Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/16b02c-833a-48f0-ba56-ad6f0bf88438/1/lZ-3lVCVACc5YedGbgBhvLpM0Bk.roa
File: lZ-3lVCVACc5YedGbgBhvLpM0Bk.roa (raw, json)
Hash identifier: ftW+7qACkEonN9+dc4OaRxz89IBYhfqZHbiazyCjqA4=
Subject key identifier: 95:9F:B7:95:50:95:00:27:39:61:E7:46:6E:00:61:BC:BA:4C:D0:19
Certificate issuer: /CN=12c889964b35b51ba8e5e679a15b19a31f133578
Certificate serial: 018A8D8DB937B9AFD1D1B067ACA30AD2FA1D
Authority key identifier: 12:C8:89:96:4B:35:B5:1B:A8:E5:E6:79:A1:5B:19:A3:1F:13:35:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EsiJlks1tRuo5eZ5oVsZox8TNXg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/16b02c-833a-48f0-ba56-ad6f0bf88438/1/lZ-3lVCVACc5YedGbgBhvLpM0Bk.roa
Signing time: Wed 13 Sep 2023 07:59:50 +0000
ROA not before: Wed 13 Sep 2023 07:59:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210318
IP address blocks: 82.146.186.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:8d:8d:b9:37:b9:af:d1:d1:b0:67:ac:a3:0a:d2:fa:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12c889964b35b51ba8e5e679a15b19a31f133578
Validity
Not Before: Sep 13 07:59:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=959fb795509500273961e7466e0061bcba4cd019
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:87:4c:4e:4f:7e:a1:02:59:ad:04:21:04:f9:
11:fe:3e:41:52:40:ef:2d:db:a5:4c:f4:66:b4:e2:
6b:ef:a8:bd:71:4b:d2:d9:df:5b:0b:c9:97:c0:be:
9e:d4:1b:de:b5:73:ee:f2:07:5f:f4:32:d1:63:c4:
85:78:d2:bf:b2:b6:73:e0:c4:78:d7:df:ff:e6:7f:
55:c9:24:bc:9a:98:17:e5:46:48:6f:1c:fc:cd:ad:
02:4a:30:54:d6:3f:88:d7:49:4f:cf:99:94:7a:3f:
a4:83:ed:c7:7a:1a:be:0e:8e:9b:44:b8:68:1f:12:
63:30:5c:f4:bd:07:1d:64:17:97:5d:54:58:66:d3:
19:d9:4b:14:fb:18:5f:cd:52:b1:7d:69:51:be:a2:
58:fe:9f:a7:a8:9b:76:14:33:99:06:88:49:c3:f2:
44:c4:bc:68:83:3a:4c:92:77:7e:f5:91:b3:d9:c7:
37:c4:5b:d8:f1:fa:ce:c4:5e:ac:d8:b6:9e:80:91:
74:82:ce:dd:2e:18:8e:0f:64:95:21:a5:ff:e0:1a:
4f:57:de:9e:eb:cd:38:85:b8:8f:2b:dc:ea:3c:d6:
f8:37:90:51:09:70:78:75:08:cb:dc:24:02:b4:ae:
13:f2:b4:10:4f:d7:fc:0a:a8:68:da:82:fd:16:c2:
be:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:9F:B7:95:50:95:00:27:39:61:E7:46:6E:00:61:BC:BA:4C:D0:19
X509v3 Authority Key Identifier:
keyid:12:C8:89:96:4B:35:B5:1B:A8:E5:E6:79:A1:5B:19:A3:1F:13:35:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EsiJlks1tRuo5eZ5oVsZox8TNXg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/16b02c-833a-48f0-ba56-ad6f0bf88438/1/lZ-3lVCVACc5YedGbgBhvLpM0Bk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/16b02c-833a-48f0-ba56-ad6f0bf88438/1/EsiJlks1tRuo5eZ5oVsZox8TNXg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.146.186.0/24
Signature Algorithm: sha256WithRSAEncryption
30:50:6d:05:c3:38:71:b6:f8:e0:a2:42:79:25:86:2e:66:31:
3c:56:5c:ef:d1:2c:c2:4c:6c:22:92:24:5b:90:92:70:45:1e:
14:4d:cd:01:9a:5a:cd:1b:f4:fb:07:b7:61:bb:c2:bb:a8:4f:
54:e9:55:09:23:af:f1:b7:30:0e:9b:78:2e:fb:e9:8f:d3:ad:
46:ef:de:0d:56:5b:ff:ec:bc:2f:9f:f4:8d:69:86:95:98:16:
1f:07:72:b4:b8:a5:5d:e8:b1:47:f1:ea:c1:82:98:7a:f6:a8:
ee:31:80:ca:21:c1:66:2f:28:3a:bc:ce:1e:d0:02:75:61:b8:
0f:e8:2b:35:f2:fc:1b:61:c0:a4:6b:cd:58:9a:2d:64:20:fe:
82:a4:bb:f1:16:3b:1d:53:98:09:83:28:72:ee:ff:8f:a3:f5:
21:41:a8:32:7e:e3:3e:cd:42:10:5e:4d:fa:01:fc:ec:0c:da:
62:f1:61:aa:85:cf:b4:ed:80:a0:6f:20:43:6f:af:aa:40:79:
cb:56:e5:d0:6e:3a:7c:99:74:01:b2:a5:26:2d:f5:72:29:35:
b1:ef:08:6b:7d:b7:ba:a2:4d:b7:4c:15:f7:1e:96:e0:50:ae:
65:16:bc:ba:ff:05:d5:8f:2b:f5:d4:44:5d:99:dd:dd:1f:21:
e7:d2:0d:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:52 2024 by rpki-client on console-fra.rpki-client.org