Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/3d3e70-3f88-4698-ba41-95e8728a2577/1/UT16fq42UhEN95rTo6xDSQKByi4.roa
File: UT16fq42UhEN95rTo6xDSQKByi4.roa (raw, json)
Hash identifier: OEzWJ8GfAQTahkJB6xchJe70gMA4OO8Y8aC5d+oHU3Y=
Subject key identifier: 51:3D:7A:7E:AE:36:52:11:0D:F7:9A:D3:A3:AC:43:49:02:81:CA:2E
Certificate issuer: /CN=78fd0b69777bd05dcdfc98942eedefbb0681282f
Certificate serial: 01857170A20EDE3F04B4B625739ECF4F6E8E
Authority key identifier: 78:FD:0B:69:77:7B:D0:5D:CD:FC:98:94:2E:ED:EF:BB:06:81:28:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eP0LaXd70F3N_JiULu3vuwaBKC8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/3d3e70-3f88-4698-ba41-95e8728a2577/1/UT16fq42UhEN95rTo6xDSQKByi4.roa
Signing time: Mon 02 Jan 2023 07:44:44 +0000
ROA not before: Mon 02 Jan 2023 07:44:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51614
IP address blocks: 83.143.176.0/21 maxlen: 21
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:70:a2:0e:de:3f:04:b4:b6:25:73:9e:cf:4f:6e:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=78fd0b69777bd05dcdfc98942eedefbb0681282f
Validity
Not Before: Jan 2 07:44:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=513d7a7eae3652110df79ad3a3ac43490281ca2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:9d:01:b8:e1:cf:72:a9:fa:49:b2:84:e6:13:
54:e1:12:39:99:fe:ee:f7:e4:05:a6:b8:9f:13:84:
4a:1d:fb:2f:ef:89:8a:7a:25:74:0e:6f:26:e7:59:
1e:ee:5f:a7:a4:e8:a5:ba:4b:0f:b7:fd:aa:f7:3a:
de:62:93:ae:13:c1:3e:44:e2:59:84:74:db:3c:c2:
3d:53:0f:cf:6d:e8:37:a7:23:dc:4c:56:ca:f0:3d:
9e:23:8e:3a:3f:fe:6f:1d:8d:6d:07:7a:4b:ab:78:
93:ba:89:bc:6e:0b:cb:c3:db:8d:58:f3:89:74:63:
89:d5:80:47:17:33:24:fc:2a:e0:e5:cc:a7:3c:6b:
d4:cf:1e:a0:e6:5a:25:ad:62:cb:dc:ae:a1:cb:cc:
6b:03:a0:6b:5d:22:6d:9d:a7:cd:78:3b:b8:f2:99:
11:35:62:5a:ac:3d:5b:a9:38:04:71:4e:bd:30:dd:
5d:fd:c1:06:dc:4e:44:e8:ba:0e:91:a2:c5:cc:bf:
6f:ba:65:1a:5d:30:1d:d6:08:bc:b5:e9:60:a6:dd:
92:01:9e:ab:06:06:d2:7e:f8:10:1c:3f:3a:24:ed:
fa:4f:96:c9:bf:c5:04:5a:98:20:30:41:e2:6b:e2:
8a:83:82:06:52:67:42:ec:06:ef:fe:81:a7:16:4f:
b5:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:3D:7A:7E:AE:36:52:11:0D:F7:9A:D3:A3:AC:43:49:02:81:CA:2E
X509v3 Authority Key Identifier:
keyid:78:FD:0B:69:77:7B:D0:5D:CD:FC:98:94:2E:ED:EF:BB:06:81:28:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eP0LaXd70F3N_JiULu3vuwaBKC8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/3d3e70-3f88-4698-ba41-95e8728a2577/1/UT16fq42UhEN95rTo6xDSQKByi4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/3d3e70-3f88-4698-ba41-95e8728a2577/1/eP0LaXd70F3N_JiULu3vuwaBKC8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.143.176.0/21
Signature Algorithm: sha256WithRSAEncryption
8b:7f:c3:d3:a2:b4:5f:bc:00:b4:7a:2d:52:85:fd:1f:f6:64:
64:e7:65:c5:70:2f:ad:bf:bb:83:39:a3:36:63:4e:a7:b5:c7:
f3:67:62:0b:5e:bc:23:2f:04:28:44:eb:04:f4:ec:fb:d6:ea:
70:15:c9:55:7c:60:51:55:1e:10:c0:29:15:e1:19:0f:08:15:
2e:1a:17:1f:77:6a:27:ab:cb:79:fe:4a:53:1a:87:fc:27:32:
ea:ae:95:60:e9:e8:c1:b9:f0:73:a4:52:be:69:ec:7c:6f:e0:
3d:1a:86:84:d4:60:1a:34:ea:8f:b0:51:04:3e:38:90:4b:d8:
a3:e6:19:da:1d:53:a3:db:65:b8:5b:8c:eb:62:30:a4:e9:a1:
48:1d:d1:ed:c6:62:82:dd:f2:4f:fb:2e:2c:6a:db:03:7e:60:
f8:70:55:46:44:50:2a:99:d1:69:52:54:7a:f7:80:d2:a8:00:
8b:03:9f:c8:cb:1d:9f:ff:91:b8:a9:7e:7e:aa:6c:70:ad:be:
1a:d4:49:26:49:8b:5a:93:fd:9a:d8:bf:33:15:99:d3:95:a8:
3f:76:95:f7:23:f8:93:a1:62:2e:21:f7:e3:94:c3:ef:d1:0a:
14:97:97:c1:c4:b1:c7:d5:a6:50:1a:69:b1:31:e6:8a:54:75:
ff:00:ec:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:03 2024 by rpki-client on console-ams.rpki-client.org