Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/TdciaqgH2Cs_HIqmdjf-5xzG5Zk.roa
File: TdciaqgH2Cs_HIqmdjf-5xzG5Zk.roa (raw, json)
Hash identifier: 3nChQRQuifFbG8xsHRIiyjStIG4LRaAjCAsD73Ck1oU=
Subject key identifier: 4D:D7:22:6A:A8:07:D8:2B:3F:1C:8A:A6:76:37:FE:E7:1C:C6:E5:99
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 01867BC647232B186D77E1C1A82A2E08C616
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/TdciaqgH2Cs_HIqmdjf-5xzG5Zk.roa
Signing time: Thu 23 Feb 2023 00:57:17 +0000
ROA not before: Thu 23 Feb 2023 00:57:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 328867
IP address blocks: 82.115.12.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:7b:c6:47:23:2b:18:6d:77:e1:c1:a8:2a:2e:08:c6:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: Feb 23 00:57:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4dd7226aa807d82b3f1c8aa67637fee71cc6e599
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:f1:10:66:64:ff:bd:de:f7:ef:81:56:42:22:
b0:81:29:cf:35:5a:f5:d4:2d:ac:81:4f:77:f7:19:
6c:2d:35:f2:fe:2e:3b:4c:ec:de:cb:38:d9:17:d1:
e4:57:c8:34:fc:aa:2a:27:9b:b9:a7:e0:5d:fc:6b:
04:d6:0d:3d:8d:83:d9:f3:c1:24:aa:e6:7c:f3:54:
0d:ca:ae:fe:a9:9a:2d:e3:55:d7:96:5e:ee:15:93:
ae:2c:33:07:84:bb:21:15:ff:7f:1f:65:ab:e3:7c:
94:80:f1:ec:78:94:a5:c8:0e:57:11:0f:e4:04:70:
d8:1e:e3:4a:25:f4:45:77:9e:65:3c:80:0b:de:3d:
cb:82:5c:a0:fe:d5:9b:59:a5:81:65:9a:fb:fa:73:
ec:86:24:9f:7a:82:71:dd:6a:82:98:a3:63:72:a8:
2b:f3:d9:84:3a:37:6c:3b:2b:ad:71:46:b2:97:a2:
46:d1:44:ba:69:f4:26:a8:a8:6a:08:7b:1c:59:93:
5a:47:ba:75:a5:9d:0f:da:16:8d:81:a9:0a:2d:d7:
76:b2:3d:74:77:0b:d2:8b:2d:6c:25:f4:7a:36:8c:
e7:5d:5b:ad:59:93:bb:c8:6e:82:98:39:d3:c2:ee:
94:d0:26:68:23:20:ce:8c:32:56:a1:a3:14:76:62:
fb:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:D7:22:6A:A8:07:D8:2B:3F:1C:8A:A6:76:37:FE:E7:1C:C6:E5:99
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/TdciaqgH2Cs_HIqmdjf-5xzG5Zk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.115.12.0/24
Signature Algorithm: sha256WithRSAEncryption
84:69:c5:9b:63:67:ac:17:41:ad:3c:db:b2:75:9a:3f:43:f1:
d4:2c:7c:b7:2e:d3:aa:e4:9a:d1:fc:43:84:5d:ea:3f:4a:41:
67:97:03:5e:9a:ae:31:7f:86:99:10:77:fb:36:94:46:fd:dd:
d4:a7:ae:ba:bf:7f:0e:0b:2a:7b:28:2b:42:c9:2a:23:29:8e:
87:58:1e:84:43:55:b8:43:cf:f4:93:7a:06:75:57:e1:ac:c9:
29:13:54:e8:65:75:bd:e8:c9:02:5b:e3:bb:0b:0e:1d:f7:e2:
10:7a:03:a7:84:a6:cf:39:72:0a:fc:83:a1:70:5d:0d:14:16:
a3:9b:da:6c:7b:ff:c7:b2:ff:5d:91:f7:dc:dc:fe:55:d8:59:
67:5e:43:17:18:94:9e:af:66:57:45:e6:c0:99:70:df:62:15:
4f:99:32:cd:06:30:a2:49:c7:cb:41:c5:df:87:bc:68:15:50:
43:e8:e8:0e:22:e2:2d:bb:b7:82:43:21:5e:d6:84:17:42:26:
2f:98:ce:05:7e:22:06:55:14:6c:fd:51:84:0f:a2:9b:5a:14:
c5:67:56:4f:e4:4f:1f:2a:b9:4e:8b:09:ee:e9:e2:36:d7:4a:
2b:61:16:aa:d6:bc:30:0a:e7:90:b7:06:57:bd:73:51:08:e9:
58:da:ce:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:21:23 2024 by rpki-client on console-ams.rpki-client.org