Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/7c3726-2dbe-4174-b164-a89889ce5f84/1/cP2UHb5ZMwM4ShO3ctQK9HCmBsg.roa
File: cP2UHb5ZMwM4ShO3ctQK9HCmBsg.roa (raw, json)
Hash identifier: uEEBRLm1cXgqOzH/2t75Lsyphfw+sm1fX3pVzPXk1Vw=
Subject key identifier: 70:FD:94:1D:BE:59:33:03:38:4A:13:B7:72:D4:0A:F4:70:A6:06:C8
Certificate issuer: /CN=2bbc002a2b359b1aa8879e1c4d70455b3192efac
Certificate serial: 01856DCACB99FE2BBEFC4E0666825CEAD9BE
Authority key identifier: 2B:BC:00:2A:2B:35:9B:1A:A8:87:9E:1C:4D:70:45:5B:31:92:EF:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K7wAKis1mxqoh54cTXBFWzGS76w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/7c3726-2dbe-4174-b164-a89889ce5f84/1/cP2UHb5ZMwM4ShO3ctQK9HCmBsg.roa
Signing time: Sun 01 Jan 2023 14:44:44 +0000
ROA not before: Sun 01 Jan 2023 14:44:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3301
IP address blocks: 83.150.176.0/21 maxlen: 21
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:ca:cb:99:fe:2b:be:fc:4e:06:66:82:5c:ea:d9:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2bbc002a2b359b1aa8879e1c4d70455b3192efac
Validity
Not Before: Jan 1 14:44:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=70fd941dbe593303384a13b772d40af470a606c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:63:57:a1:9c:42:4d:f7:bd:d4:42:1d:61:26:
ae:f3:17:fb:e6:bf:44:84:ab:b3:e7:a8:27:f9:31:
22:fd:c8:45:8a:33:86:a9:ee:bb:c5:83:35:62:88:
57:cf:e8:8a:0e:a4:a7:2c:ce:a2:98:42:47:4a:2c:
dc:6b:72:5e:bf:d2:d2:50:69:fa:13:4c:39:cc:d8:
2f:1b:26:e1:9a:ac:be:27:09:18:61:19:47:fb:35:
90:4f:96:dc:1c:7c:93:fe:c5:3f:ce:5c:ec:9f:f8:
18:a3:4c:53:6a:92:fa:a8:c6:0a:64:64:a2:cd:d8:
2a:e0:02:4c:5a:69:b2:13:f5:2e:79:c3:01:3b:b6:
32:49:e8:d0:37:f1:b4:d7:3b:cd:bc:d6:6a:3f:f2:
9e:a9:8e:67:7e:56:b6:dc:d6:ad:89:a6:ab:61:5e:
61:54:fe:a1:e1:4a:5e:39:de:6f:7c:5f:d9:23:6a:
8a:a8:58:53:ac:c3:21:3d:b9:10:7f:f6:15:74:34:
72:7f:f3:29:1f:35:10:86:e6:32:fe:64:b3:c0:36:
40:7b:50:e3:3b:39:c0:60:a4:8a:48:58:ac:e1:70:
62:d8:4d:a6:23:56:ff:37:9c:30:73:42:bd:8f:cf:
7a:c4:62:d2:31:ba:3c:f1:0a:95:7c:be:5a:08:b4:
18:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:FD:94:1D:BE:59:33:03:38:4A:13:B7:72:D4:0A:F4:70:A6:06:C8
X509v3 Authority Key Identifier:
keyid:2B:BC:00:2A:2B:35:9B:1A:A8:87:9E:1C:4D:70:45:5B:31:92:EF:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K7wAKis1mxqoh54cTXBFWzGS76w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/7c3726-2dbe-4174-b164-a89889ce5f84/1/cP2UHb5ZMwM4ShO3ctQK9HCmBsg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/7c3726-2dbe-4174-b164-a89889ce5f84/1/K7wAKis1mxqoh54cTXBFWzGS76w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.150.176.0/21
Signature Algorithm: sha256WithRSAEncryption
3d:26:1d:de:97:05:67:57:4a:d2:b1:5c:66:3d:68:15:f7:5d:
cc:d4:4b:61:ea:12:82:50:47:d5:88:b0:ef:57:34:0b:14:d7:
82:fa:ad:bc:42:ea:d6:7b:57:a3:8f:fb:04:5d:93:23:a2:b9:
6d:f3:25:36:bd:51:43:44:52:73:47:68:f3:16:8e:a8:77:a9:
0d:49:34:29:30:52:37:2f:46:55:e7:97:7e:71:e8:ca:46:86:
cb:b8:b1:02:f2:46:a5:58:45:81:b0:90:f0:ef:15:6f:b5:2c:
2b:89:6e:3a:9a:bc:60:d5:df:61:8d:5c:76:66:1e:3a:ee:f5:
9f:80:43:d9:16:34:b1:a3:73:ca:a9:cf:3e:65:fd:a4:6c:ae:
ac:a2:80:23:71:df:ca:bf:ca:33:6e:8e:0d:a5:54:fe:6d:a3:
36:2d:07:db:68:9c:e2:b3:f0:7c:99:55:79:46:d1:ac:fe:d1:
04:6a:5e:29:6d:71:ea:3b:bc:cb:01:3f:f4:5f:35:46:9b:0c:
a9:63:36:b8:82:e5:3f:55:c3:37:89:d7:a3:5c:f4:96:51:ff:
7f:21:16:8f:d1:82:95:76:6d:87:ae:57:42:6c:a0:35:94:78:
3b:0b:d1:81:9d:12:ba:99:78:d4:44:dd:8a:8c:10:30:7c:48:
7d:95:11:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:25 2024 by rpki-client on console-fra.rpki-client.org