Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/b_tWHrEOhSguE2XtBQBBV_bVP2I.roa
File: b_tWHrEOhSguE2XtBQBBV_bVP2I.roa (raw, json)
Hash identifier: +448MlxMQutIxPaRF+24OaF26BuJnByeWk1HnpVtq8A=
Subject key identifier: 6F:FB:56:1E:B1:0E:85:28:2E:13:65:ED:05:00:41:57:F6:D5:3F:62
Certificate issuer: /CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Certificate serial: 01856D0AE48D69E5289C93AA31E1C21BDF60
Authority key identifier: 38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/b_tWHrEOhSguE2XtBQBBV_bVP2I.roa
Signing time: Sun 01 Jan 2023 11:15:08 +0000
ROA not before: Sun 01 Jan 2023 11:15:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8398
IP address blocks: 82.179.128.0/21 maxlen: 21
82.179.138.0/23 maxlen: 23
82.179.136.0/23 maxlen: 23
82.179.142.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:0a:e4:8d:69:e5:28:9c:93:aa:31:e1:c2:1b:df:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Validity
Not Before: Jan 1 11:15:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6ffb561eb10e85282e1365ed05004157f6d53f62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:b2:d0:48:07:1f:a2:28:03:06:e1:55:03:5b:
86:76:24:a5:30:af:2d:ed:41:42:df:21:20:41:38:
78:02:4c:fd:95:a3:0c:3e:3d:2e:a7:e6:a9:d0:d7:
9f:f1:ac:31:56:e1:07:e1:44:f9:77:3d:ce:13:f0:
eb:69:a8:20:72:80:5e:68:6b:53:b4:85:d2:55:d8:
39:c7:12:00:e5:87:05:dc:30:ce:40:50:14:21:78:
13:a2:17:b3:71:98:7e:8a:4b:cf:f9:a4:cb:cf:ba:
62:13:5f:9f:cc:96:81:7d:f5:c9:de:ad:69:8a:f0:
ba:f7:c5:1f:36:ae:55:54:90:41:b4:00:80:5a:9e:
9c:54:bf:b6:91:51:21:3c:db:6a:6a:7d:d1:6e:77:
84:dd:5f:a8:85:db:2a:ff:06:89:72:a8:a4:46:ab:
9f:98:51:ab:54:3e:a5:cc:03:d6:62:9a:e0:09:c5:
c9:07:a3:dd:b6:6e:62:fa:70:76:11:c8:16:4e:02:
4b:76:3b:a4:2b:76:f4:43:c6:b7:8b:81:d2:68:ff:
6e:66:ec:e4:0f:cf:b2:87:bb:b2:08:c7:05:fb:1b:
1c:e1:93:d8:ce:84:ea:91:91:85:85:ff:64:41:ea:
59:87:af:a1:ca:43:fb:7d:d6:d7:b1:24:f9:0a:b6:
51:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:FB:56:1E:B1:0E:85:28:2E:13:65:ED:05:00:41:57:F6:D5:3F:62
X509v3 Authority Key Identifier:
keyid:38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/b_tWHrEOhSguE2XtBQBBV_bVP2I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/OLIgI7bq1MKWg6n-1Ek9A97ixoU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.179.128.0-82.179.139.255
82.179.142.0/23
Signature Algorithm: sha256WithRSAEncryption
97:7c:42:79:74:4c:d3:df:9d:64:e5:5c:9a:1f:d0:18:f5:01:
ba:3e:58:06:c0:05:14:58:96:ed:1b:e8:97:ad:a6:4d:90:a4:
4b:a2:2d:5c:ac:a4:bd:5d:56:28:95:9e:cb:5b:ee:66:17:62:
c3:1f:52:d3:ca:12:32:eb:cd:c0:1e:7d:b1:7a:10:cb:74:20:
38:77:75:18:58:ca:53:15:6b:73:d9:2a:a4:fb:74:52:4d:e7:
01:4c:55:57:e6:b7:24:0c:73:aa:03:55:b3:e6:43:26:40:48:
40:d2:0d:e7:11:d8:06:66:b8:77:a0:09:45:13:8c:e8:c2:60:
bd:ff:5d:9c:85:8a:fd:1e:0d:7b:fe:a6:13:a5:4b:41:37:46:
1d:5c:e7:84:b2:76:df:a7:19:27:d3:3a:b3:a6:b9:52:89:7d:
1c:92:64:59:37:d9:31:ff:4b:30:c8:52:e8:15:e3:c2:16:4f:
21:8f:5d:5c:a7:5d:a7:f6:1d:0b:d5:3a:a7:7d:7a:90:87:19:
ce:80:3b:3f:7d:e9:05:68:9e:5c:9c:79:33:16:b7:18:15:23:
71:65:57:f9:c5:00:54:84:cd:e1:27:3e:9d:b0:18:83:61:3b:
20:75:3c:87:1e:15:05:c4:25:0e:9e:80:67:f1:8c:84:14:4b:
cf:d5:4a:7b
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:46 2024 by rpki-client on console-fra.rpki-client.org