Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/iyAh6kPK-_Q3xn0nVh6dzh3ktOQ.roa
File: iyAh6kPK-_Q3xn0nVh6dzh3ktOQ.roa (raw, json)
Hash identifier: pngAN6JLlgNQDGZFNoxSccMe23rbmuE7I4veb0zfgz0=
Subject key identifier: 8B:20:21:EA:43:CA:FB:F4:37:C6:7D:27:56:1E:9D:CE:1D:E4:B4:E4
Certificate issuer: /CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Certificate serial: 01856D0AE8DFDF2D976BF3F89157096373C9
Authority key identifier: 38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/iyAh6kPK-_Q3xn0nVh6dzh3ktOQ.roa
Signing time: Sun 01 Jan 2023 11:15:09 +0000
ROA not before: Sun 01 Jan 2023 11:15:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29147
IP address blocks: 82.137.156.0/24 maxlen: 24
2001:b08:a::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:0a:e8:df:df:2d:97:6b:f3:f8:91:57:09:63:73:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Validity
Not Before: Jan 1 11:15:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8b2021ea43cafbf437c67d27561e9dce1de4b4e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:34:e4:e5:dc:ac:c6:86:39:ad:2f:0b:17:d7:
25:79:7f:88:68:43:79:ce:e0:42:ab:6f:c5:ee:0c:
26:6a:83:0d:b6:89:30:25:38:17:8c:da:63:00:78:
0e:0a:eb:59:00:55:a0:fe:48:0c:f0:38:4d:9a:32:
b5:a7:73:e3:df:15:f4:b8:21:09:52:8d:85:92:91:
65:dd:bc:fc:63:fc:ce:6d:80:1b:9d:05:fb:dd:d1:
7f:47:11:7d:b9:e9:65:a4:5f:d4:c8:c7:e2:f1:eb:
a7:3f:4c:a3:ba:fa:ba:be:f4:98:ca:f2:04:21:21:
bc:f8:b7:1c:f8:ce:7d:71:e9:50:ea:da:18:0e:18:
28:b0:d3:f7:e4:26:99:36:eb:88:03:e3:5e:58:1c:
70:a5:2d:42:88:9f:49:ce:53:dc:3f:3b:c2:5c:fe:
6e:39:c3:65:33:cd:c9:7a:21:08:b9:ee:8c:99:b3:
97:b0:97:77:6b:27:9d:66:e0:06:9a:a6:db:4b:91:
08:1e:d3:35:0e:05:41:09:3d:0f:8a:b7:77:c1:19:
91:ba:ff:6a:d9:45:d9:58:33:6d:bb:aa:ec:68:46:
15:a2:4f:92:e8:89:78:75:f3:4c:a0:22:23:8f:cb:
c5:b8:e1:fd:52:38:d3:2f:12:b0:cf:f0:94:02:d8:
79:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:20:21:EA:43:CA:FB:F4:37:C6:7D:27:56:1E:9D:CE:1D:E4:B4:E4
X509v3 Authority Key Identifier:
keyid:38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/iyAh6kPK-_Q3xn0nVh6dzh3ktOQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/OLIgI7bq1MKWg6n-1Ek9A97ixoU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.137.156.0/24
IPv6:
2001:b08:a::/48
Signature Algorithm: sha256WithRSAEncryption
42:df:45:0d:9b:1e:b7:45:f4:45:76:85:7f:23:b4:55:ed:4c:
84:f3:8a:c5:15:d9:91:aa:72:d6:7c:a9:93:01:d2:c9:4c:c8:
0d:ea:89:26:05:75:7c:fc:0c:25:6d:6c:9a:cc:9f:7b:63:2d:
6b:8e:38:e9:3d:81:8d:af:16:c2:aa:63:8d:f4:ff:b8:8b:71:
7a:f6:89:77:6f:b9:27:f4:27:5a:14:fb:dd:12:63:50:39:d2:
98:82:9f:56:13:ab:62:e2:46:c7:25:0b:ee:2b:df:98:a3:3b:
fd:cb:f5:32:70:70:2c:aa:68:9d:9a:ee:99:6e:dc:1c:7e:5e:
2b:9b:7f:da:3b:ea:e7:b3:71:6e:0e:2a:98:b0:27:b7:fc:b6:
f3:9d:63:69:58:a6:50:05:88:e4:e9:95:95:f8:78:bd:4b:72:
79:51:41:9f:b0:ed:a6:6a:e9:70:56:7f:1f:d7:f4:35:11:2c:
49:93:c9:6d:e9:40:df:51:c1:17:50:a0:80:b8:b4:bd:e8:4d:
0d:4a:18:6e:99:a7:c7:29:53:c6:2f:f9:a7:92:58:93:6a:2d:
ce:7c:e8:b5:d5:8c:3c:6b:95:e9:88:bf:65:75:44:d8:17:e7:
67:b6:fe:f0:95:4e:b7:83:6c:f1:c2:10:47:00:34:58:95:93:
5b:21:da:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:01 2024 by rpki-client on console-ams.rpki-client.org