Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/4eef03-91fe-445a-a7cd-595919be0f52/1/R_7RNNu55GAw40OdKPZpVvRCuvg.roa
File: R_7RNNu55GAw40OdKPZpVvRCuvg.roa (raw, json)
Hash identifier: 5itPejsn1QiV4RajV53V3rwBijlWNTXpmb2GZLUBZmc=
Subject key identifier: 47:FE:D1:34:DB:B9:E4:60:30:E3:43:9D:28:F6:69:56:F4:42:BA:F8
Certificate issuer: /CN=9799140b42db6cb6bf8c6dd413747fcf4a6fd9b5
Certificate serial: 018DC0D3CBD7E2500107FD8F5E6699879FF8
Authority key identifier: 97:99:14:0B:42:DB:6C:B6:BF:8C:6D:D4:13:74:7F:CF:4A:6F:D9:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l5kUC0LbbLa_jG3UE3R_z0pv2bU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/4eef03-91fe-445a-a7cd-595919be0f52/1/R_7RNNu55GAw40OdKPZpVvRCuvg.roa
Signing time: Mon 19 Feb 2024 10:05:22 +0000
ROA not before: Mon 19 Feb 2024 10:05:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 82.206.64.0/21 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Apr 2024 08:24:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:c0:d3:cb:d7:e2:50:01:07:fd:8f:5e:66:99:87:9f:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9799140b42db6cb6bf8c6dd413747fcf4a6fd9b5
Validity
Not Before: Feb 19 10:05:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=47fed134dbb9e46030e3439d28f66956f442baf8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:2f:c9:9b:44:f8:62:7f:92:57:64:d4:05:e5:
57:e1:34:56:03:54:78:5c:cd:e4:f4:41:08:8c:26:
e0:2d:cd:e2:b8:d3:50:16:f7:88:1c:77:b0:8b:db:
8d:d7:50:5c:63:81:3f:6b:83:28:48:2f:e2:7f:35:
b2:8b:16:78:6d:93:ab:0c:e4:95:df:e6:6e:15:3c:
02:13:34:c1:5c:77:9e:7e:68:ac:02:d5:2f:7a:28:
a4:a3:8d:5d:c8:7b:51:77:e1:a8:28:92:60:28:06:
82:70:f4:3a:07:ed:78:ab:bc:2b:c0:8b:77:e8:81:
7c:c2:b4:6a:af:1e:a5:09:09:e8:75:ac:38:bf:f8:
6b:88:f1:20:c2:3e:2b:50:95:7e:76:9c:a9:45:fe:
d5:cd:74:64:8a:f7:6a:78:89:7d:7b:35:75:13:7d:
26:6d:db:db:d4:02:12:d7:94:41:f7:0a:4e:81:df:
55:48:d4:e7:31:a1:68:fe:84:f6:3d:92:67:55:b0:
d3:6e:cc:b8:28:a0:89:a2:69:ce:fb:9c:ed:ff:89:
0b:2d:83:c9:c9:cb:f6:a0:d4:bd:df:5c:46:a1:93:
af:50:1f:c4:94:c2:36:92:73:b3:78:ca:71:4a:21:
36:83:a4:b2:63:6c:5d:1f:95:93:3a:36:24:f5:af:
f8:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:FE:D1:34:DB:B9:E4:60:30:E3:43:9D:28:F6:69:56:F4:42:BA:F8
X509v3 Authority Key Identifier:
keyid:97:99:14:0B:42:DB:6C:B6:BF:8C:6D:D4:13:74:7F:CF:4A:6F:D9:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l5kUC0LbbLa_jG3UE3R_z0pv2bU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/4eef03-91fe-445a-a7cd-595919be0f52/1/R_7RNNu55GAw40OdKPZpVvRCuvg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/4eef03-91fe-445a-a7cd-595919be0f52/1/l5kUC0LbbLa_jG3UE3R_z0pv2bU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.206.64.0/21
Signature Algorithm: sha256WithRSAEncryption
99:83:f8:cb:1c:28:5a:40:40:02:10:33:0c:26:ad:c2:64:d3:
a9:c2:65:1f:a4:34:97:37:36:de:18:12:5c:ce:94:7f:5f:75:
dc:3a:95:ae:57:b1:e1:72:29:11:aa:93:18:d2:b1:24:02:34:
63:37:cf:f0:3a:1c:8b:70:b4:88:f8:65:38:32:05:6d:05:c6:
83:75:46:82:0b:79:20:e2:53:e1:7b:eb:02:ff:c2:b8:8e:44:
61:a4:a2:4b:27:e6:ed:f1:44:1b:e0:08:bc:e3:a8:88:d7:e0:
db:99:64:03:be:c3:ae:db:d5:95:50:d1:4e:a5:08:3e:3f:ea:
81:2c:74:ed:58:05:1a:4a:a2:d2:31:22:08:9e:34:99:c4:cf:
41:9f:34:62:af:4d:9e:4c:fd:d0:31:fe:7a:43:a6:7e:bc:1d:
90:fc:ac:9b:1b:e1:be:fc:6f:1a:c3:9a:1d:08:81:72:7c:14:
61:5a:15:83:21:bc:93:2a:f7:63:e6:26:83:e7:10:ea:91:9a:
29:2e:11:1f:eb:00:fc:52:89:d2:95:15:68:ae:44:77:6c:0b:
9e:a3:44:a8:53:57:7f:1f:10:60:ba:58:55:a1:3e:6c:3e:3b:
aa:d2:1c:79:c1:36:70:4c:93:d7:5a:2a:42:f4:a3:be:b6:92:
9d:43:46:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:43 2024 by rpki-client on console-fra.rpki-client.org