f5:d3:b2:d3:3d:d6:22:a1:c1:
e8:66:42:61:f2:aa:ce:74:36:77:b4:1c:b4:d5:c1:90:24:d1:
60:2d:19:9c:a2:1d:64:4c:87:96:ba:c4:e8:1e:0a:58:7f:4d:
e0:b5:5b:2a:64:57:dc:64:42:8e:c2:aa:d4:da:a8:c9:c8:bc:
59:a7:d4:9c:78:0d:80:a7:88:61:2d:9e:c5:2a:15:ad:74:fa:
28:07:9b:37:ec:76:08:c0:eb:89:2e:4d:9d:46:c6:9f:5d:98:
46:71:4e:ee:35:a4:e9:54:40:77:e8:3a:1a:16:44:ca:19:79:
91:eb:e9:61:2d:ef:79:ba:7f:d9:9f:48:07:99:b0:0c:36:32:
cb:2e:23:5e:59:38:e2:44:22:c9:44:42:cc:0c:eb:d7:59:a4:
4c:c4:c0:3a:e7:6c:48:d2:18:0d:c9:e7:b6:15:e9:27:d6:dd:
9a:f7:3a:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:57 2024 by rpki-client on console-fra.rpki-client.org