Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/kpRiPMWzDWr7q41zIcjwGkl_stA.roa
File: kpRiPMWzDWr7q41zIcjwGkl_stA.roa (raw, json)
Hash identifier: 2VbosnPj8bhPGUuDx//XUjZBi0GbkidKv1YwrZ1S6xg=
Subject key identifier: 92:94:62:3C:C5:B3:0D:6A:FB:AB:8D:73:21:C8:F0:1A:49:7F:B2:D0
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 0187325597B9DF9F2DDBDA5965091719139B
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/kpRiPMWzDWr7q41zIcjwGkl_stA.roa
Signing time: Thu 30 Mar 2023 11:44:42 +0000
ROA not before: Thu 30 Mar 2023 11:44:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42831
IP address blocks: 82.115.8.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:32:55:97:b9:df:9f:2d:db:da:59:65:09:17:19:13:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: Mar 30 11:44:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9294623cc5b30d6afbab8d7321c8f01a497fb2d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:57:8a:50:d8:74:62:9b:5c:a9:a3:58:81:9a:
ba:f3:d4:6a:da:03:2a:d2:37:8b:7a:22:51:de:62:
3e:9c:76:64:e7:9d:77:3b:6d:4a:1e:b5:86:41:03:
6a:1f:87:8b:5f:24:6c:0e:10:54:13:37:a7:70:eb:
70:73:44:df:91:44:30:48:6b:80:ba:a7:e5:da:6e:
f6:26:5b:ac:8d:be:c0:8d:57:62:89:7f:71:e1:4b:
c7:8c:51:61:5f:00:60:8b:12:54:4f:c4:db:97:01:
85:1b:6d:e4:96:28:2d:7c:62:df:aa:ec:3a:fc:a2:
af:60:e6:d1:f6:2a:b9:e0:f7:de:d5:91:f4:bf:78:
f8:5a:96:64:34:12:d6:06:bb:ef:a9:df:88:1f:4e:
63:5e:a5:2f:40:6d:34:30:c4:85:0e:1d:a6:8e:01:
99:00:b7:fa:5d:be:6b:ad:75:11:a7:20:80:dd:ac:
06:c7:fa:03:0c:31:bc:52:4d:c9:76:a4:23:cc:ca:
7c:9d:1d:49:91:67:53:07:7e:53:e5:10:4b:e4:cc:
e8:ff:f2:6e:b0:5c:1f:b2:28:b7:da:b8:33:56:25:
8f:15:91:b8:49:ff:15:e1:94:64:39:3d:4f:ee:b2:
38:05:5b:fb:8a:0e:55:b3:ee:f7:74:59:5d:fe:b7:
f0:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:94:62:3C:C5:B3:0D:6A:FB:AB:8D:73:21:C8:F0:1A:49:7F:B2:D0
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/kpRiPMWzDWr7q41zIcjwGkl_stA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.115.8.0/22
Signature Algorithm: sha256WithRSAEncryption
23:35:29:8e:f9:f6:02:d7:37:cd:55:65:7b:78:80:16:cd:a3:
b9:b4:2b:33:41:25:28:92:2b:3a:72:aa:28:27:d9:dc:e2:46:
4b:fb:25:f2:35:1c:5c:42:0f:47:c2:f3:20:31:ab:4f:9f:8f:
3a:e2:ec:0d:f0:cd:a3:a5:05:d9:6e:58:ee:c8:ca:a8:8e:0a:
4f:3f:1c:93:1f:83:e0:a3:f3:2f:69:99:09:cf:4f:1a:b1:ae:
01:44:b5:1e:54:ab:02:af:72:60:2d:9d:91:3c:46:39:35:d2:
ff:ff:23:93:1b:fa:89:d3:e4:3f:27:d0:36:b2:6a:ac:cd:f8:
3c:8b:ba:95:a7:62:71:b1:15:de:93:95:99:3b:1a:f3:2a:27:
83:0d:f4:33:bd:37:4c:bc:d3:42:ff:2e:f1:12:30:c0:ed:47:
e3:99:1b:ef:ae:e9:3d:8a:94:11:be:75:79:cd:6d:bd:da:85:
79:2f:50:69:95:5f:ff:3e:54:e3:1d:bb:7e:12:e3:7e:fe:91:
e3:14:3a:7b:35:bb:25:38:5e:66:5e:72:cd:52:d2:bf:14:cf:
04:1f:9a:cf:c0:42:81:fd:88:77:13:d6:ed:d7:3b:ec:51:98:
93:ce:77:58:65:55:37:14:58:b8:b6:4d:2b:73:24:09:a3:32:
c8:ed:89:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:24 2023 by rpki-client on console-ams.rpki-client.org