Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/8eda9a-d13c-4430-8cf4-57ec12e8641e/1/83UKSUxT0SqzL6W8SygdalPo98c.roa
File: 83UKSUxT0SqzL6W8SygdalPo98c.roa (raw, json)
Hash identifier: +TzFJQLVVDQMuw/kq5XfOBq/GzCIApu+RJaPpLaDMUU=
Subject key identifier: F3:75:0A:49:4C:53:D1:2A:B3:2F:A5:BC:4B:28:1D:6A:53:E8:F7:C7
Certificate issuer: /CN=a499903dab85f6a59772b3edfd4bf0e491af57c4
Certificate serial: 01856F30119A9E33DD634351B99FE67A2AF1
Authority key identifier: A4:99:90:3D:AB:85:F6:A5:97:72:B3:ED:FD:4B:F0:E4:91:AF:57:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pJmQPauF9qWXcrPt_Uvw5JGvV8Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/8eda9a-d13c-4430-8cf4-57ec12e8641e/1/83UKSUxT0SqzL6W8SygdalPo98c.roa
Signing time: Sun 01 Jan 2023 21:14:59 +0000
ROA not before: Sun 01 Jan 2023 21:14:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42873
IP address blocks: 192.129.30.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:30:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:30:11:9a:9e:33:dd:63:43:51:b9:9f:e6:7a:2a:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a499903dab85f6a59772b3edfd4bf0e491af57c4
Validity
Not Before: Jan 1 21:14:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f3750a494c53d12ab32fa5bc4b281d6a53e8f7c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:ed:a0:f9:c6:17:ad:c6:47:ab:26:74:ff:82:
30:26:9d:cc:f0:93:76:62:0b:0d:13:db:e2:22:d7:
18:3e:67:52:b2:f4:a5:4c:bd:75:91:16:d8:60:04:
3d:69:6c:2e:41:e1:89:fb:dd:c1:7e:cf:bf:c1:c1:
a4:35:22:bd:2f:1a:86:b7:04:ff:3b:f0:94:a8:47:
d0:65:c7:fd:9a:68:60:3b:b8:0c:75:d6:cf:61:1c:
f5:83:6e:46:e2:86:b7:8c:1c:34:91:19:11:45:be:
9b:77:ab:99:9d:54:98:bb:26:fe:d1:41:06:0b:50:
19:8a:11:f6:42:03:82:2d:f0:56:85:61:d1:2a:0e:
bc:79:d0:e6:c0:09:fc:84:bf:5b:ba:54:8d:c3:6e:
de:f4:72:a7:44:9b:4b:77:85:2c:25:cf:ad:05:00:
f5:88:07:80:db:a0:65:8e:ab:2a:47:ec:f9:17:3e:
bf:42:01:fd:0d:a4:2c:57:df:f8:02:67:fd:7c:cd:
87:a9:20:da:44:9e:e1:84:e4:ba:c6:e4:0b:8b:bf:
ee:30:90:eb:7c:e3:9b:da:67:38:1c:26:e4:53:12:
81:7d:6b:d5:60:4f:44:ee:39:c6:bd:b2:63:f8:de:
f2:34:bc:83:3b:5b:ea:49:2a:29:f0:5e:52:26:d9:
3c:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:75:0A:49:4C:53:D1:2A:B3:2F:A5:BC:4B:28:1D:6A:53:E8:F7:C7
X509v3 Authority Key Identifier:
keyid:A4:99:90:3D:AB:85:F6:A5:97:72:B3:ED:FD:4B:F0:E4:91:AF:57:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pJmQPauF9qWXcrPt_Uvw5JGvV8Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/8eda9a-d13c-4430-8cf4-57ec12e8641e/1/83UKSUxT0SqzL6W8SygdalPo98c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/8eda9a-d13c-4430-8cf4-57ec12e8641e/1/pJmQPauF9qWXcrPt_Uvw5JGvV8Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.129.30.0/24
Signature Algorithm: sha256WithRSAEncryption
83:7d:da:aa:69:dc:4a:eb:36:4e:86:5d:6c:7a:f3:c3:ea:4a:
1e:ce:d3:7e:02:bc:f9:10:79:44:b2:ff:46:51:eb:f4:79:65:
d1:b5:3f:00:f3:12:93:57:85:df:6f:61:d5:89:eb:ce:bd:6c:
42:2b:0d:26:ac:45:e1:0e:a9:6c:57:7f:21:53:82:a9:24:fe:
19:23:fc:81:ab:ab:2b:55:3a:4e:c2:0b:90:31:2e:ea:ec:1d:
b5:da:f6:7f:1a:83:7e:53:89:27:0e:30:d5:94:8d:67:cc:36:
c9:f1:2b:5e:89:b3:60:fa:e6:06:79:1b:0a:1f:5b:da:a5:64:
d9:57:81:42:c5:36:23:ee:ae:24:92:26:d0:5e:77:76:0f:7a:
f8:86:1d:1e:6c:47:b9:a5:e2:f6:64:a2:48:cc:f1:65:54:47:
85:e6:f5:86:b6:4a:bd:57:8a:75:43:ce:4b:19:25:21:2b:fd:
83:95:d8:65:c1:6b:fa:22:80:1e:9d:10:70:53:f6:77:3f:64:
c9:33:48:4d:5a:07:5c:ba:67:d9:7f:d3:1c:67:9c:7f:42:b2:
78:3a:8d:f2:dc:50:1a:bf:f9:71:02:f1:7a:a2:32:e7:12:b6:
fb:e8:83:0b:a8:70:3b:59:2c:7c:5e:ba:b7:e9:b6:6a:db:1a:
9d:c5:94:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:45 2024 by rpki-client on console-ams.rpki-client.org