Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/8cf962-074f-41ac-ae2a-816203d21d12/1/puSgsRp4_xki9RAEgCjEBhza7Zs.roa
File: puSgsRp4_xki9RAEgCjEBhza7Zs.roa (raw, json)
Hash identifier: p3PVLtSAuvxhT4dM8pV5BJOYn+kokQKMj4U+dh1E6NM=
Subject key identifier: A6:E4:A0:B1:1A:78:FF:19:22:F5:10:04:80:28:C4:06:1C:DA:ED:9B
Certificate issuer: /CN=6353829c061a8af26de946fc9e81885c74c174c7
Certificate serial: 0188F6C9A24827EC5AE911B906866EC8BB3A
Authority key identifier: 63:53:82:9C:06:1A:8A:F2:6D:E9:46:FC:9E:81:88:5C:74:C1:74:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y1OCnAYaivJt6Ub8noGIXHTBdMc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/8cf962-074f-41ac-ae2a-816203d21d12/1/puSgsRp4_xki9RAEgCjEBhza7Zs.roa
Signing time: Mon 26 Jun 2023 08:19:49 +0000
ROA not before: Mon 26 Jun 2023 08:19:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60294
IP address blocks: 82.198.64.0/19 maxlen: 19
185.65.192.0/22 maxlen: 22
2a03:1d60::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:f6:c9:a2:48:27:ec:5a:e9:11:b9:06:86:6e:c8:bb:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6353829c061a8af26de946fc9e81885c74c174c7
Validity
Not Before: Jun 26 08:19:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a6e4a0b11a78ff1922f510048028c4061cdaed9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:ef:48:94:a2:9a:5b:3b:f2:aa:30:eb:3c:d6:
28:c2:c9:85:42:e6:b3:d0:b2:fd:c7:25:c8:bc:42:
ba:39:92:33:cc:44:66:7a:ab:6f:7a:b6:ab:75:81:
33:ca:1c:c4:bb:99:00:db:ea:a5:5d:7e:d8:a6:f2:
ba:0c:da:71:dd:e4:73:c5:8b:a5:e1:4d:c7:45:e0:
4a:38:79:d4:66:49:28:07:8d:b0:ee:b9:e2:0c:14:
39:a1:9e:b7:b7:a7:09:23:30:43:6d:ae:bd:70:63:
bf:f4:41:fd:7d:79:d8:99:13:48:89:a3:5e:50:e6:
91:ec:3f:1f:59:2a:61:74:6d:b5:d9:3f:05:50:c0:
63:79:30:15:c2:88:19:b7:04:c5:6e:6a:1b:a3:be:
18:a3:90:4e:e8:26:03:3c:ae:22:6d:c5:9f:43:1f:
6f:ed:c1:e5:86:26:8c:d5:50:b7:c8:9f:90:0e:c7:
56:a8:36:9b:c1:b2:0b:55:16:7e:9f:0d:84:dd:f5:
ab:ef:38:74:90:4d:54:8d:4c:6e:51:a6:64:13:a8:
86:71:cf:c9:1f:e0:8f:28:ab:45:e7:27:08:76:55:
97:26:8f:0c:92:74:eb:ec:be:7b:48:ba:9d:5a:a8:
a2:31:e4:aa:e5:a6:91:5a:e6:9d:5f:b3:47:b0:13:
5d:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:E4:A0:B1:1A:78:FF:19:22:F5:10:04:80:28:C4:06:1C:DA:ED:9B
X509v3 Authority Key Identifier:
keyid:63:53:82:9C:06:1A:8A:F2:6D:E9:46:FC:9E:81:88:5C:74:C1:74:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y1OCnAYaivJt6Ub8noGIXHTBdMc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/8cf962-074f-41ac-ae2a-816203d21d12/1/puSgsRp4_xki9RAEgCjEBhza7Zs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/8cf962-074f-41ac-ae2a-816203d21d12/1/Y1OCnAYaivJt6Ub8noGIXHTBdMc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.198.64.0/19
185.65.192.0/22
IPv6:
2a03:1d60::/32
Signature Algorithm: sha256WithRSAEncryption
08:16:29:c9:b0:94:a3:30:66:c2:36:d9:43:b7:b4:05:a4:f1:
70:1b:b2:a5:a4:9e:c0:6f:c2:46:06:13:28:cc:58:c5:a1:dc:
15:fd:a2:0d:19:70:9a:c1:0b:e1:55:0d:86:e0:75:86:a5:7d:
7f:df:dc:d7:f9:f6:7f:a6:c0:1f:c0:3e:bb:bb:11:63:46:27:
26:f8:9e:75:df:ae:22:39:49:77:77:72:95:e9:d4:b8:a9:ba:
6c:f8:54:87:65:90:74:71:ae:85:00:73:ac:56:57:9f:5c:93:
5e:b8:df:ed:a2:e8:aa:81:b7:59:d0:14:51:39:07:c2:1b:e4:
79:57:9c:5a:51:25:1b:04:30:9f:fd:6d:a8:46:ed:92:3c:b2:
0b:b5:1e:4d:f1:45:df:b0:f6:75:98:3f:b8:07:ec:10:c6:63:
2e:bb:53:ae:e2:8d:6a:71:c7:83:28:ee:68:66:fa:62:40:14:
26:bc:d3:7c:18:a1:3a:34:b4:53:a0:27:cd:0b:b4:7e:af:e4:
fc:79:4f:69:3e:73:65:86:f0:04:65:45:ab:1e:fc:07:ff:85:
e1:d8:77:eb:06:17:4b:b8:c4:33:bd:c7:27:b6:17:7a:fc:cb:
ac:46:2c:9e:54:1e:94:a6:93:18:88:cb:e6:1f:b6:5f:74:bd:
4e:02:46:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:12 2024 by rpki-client on console-fra.rpki-client.org