Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/uU49lzKfSfAFJgr1SmS88_i0L60.roa
File: uU49lzKfSfAFJgr1SmS88_i0L60.roa (raw, json)
Hash identifier: HZGl1QR647Y46PUFbJ6eCEoTWj2sZHrG/y/weBaQs88=
Subject key identifier: B9:4E:3D:97:32:9F:49:F0:05:26:0A:F5:4A:64:BC:F3:F8:B4:2F:AD
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 0185710C43FA7C4D834C51298DCB1C4ED4CB
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/uU49lzKfSfAFJgr1SmS88_i0L60.roa
Signing time: Mon 02 Jan 2023 05:55:07 +0000
ROA not before: Mon 02 Jan 2023 05:55:07 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212936
IP address blocks: 82.115.221.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:0c:43:fa:7c:4d:83:4c:51:29:8d:cb:1c:4e:d4:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Jan 2 05:55:07 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b94e3d97329f49f005260af54a64bcf3f8b42fad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:1f:d9:05:27:4b:b3:76:4e:af:40:c8:b4:de:
83:37:97:8f:4a:a7:66:6c:63:c0:80:de:00:42:ac:
7b:07:34:e0:db:c7:bd:2b:d7:34:cc:38:c2:a3:18:
3f:7c:07:86:ab:f9:19:70:3f:e7:02:f5:67:46:25:
e2:04:ed:47:1b:34:3c:df:3a:57:06:2c:86:39:19:
2f:40:6f:6e:39:4e:fb:0d:26:a0:8a:51:e3:c2:72:
8a:3d:bc:d6:eb:b9:33:56:f3:72:99:82:75:00:be:
e3:67:c0:c0:c1:14:57:bc:9c:7d:eb:39:6d:d2:b7:
be:e3:bd:80:47:6e:98:72:b6:cd:d8:b3:34:94:af:
8c:cb:95:57:c3:a8:38:92:16:7e:fc:00:de:8b:bb:
7f:b8:46:85:e7:c0:94:35:41:75:a9:9c:2b:c9:46:
3f:28:12:22:88:d5:77:18:99:51:2f:85:a8:09:18:
70:b3:54:e4:89:87:09:1b:f4:ea:91:32:e2:64:42:
c1:0a:77:4d:70:c1:c1:49:d0:0b:f5:9c:0e:36:a4:
bf:64:c0:26:01:1a:b2:b2:1f:49:68:ab:03:ab:73:
12:cd:38:9e:8e:22:f9:3f:d8:5f:54:9b:1d:ce:77:
8e:0e:86:e2:ad:e4:b7:38:fd:ed:01:2e:93:0b:3c:
b0:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:4E:3D:97:32:9F:49:F0:05:26:0A:F5:4A:64:BC:F3:F8:B4:2F:AD
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/uU49lzKfSfAFJgr1SmS88_i0L60.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.115.221.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:36:87:90:dd:25:fa:19:2b:88:d9:c0:a2:34:24:45:d1:3f:
6a:a7:34:84:56:fa:4c:5c:f1:d0:b1:3e:ef:2f:5d:28:fb:d8:
e8:d0:23:e2:d2:23:a4:06:cb:e4:5e:ba:c2:0c:d6:d3:9b:fb:
8e:cb:bb:ce:1e:35:49:37:2e:55:9a:b4:e7:95:cb:81:01:c6:
9a:ab:85:f1:50:73:3d:8c:be:e2:28:47:a0:a6:39:43:e2:48:
d1:6d:3a:32:e3:f0:20:03:3e:44:2b:c6:c5:83:6f:e7:6c:e3:
27:3d:df:06:8e:a9:0c:a2:cb:8d:6e:10:6b:6c:66:ac:22:a8:
8b:f8:34:2a:3f:0e:7c:bf:ce:0b:de:bc:ef:82:cd:30:8d:30:
8f:d3:9a:8d:bd:98:b2:24:51:8a:f1:ab:39:5b:f6:4f:0c:78:
bd:79:54:ff:87:5e:80:55:17:f4:a5:0f:fb:57:fe:fd:41:f5:
37:5a:49:e6:20:e4:2f:3f:37:f5:25:34:1d:9d:83:36:db:01:
f8:f8:5f:47:54:cb:45:77:eb:38:c0:5d:46:4a:bc:eb:53:96:
d5:43:84:44:dd:d6:25:f8:0f:80:5b:ad:63:8d:b2:8e:92:67:
2f:0a:df:15:c2:60:26:3b:aa:31:07:ac:47:1a:8c:2b:99:00:
fb:8f:60:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:08 2024 by rpki-client on console-fra.rpki-client.org