Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/aqIvhJOMhfDp3ZtjpPMgcgI_WmE.roa
File: aqIvhJOMhfDp3ZtjpPMgcgI_WmE.roa (raw, json)
Hash identifier: ceKt4a59CKcPzTyP3CNG+l23mPsREwV8gkmIRptEE10=
Subject key identifier: 6A:A2:2F:84:93:8C:85:F0:E9:DD:9B:63:A4:F3:20:72:02:3F:5A:61
Certificate issuer: /CN=4104a40821c4176cc42e255ef6c1727473c3f00a
Certificate serial: 01857315F44A19451FD112D51514D1A0E2DA
Authority key identifier: 41:04:A4:08:21:C4:17:6C:C4:2E:25:5E:F6:C1:72:74:73:C3:F0:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QQSkCCHEF2zELiVe9sFydHPD8Ao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/aqIvhJOMhfDp3ZtjpPMgcgI_WmE.roa
Signing time: Mon 02 Jan 2023 15:24:56 +0000
ROA not before: Mon 02 Jan 2023 15:24:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39483
IP address blocks: 82.119.82.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:15:f4:4a:19:45:1f:d1:12:d5:15:14:d1:a0:e2:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4104a40821c4176cc42e255ef6c1727473c3f00a
Validity
Not Before: Jan 2 15:24:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6aa22f84938c85f0e9dd9b63a4f32072023f5a61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:48:7e:93:74:08:e3:bd:9e:a5:bc:01:ee:62:
17:6b:6e:dd:1c:65:55:27:04:58:6c:a9:a5:59:8d:
96:95:02:1c:be:54:b4:e7:05:81:a2:1b:e8:e6:23:
44:42:a7:16:f2:48:c6:02:1e:2f:d0:42:e5:55:cf:
47:84:d3:6f:98:76:37:a2:bc:92:a0:4f:e5:8b:2f:
1b:11:a4:cb:5c:3a:78:29:04:ef:04:ad:f9:27:b3:
ee:77:c5:6c:cb:4f:77:d3:cb:b8:f0:00:8b:0f:6b:
63:b0:cc:f0:6d:ec:be:a8:f4:2c:40:f7:2c:cc:b0:
0b:09:c0:ac:f2:e8:b1:b7:34:a7:b0:5a:cd:83:bf:
ec:65:79:6f:b1:3c:d1:fb:f7:c3:88:8c:6a:2c:10:
1c:9c:f6:91:b6:de:a8:b2:50:da:17:9c:de:e9:e4:
30:9d:52:a3:dc:ee:cb:97:81:48:6f:c5:8d:61:81:
21:53:fe:88:50:1f:3b:32:0e:ab:20:30:17:15:25:
0b:06:77:06:0d:b9:d9:32:bf:dc:1f:3a:bc:19:88:
e0:b6:d0:88:12:14:05:95:82:d8:cb:8e:4a:02:83:
14:fe:b1:2d:f0:53:0d:13:3b:e2:7b:39:b9:3d:75:
c7:e9:aa:67:af:6a:48:47:df:e6:c4:76:73:55:9b:
00:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:A2:2F:84:93:8C:85:F0:E9:DD:9B:63:A4:F3:20:72:02:3F:5A:61
X509v3 Authority Key Identifier:
keyid:41:04:A4:08:21:C4:17:6C:C4:2E:25:5E:F6:C1:72:74:73:C3:F0:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QQSkCCHEF2zELiVe9sFydHPD8Ao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/aqIvhJOMhfDp3ZtjpPMgcgI_WmE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/QQSkCCHEF2zELiVe9sFydHPD8Ao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.119.82.0/24
Signature Algorithm: sha256WithRSAEncryption
d6:06:88:4e:e8:b9:5a:b7:68:09:55:09:c1:0c:21:70:43:72:
67:4b:68:8f:fd:c8:6d:a0:44:68:53:af:67:09:cf:6f:6b:fe:
8b:ca:32:e5:15:e0:e8:3e:dc:12:7e:7b:b9:02:f6:d6:52:06:
c2:33:02:86:c7:0f:d0:de:8d:a8:b9:fe:ce:72:3c:20:31:7f:
05:d8:49:00:a1:04:ef:de:32:c5:47:1c:02:1c:0a:7e:bc:a3:
51:79:06:3d:b7:79:49:c8:55:18:e8:62:86:52:97:2a:5d:f5:
75:3c:39:85:45:cb:bc:aa:b0:1b:c2:d5:4d:67:18:58:56:bb:
0b:f6:34:a7:f6:d6:89:eb:69:4c:e1:e4:36:45:7a:08:e6:19:
fb:af:88:ea:c5:85:96:eb:c9:95:bc:37:6d:ef:2c:01:e4:78:
7d:49:43:47:8f:8f:48:84:7d:62:45:e4:f8:6a:29:ad:7a:0f:
9c:40:2f:8c:66:63:48:89:79:77:3a:96:32:69:89:f9:39:13:
e2:b6:98:dc:06:60:46:32:a0:e1:82:d2:1e:a2:f3:4c:30:2a:
94:95:5d:a5:60:f5:6f:d6:72:2d:ae:36:7f:5e:fd:85:f7:25:
2a:e1:08:7e:7e:36:48:aa:dc:6e:04:5e:06:40:3b:7a:0d:3e:
f5:07:d4:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 18:00:52 2024 by rpki-client on console.sobornost.net