Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/u8lAGB5d6N7aiN8lluJhDwoHl4M.roa
File: u8lAGB5d6N7aiN8lluJhDwoHl4M.roa (raw, json)
Hash identifier: 2k7EbOZhky8jcDEmIkBQd6iN6Vy9AKjA3w+UEEGRvtE=
Subject key identifier: BB:C9:40:18:1E:5D:E8:DE:DA:88:DF:25:96:E2:61:0F:0A:07:97:83
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 018E7DEE7C67559ECC41BFFD8D5346706996
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/u8lAGB5d6N7aiN8lluJhDwoHl4M.roa
Signing time: Wed 27 Mar 2024 03:22:45 +0000
ROA not before: Wed 27 Mar 2024 03:22:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 30860
IP address blocks: 82.115.8.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 03 May 2024 02:18:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:7d:ee:7c:67:55:9e:cc:41:bf:fd:8d:53:46:70:69:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: Mar 27 03:22:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bbc940181e5de8deda88df2596e2610f0a079783
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:2e:4c:35:31:37:b8:81:99:d7:3f:a3:fd:76:
20:18:32:03:86:77:ca:08:fc:f0:43:3d:65:34:2d:
e1:8b:97:cd:91:2f:18:08:81:4c:f9:45:50:fd:19:
fd:b7:c4:20:e1:60:da:95:79:57:94:f5:35:f6:e6:
cd:20:bb:0a:46:a6:a9:bb:59:17:06:34:cd:ff:a7:
ad:ce:4c:40:a5:25:d3:fa:15:8e:f5:8d:c6:0a:08:
02:a0:de:f8:b3:db:04:f0:ec:18:96:82:12:9f:59:
72:08:08:bb:e2:1c:2b:53:b1:5a:0e:67:35:9e:6b:
71:9e:1a:f5:1d:39:a0:63:6e:e2:9a:c9:f2:b5:9a:
7f:eb:1c:f9:cd:b5:25:72:d3:8e:dd:52:52:f0:5d:
28:82:f0:b4:16:69:2d:dd:96:4f:86:1d:28:d5:b8:
2a:a0:fa:15:81:7f:37:67:d4:3c:6b:e1:4d:90:cc:
06:35:71:1f:16:b2:fe:69:06:dc:28:5d:d8:1a:c7:
03:0a:52:e0:ec:b9:02:09:91:51:f1:3d:fa:31:2f:
9e:3b:0a:85:13:bf:63:e0:e9:ac:da:32:34:47:a9:
35:89:c6:0a:d7:c9:b3:ef:f3:66:fa:60:9b:db:4c:
17:96:fc:f5:63:7e:e9:f6:43:8d:bf:17:2f:89:ca:
f7:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:C9:40:18:1E:5D:E8:DE:DA:88:DF:25:96:E2:61:0F:0A:07:97:83
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/u8lAGB5d6N7aiN8lluJhDwoHl4M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.115.8.0/24
Signature Algorithm: sha256WithRSAEncryption
46:89:ca:ca:d1:e0:5c:d4:bb:19:40:19:44:0b:d6:88:d0:fc:
dd:01:91:fb:b9:06:c6:08:9f:94:0d:4c:5e:c8:b2:f5:2e:e8:
91:d6:78:60:ad:df:0e:c1:06:db:74:14:06:84:8a:5a:4d:89:
38:1c:f5:46:70:fb:9c:1b:14:8b:0b:43:6b:4a:2b:db:a8:54:
e7:37:06:e1:1a:09:41:a1:bd:8b:82:8d:fd:49:3c:c9:d8:4e:
64:57:70:db:38:52:1e:1b:0b:12:91:70:58:3d:64:ec:37:64:
b8:0c:ec:e0:78:e0:c8:35:46:42:06:43:f6:54:4c:b3:ae:f8:
5f:b1:c2:b3:0a:5a:d3:32:f9:7c:42:59:6e:0d:6d:5c:38:e5:
57:79:5c:ef:48:11:f5:3f:85:d5:0d:60:52:16:a5:83:12:fe:
a3:12:28:12:01:1b:69:ee:bc:ad:18:19:d6:fd:f2:e7:d4:73:
9b:fa:b8:dd:bd:76:5c:77:8b:e6:51:08:b0:39:2e:05:71:ed:
05:8d:e8:5d:93:32:bd:0d:cb:66:7c:2a:b4:96:a3:4a:8a:b7:
10:78:08:5c:e4:87:36:00:be:da:c8:ae:11:62:64:90:bc:4d:
5b:c6:1c:e3:d9:6c:2d:d1:b1:7d:cd:93:41:d1:75:34:2b:70:
77:ee:c3:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 05:48:25 2024 by rpki-client on console-fra.rpki-client.org