Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/451550-2bb2-4937-9f52-2ff8e9d23f97/1/7opuPavnMrkQM3v6GHRiFG0YV4Y.roa
File: 7opuPavnMrkQM3v6GHRiFG0YV4Y.roa (raw, json)
Hash identifier: FuhalJcW9HG2I/GOeNIIEd3GiscHhJgnJI/I92bZ45c=
Subject key identifier: EE:8A:6E:3D:AB:E7:32:B9:10:33:7B:FA:18:74:62:14:6D:18:57:86
Certificate issuer: /CN=5b998e184d4fc4affa20509099d919a31a07947b
Certificate serial: 01857127928BF4320D2BBD47EE1ADAF250FC
Authority key identifier: 5B:99:8E:18:4D:4F:C4:AF:FA:20:50:90:99:D9:19:A3:1A:07:94:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W5mOGE1PxK_6IFCQmdkZoxoHlHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/451550-2bb2-4937-9f52-2ff8e9d23f97/1/7opuPavnMrkQM3v6GHRiFG0YV4Y.roa
Signing time: Mon 02 Jan 2023 06:24:56 +0000
ROA not before: Mon 02 Jan 2023 06:24:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29449
IP address blocks: 82.143.0.0/18 maxlen: 18
46.37.224.0/19 maxlen: 19
2001:15a8::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:27:92:8b:f4:32:0d:2b:bd:47:ee:1a:da:f2:50:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b998e184d4fc4affa20509099d919a31a07947b
Validity
Not Before: Jan 2 06:24:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ee8a6e3dabe732b910337bfa187462146d185786
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:b2:18:b5:96:60:9f:bb:e5:9a:75:03:0f:7c:
93:45:36:92:39:d0:21:bf:7f:12:31:e5:80:5e:8a:
37:1e:f8:c5:b8:57:ff:97:cd:64:a5:e1:c3:32:58:
5c:9b:c9:ca:b2:d9:80:53:93:7e:db:02:b9:3b:01:
8c:2c:09:34:3b:0c:40:00:1d:4d:2b:5c:ac:04:c2:
f3:ab:bd:79:e3:69:e9:b9:d6:66:44:22:8c:4a:a1:
f2:2e:6c:ee:3c:7c:5a:f1:b0:23:0d:fd:9b:e1:fb:
a3:4b:68:ad:a4:41:59:3c:00:9c:ee:3c:cc:3e:86:
b0:b7:3f:9d:04:84:89:70:af:7b:6d:70:c4:87:ff:
c0:1b:e7:43:55:72:47:27:cf:2e:64:10:de:14:32:
21:51:e9:80:8b:c8:99:c3:af:fe:8e:b3:2a:2d:76:
08:06:c0:14:f5:70:18:62:42:05:56:b5:ea:03:c5:
66:8f:23:b4:3f:75:56:00:45:92:3c:01:f8:48:b5:
49:ee:34:ea:40:42:98:9a:33:58:75:15:6c:43:54:
70:50:86:78:be:ae:ac:7c:cb:70:bf:83:e0:fb:97:
8a:d7:30:20:65:5d:64:83:33:88:56:0f:51:db:3a:
14:5a:d0:b2:09:df:22:30:e4:37:08:86:21:fc:fa:
73:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:8A:6E:3D:AB:E7:32:B9:10:33:7B:FA:18:74:62:14:6D:18:57:86
X509v3 Authority Key Identifier:
keyid:5B:99:8E:18:4D:4F:C4:AF:FA:20:50:90:99:D9:19:A3:1A:07:94:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W5mOGE1PxK_6IFCQmdkZoxoHlHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/451550-2bb2-4937-9f52-2ff8e9d23f97/1/7opuPavnMrkQM3v6GHRiFG0YV4Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/451550-2bb2-4937-9f52-2ff8e9d23f97/1/W5mOGE1PxK_6IFCQmdkZoxoHlHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.37.224.0/19
82.143.0.0/18
IPv6:
2001:15a8::/32
Signature Algorithm: sha256WithRSAEncryption
b8:96:6f:19:b3:c9:75:87:cd:71:0e:e0:bc:72:c1:05:8e:09:
ef:ee:05:b4:d9:a3:f1:c1:00:96:d4:58:e2:92:82:02:6f:7d:
a4:ed:ce:49:58:4b:93:44:b3:1b:62:24:3b:08:b7:fc:4f:26:
f9:7b:3d:1a:07:54:c8:a2:a0:ee:6b:0f:e8:21:cf:d4:71:36:
50:0f:94:74:80:e4:78:fd:f7:dd:3b:d3:56:c4:aa:4b:23:9b:
f9:9a:c2:58:5e:08:7b:8a:cc:7c:52:dc:a0:21:06:08:df:9c:
00:a0:5c:74:e8:e5:0c:3f:41:a6:a1:92:33:2e:b6:d3:be:5e:
d7:f5:7d:5c:3c:b3:21:fb:33:db:ce:b1:5b:be:56:3b:fe:ed:
87:ae:79:0c:c6:94:ba:d4:37:71:24:2d:5a:62:1e:77:7c:d8:
00:ee:4b:24:34:61:eb:23:78:ab:58:42:f3:e4:30:42:92:24:
bc:75:a0:e7:eb:c1:51:14:2d:7a:a1:72:07:cf:e7:7e:90:3d:
e3:1a:1a:c1:77:00:3c:25:c0:52:de:31:10:f3:13:1c:03:99:
ae:11:21:0f:2f:05:c1:7f:7c:ee:2a:35:53:3b:7b:10:3d:66:
e0:80:fa:93:35:61:8f:34:f1:39:7c:c0:08:e6:03:53:be:41:
15:2e:dc:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:59 2024 by rpki-client on console-ams.rpki-client.org