Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/kC6i1LuvcqhAmFb5shMsLsqRzRQ.roa
File: kC6i1LuvcqhAmFb5shMsLsqRzRQ.roa (raw, json)
Hash identifier: eh80xv9LITHvYvjlGPE9pxGwTVEHrXY7kmYHtaWHpo0=
Subject key identifier: 90:2E:A2:D4:BB:AF:72:A8:40:98:56:F9:B2:13:2C:2E:CA:91:CD:14
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 0190E92A5900B118FEE80D2C55DE01055D2B
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/kC6i1LuvcqhAmFb5shMsLsqRzRQ.roa
Signing time: Thu 25 Jul 2024 09:13:04 +0000
ROA not before: Thu 25 Jul 2024 09:13:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7018
IP address blocks: 83.147.232.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 29 Jul 2024 20:14:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:e9:2a:59:00:b1:18:fe:e8:0d:2c:55:de:01:05:5d:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Jul 25 09:13:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=902ea2d4bbaf72a8409856f9b2132c2eca91cd14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:5a:64:79:39:e8:d7:b5:17:00:94:14:46:39:
60:a6:c5:b2:b9:26:19:99:89:cf:37:d0:3f:80:ea:
e4:f6:07:3b:74:9f:65:96:8f:19:2a:8a:ad:96:dc:
fc:9d:23:6e:bc:18:48:6a:e8:95:4a:ff:66:1b:85:
5f:8d:95:48:74:f8:cd:47:bb:1b:18:79:d0:af:a5:
a4:b9:25:f0:b7:66:25:6f:b9:e4:56:e4:7d:d0:af:
3f:1e:8b:ae:33:86:00:b7:db:94:89:87:12:89:41:
a9:5b:49:de:5b:d8:a8:8c:0e:e7:e6:03:b2:36:59:
5a:65:ee:2b:9f:09:e1:70:ac:18:1c:9f:2f:f8:29:
c1:ee:17:d2:97:f0:90:32:64:2f:75:7b:ff:0f:98:
bf:04:a9:8b:c2:32:d5:7d:4c:1d:1e:0b:d8:92:87:
64:30:30:46:82:6a:8b:4b:f3:f9:3e:26:36:0c:1c:
44:15:dd:09:01:c0:8c:45:98:50:bb:60:85:c6:59:
dd:1c:36:f2:a3:5a:bf:07:d9:c5:30:ba:fa:cc:80:
2f:ae:ea:7f:ec:d8:b8:b9:4b:9b:51:03:3e:17:b5:
40:01:9f:6a:1e:01:46:de:21:24:61:fc:e5:71:85:
63:ee:a5:8d:7b:99:7c:43:8b:97:29:d4:35:0f:73:
22:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:2E:A2:D4:BB:AF:72:A8:40:98:56:F9:B2:13:2C:2E:CA:91:CD:14
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/kC6i1LuvcqhAmFb5shMsLsqRzRQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.232.0/22
Signature Algorithm: sha256WithRSAEncryption
89:c9:5e:ab:c3:62:f1:44:8c:69:49:d6:75:86:6c:9c:46:85:
19:9a:8d:b0:af:26:72:4e:15:41:9a:6a:a1:ca:f6:01:e0:bc:
6f:b0:88:15:e2:76:00:78:a3:f9:20:eb:f8:70:a7:90:f7:59:
93:43:06:eb:e9:52:c1:c6:3b:ef:9e:90:f5:81:00:03:fd:90:
0e:8b:c1:e0:35:65:60:4e:97:a7:41:c6:9a:1d:db:e9:ce:52:
4d:08:29:00:16:9f:6b:47:fb:24:fc:09:1b:35:a6:f1:c8:29:
5c:1f:93:41:a7:e9:2a:6e:03:a8:69:fd:e8:a8:c8:49:bf:43:
29:61:da:6a:72:5c:16:9d:4e:14:9a:6e:e6:88:94:55:cb:41:
62:48:e8:b7:27:95:1d:d5:7c:19:21:8b:7d:8f:57:36:c9:9e:
15:1f:cf:7e:78:18:dc:a9:7a:87:74:08:3f:4a:19:83:af:26:
09:37:e8:36:98:05:fe:e9:62:f5:60:13:c5:be:e4:61:21:bd:
f4:be:a4:75:19:a5:d7:4b:01:8d:96:d1:91:74:f2:e1:95:8e:
68:0b:f8:ad:b4:80:56:76:7e:62:d2:78:8a:ba:22:69:b3:59:
19:c1:30:1c:4d:22:1f:b1:bb:df:0e:35:8f:e8:1f:e9:91:25:
f7:18:62:4d
-----BEGIN CERTIFICATE-----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Generated at Mon Jul 29 23:23:17 2024 by rpki-client on console-ams.rpki-client.org