Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/9Mpm8GYrPyNWJom76ACf4tTY7Mg.roa
File: 9Mpm8GYrPyNWJom76ACf4tTY7Mg.roa (raw, json)
Hash identifier: fqP4W2H+Mgsw/uZEhIMM1G/FI0sjekE9/2NJDK6xvk8=
Subject key identifier: F4:CA:66:F0:66:2B:3F:23:56:26:89:BB:E8:00:9F:E2:D4:D8:EC:C8
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 018852E0CE6C6032FE8CA772659A0A0D8799
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/9Mpm8GYrPyNWJom76ACf4tTY7Mg.roa
Signing time: Thu 25 May 2023 12:27:24 +0000
ROA not before: Thu 25 May 2023 12:27:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 52209
IP address blocks: 82.97.244.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:52:e0:ce:6c:60:32:fe:8c:a7:72:65:9a:0a:0d:87:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: May 25 12:27:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f4ca66f0662b3f23562689bbe8009fe2d4d8ecc8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:04:60:3e:67:ea:de:71:cb:ee:ec:78:7c:76:
56:50:4c:2b:82:70:55:e4:10:7d:f5:3a:9a:73:92:
cd:e8:fb:fc:a3:33:c6:be:fd:22:6a:38:86:d3:a1:
e8:30:62:11:0b:78:61:a7:bc:57:4b:f4:ad:6d:24:
fd:c3:34:52:83:44:a2:e0:4b:2b:70:bc:e9:bd:26:
25:41:c5:4c:6d:55:ab:9b:21:f4:59:4c:e6:38:8a:
a0:25:b9:c5:c5:d3:84:cc:8e:f3:1c:62:90:ea:44:
34:d2:43:37:b6:5e:bf:4f:83:07:84:f1:ac:5e:d8:
9a:fd:29:f6:6e:aa:32:43:ed:90:a8:3f:be:0a:41:
5d:ee:f7:29:53:44:89:f2:c0:8c:09:5c:d3:01:09:
b8:e4:c2:fb:c5:b4:7a:fe:5f:03:28:90:95:48:96:
fe:3b:d9:51:81:0f:52:32:d4:33:38:df:5b:8a:77:
d1:b7:54:c0:f4:f4:6d:0b:1a:a2:f1:66:37:fb:30:
90:3a:8e:94:b9:6f:b0:88:a1:11:e1:03:fe:40:7e:
64:1c:ac:82:59:5b:12:6b:b9:d9:60:f9:95:e0:7a:
f7:90:64:81:56:8d:7b:47:25:16:ab:b0:59:66:2c:
3f:bd:cd:b1:69:e1:db:8c:79:43:2d:2a:d4:13:02:
41:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:CA:66:F0:66:2B:3F:23:56:26:89:BB:E8:00:9F:E2:D4:D8:EC:C8
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/9Mpm8GYrPyNWJom76ACf4tTY7Mg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.97.244.0/22
Signature Algorithm: sha256WithRSAEncryption
b0:c0:06:7d:d6:28:c5:73:e6:92:96:fb:7f:70:a6:de:86:1a:
be:7b:84:d4:77:f2:0d:3b:40:ab:1e:09:d2:70:11:b3:f6:01:
7f:48:1b:23:fd:5c:f7:93:92:b5:f1:2f:f5:57:7f:a9:33:e4:
7e:09:df:2a:bd:82:47:ff:c3:24:28:df:4d:bc:e4:1f:73:e9:
af:4e:69:c7:5a:02:24:f6:d1:ed:40:e7:cd:32:bc:57:13:6e:
bb:21:b6:fb:2c:4c:c6:17:a0:31:db:a4:b5:ab:51:d1:eb:02:
60:bf:17:9e:73:2f:b6:42:37:d2:3f:97:3d:c1:1c:18:89:d7:
5a:4c:a0:0b:b5:4c:73:a8:2f:ce:9c:cd:d0:ae:b9:03:31:06:
74:c4:fd:ad:12:ec:84:8a:cd:92:62:99:16:b7:95:05:ac:d9:
bc:7f:d9:30:2b:b2:33:f1:4e:66:19:6a:bd:1f:4b:9d:51:bc:
79:ae:ab:52:25:6c:5c:13:15:dd:9f:21:ea:d6:c4:4d:58:de:
3f:7a:db:3d:cd:d1:a6:6e:ce:a7:1a:08:03:ea:9b:f6:20:71:
1a:66:88:88:23:74:85:65:39:61:21:25:cf:91:3d:e0:6f:e0:
e7:db:e1:fe:75:ab:bd:be:da:7a:e1:b8:44:42:01:5d:8b:9a:
60:71:ed:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:24 2023 by rpki-client on console-ams.rpki-client.org