Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/4eef03-91fe-445a-a7cd-595919be0f52/1/2n29sZyFkdJEyAsz7f4nLYWFOFE.roa
File: 2n29sZyFkdJEyAsz7f4nLYWFOFE.roa (raw, json)
Hash identifier: AL0FSnP6Br5DBVZ/mBQoSdoyyVibekuhMFFUPUiPTMQ=
Subject key identifier: DA:7D:BD:B1:9C:85:91:D2:44:C8:0B:33:ED:FE:27:2D:85:85:38:51
Certificate issuer: /CN=9799140b42db6cb6bf8c6dd413747fcf4a6fd9b5
Certificate serial: 018E46C38FEC4593E7C7DD8C24DE648E4AB8
Authority key identifier: 97:99:14:0B:42:DB:6C:B6:BF:8C:6D:D4:13:74:7F:CF:4A:6F:D9:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l5kUC0LbbLa_jG3UE3R_z0pv2bU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/4eef03-91fe-445a-a7cd-595919be0f52/1/2n29sZyFkdJEyAsz7f4nLYWFOFE.roa
Signing time: Sat 16 Mar 2024 10:16:45 +0000
ROA not before: Sat 16 Mar 2024 10:16:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 400909
IP address blocks: 82.206.12.0/23 maxlen: 23
Validation: Failed, certificate revoked on Sun 17 Mar 2024 10:39:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:46:c3:8f:ec:45:93:e7:c7:dd:8c:24:de:64:8e:4a:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9799140b42db6cb6bf8c6dd413747fcf4a6fd9b5
Validity
Not Before: Mar 16 10:16:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=da7dbdb19c8591d244c80b33edfe272d85853851
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:5d:b9:72:6f:ff:19:32:6f:8a:e2:c6:15:39:
bb:19:d2:da:c2:37:e6:1b:c5:b8:25:d0:a6:43:89:
a6:d4:b3:d3:33:9a:48:bb:04:93:e9:57:6b:53:d9:
36:da:6a:0e:ab:69:e6:4d:70:92:6c:67:bd:72:24:
34:93:aa:18:34:3a:03:6c:e7:db:fd:1b:eb:dd:34:
90:c8:84:72:94:68:a3:80:54:fc:ff:45:0d:2d:34:
1a:0c:27:d7:f3:5c:87:2a:f2:e7:20:1b:64:b2:1b:
1a:fc:33:53:7d:b4:b7:04:7a:ec:ce:20:af:5a:1b:
71:f1:f9:69:76:c8:ae:9f:3f:9a:f3:ee:b4:75:a5:
fd:eb:e5:01:2b:3b:76:c8:17:a2:95:50:95:c7:7d:
bb:d8:4c:6d:ca:ca:61:aa:62:84:d3:46:dd:79:19:
79:6a:fd:0b:b8:7b:cb:c3:20:cf:f4:37:d0:9b:53:
9b:ff:c7:2e:9d:e5:e4:bc:06:9f:cc:cd:06:fc:fe:
be:1b:48:74:4a:54:52:e0:dc:a8:99:f5:48:2d:bf:
c2:b0:e9:76:35:0b:31:3f:8e:44:b4:93:81:99:2b:
4a:fa:66:ac:f6:a3:4d:74:b4:57:cd:17:9b:bb:e5:
f3:63:51:92:d2:c0:18:ac:02:c7:18:56:d8:eb:f4:
da:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:7D:BD:B1:9C:85:91:D2:44:C8:0B:33:ED:FE:27:2D:85:85:38:51
X509v3 Authority Key Identifier:
keyid:97:99:14:0B:42:DB:6C:B6:BF:8C:6D:D4:13:74:7F:CF:4A:6F:D9:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l5kUC0LbbLa_jG3UE3R_z0pv2bU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/4eef03-91fe-445a-a7cd-595919be0f52/1/2n29sZyFkdJEyAsz7f4nLYWFOFE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/4eef03-91fe-445a-a7cd-595919be0f52/1/l5kUC0LbbLa_jG3UE3R_z0pv2bU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.206.12.0/23
Signature Algorithm: sha256WithRSAEncryption
41:7c:4d:57:ec:f2:79:89:2e:99:9c:be:62:e5:cf:66:96:2f:
ea:a4:d5:97:87:25:f0:c4:fc:d8:04:7f:af:f6:79:34:28:c6:
e5:1f:f4:ee:4a:ec:e8:1c:7c:3b:a3:83:63:26:99:56:5a:c7:
46:14:03:75:e2:5d:a4:a0:04:1b:e3:18:ed:7f:62:fa:50:e2:
51:f8:6a:33:c1:ca:23:9c:96:c8:2d:3f:38:b9:35:8d:fc:1c:
f7:1c:20:dc:8b:9b:34:f7:b7:23:cc:9e:97:f1:91:13:b5:cc:
cf:43:da:2b:c0:b3:10:cf:d3:68:49:35:64:82:e3:dc:1e:01:
14:25:6d:de:9a:04:a0:78:29:78:c7:52:c9:34:70:7c:b6:6e:
83:1d:9c:c8:89:8f:8b:1b:14:cd:2c:54:8c:41:87:ba:21:78:
53:0c:6d:78:a1:ca:4c:9d:f4:b2:57:4f:a3:65:b5:0c:b6:6c:
89:62:4e:81:76:e3:80:1a:bb:de:b2:58:a0:0d:70:71:a5:8b:
f9:8e:4c:d0:ba:05:d9:0f:d3:63:75:3c:ee:44:3b:43:13:8a:
c2:50:f5:86:5e:10:69:7e:28:20:3b:84:bd:b1:10:39:ee:d1:
35:12:5b:86:5b:6f:21:4d:85:db:38:11:f0:21:93:46:b6:66:
3a:81:80:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:43 2024 by rpki-client on console-fra.rpki-client.org