Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/C7bZsB5GFmjOXdp0iI29_ec2xH4.roa
File: C7bZsB5GFmjOXdp0iI29_ec2xH4.roa (raw, json)
Hash identifier: 18qHnB0sxdMWNkohjAYKjpDr9YIZWkqnGWdRpn8fer0=
Subject key identifier: 0B:B6:D9:B0:1E:46:16:68:CE:5D:DA:74:88:8D:BD:FD:E7:36:C4:7E
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 0190688F480D89DB6A5A5B54FF705CC877DE
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/C7bZsB5GFmjOXdp0iI29_ec2xH4.roa
Signing time: Sun 30 Jun 2024 09:52:18 +0000
ROA not before: Sun 30 Jun 2024 09:52:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 20473
IP address blocks: 82.115.9.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 31 Aug 2024 06:48:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:68:8f:48:0d:89:db:6a:5a:5b:54:ff:70:5c:c8:77:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: Jun 30 09:52:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0bb6d9b01e461668ce5dda74888dbdfde736c47e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:b2:79:6e:55:b6:b6:65:ba:95:8a:64:44:5a:
37:1e:90:0b:7c:57:87:43:9a:55:be:f2:12:5e:ab:
37:82:2b:4a:b7:2f:99:ab:84:e0:e9:1d:c7:35:2c:
7c:63:0b:15:96:a4:5e:d2:d3:62:45:b4:5b:24:f0:
4e:5a:aa:f7:81:7c:b4:1e:8c:d9:cb:0d:04:5e:3c:
4a:a1:41:9b:fe:99:1c:d5:4e:15:5e:6a:4d:49:ca:
e3:7b:47:77:f6:d0:bd:00:fa:0a:d1:bb:0b:f7:52:
3f:c2:11:2f:70:c0:75:04:2d:2a:39:f4:e9:14:ec:
ef:ec:f5:ac:57:f9:77:93:6c:d8:80:e2:44:b4:3d:
92:e7:56:d2:a1:1f:de:70:c3:22:15:b3:19:fc:ba:
69:6f:7f:5b:22:af:bd:53:98:10:a5:9b:15:0e:97:
27:bd:f9:2a:da:1c:94:fa:73:50:83:4f:b1:47:dc:
0e:aa:4e:b8:60:e8:7f:b2:d1:8e:ac:dd:e3:16:9e:
e2:92:22:7b:55:f7:59:a4:37:d1:6e:d2:5c:c9:41:
02:23:e9:d5:ea:2c:8e:7b:06:fa:7d:82:83:11:56:
43:82:58:1d:81:23:26:47:6a:bf:43:36:68:40:2e:
8a:4e:8d:70:7a:b0:58:d4:59:a4:18:57:ec:88:ae:
ec:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:B6:D9:B0:1E:46:16:68:CE:5D:DA:74:88:8D:BD:FD:E7:36:C4:7E
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/C7bZsB5GFmjOXdp0iI29_ec2xH4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.115.9.0/24
Signature Algorithm: sha256WithRSAEncryption
bc:7e:e4:ea:34:da:58:cd:88:19:d0:82:c3:9a:5b:0e:41:f7:
a5:0d:40:2f:04:07:0a:66:a3:2f:8e:8e:ec:e7:37:1d:a3:8a:
74:99:08:b5:9e:f6:e1:8f:a8:e2:d5:ce:d9:05:23:8e:43:c6:
b4:45:9b:d9:55:76:71:bd:c9:bd:67:d1:17:fc:41:5b:d5:ef:
f1:c4:4e:db:30:83:b7:86:9c:8a:d5:0b:c9:79:1d:dc:bc:fd:
2d:d8:f7:c4:a8:fd:21:ec:26:cb:1f:c7:8a:a1:83:e4:55:44:
9d:9e:0c:df:c6:71:82:5c:e0:dc:20:e8:51:34:47:23:92:08:
ec:2a:11:7f:79:36:42:66:82:8d:dd:63:4d:49:c2:95:74:c4:
6c:7d:6d:32:7f:af:ea:26:94:f9:5b:58:6e:f0:d1:3f:6c:af:
3c:2c:ac:5f:eb:d8:e4:93:a6:ce:0d:e3:99:6d:6c:11:c6:44:
dc:6e:a4:b7:72:86:e5:b0:c7:ad:60:0f:37:1b:33:9c:12:57:
94:db:7a:fe:9e:c2:f3:2b:bb:fa:3f:ea:9b:cd:79:a0:30:ec:
fc:ab:11:8c:13:28:5a:51:d8:ac:6a:39:72:01:84:3c:79:02:
48:f8:7e:25:7c:e2:92:39:d9:65:cc:6e:22:0f:87:22:5c:7c:
1b:e3:ac:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 31 09:39:47 2024 by rpki-client on console-ams.rpki-client.org