Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/f5593d-689c-4dfe-8d96-2dd7890dc689/1/Y3AOkTuRw3yUH0RYOcPsGpkgNxM.roa
File: Y3AOkTuRw3yUH0RYOcPsGpkgNxM.roa (raw, json)
Hash identifier: kfMsLAZWv5GrVedUDIny9D6WWqxKDmMrX7jDnzk2boo=
Subject key identifier: 63:70:0E:91:3B:91:C3:7C:94:1F:44:58:39:C3:EC:1A:99:20:37:13
Certificate issuer: /CN=8b82433ffe94bf3536fec327543d396158202072
Certificate serial: 0193DF0013627B53898060F488B1A0C29E29
Authority key identifier: 8B:82:43:3F:FE:94:BF:35:36:FE:C3:27:54:3D:39:61:58:20:20:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i4JDP_6UvzU2_sMnVD05YVggIHI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/f5593d-689c-4dfe-8d96-2dd7890dc689/1/Y3AOkTuRw3yUH0RYOcPsGpkgNxM.roa
Signing time: Thu 19 Dec 2024 12:59:03 +0000
ROA not before: Thu 19 Dec 2024 12:59:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57456
IP address blocks: 83.217.220.0/22 maxlen: 22
Validation: Failed, certificate revoked on Fri 20 Dec 2024 09:37:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:df:00:13:62:7b:53:89:80:60:f4:88:b1:a0:c2:9e:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b82433ffe94bf3536fec327543d396158202072
Validity
Not Before: Dec 19 12:59:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=63700e913b91c37c941f445839c3ec1a99203713
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:db:e9:b1:73:22:0e:09:97:7c:02:cb:11:d4:
e4:9f:54:a5:94:fd:0e:8b:4f:d1:ae:b7:7a:a7:de:
15:4d:4a:08:c7:f6:b9:e4:bc:4d:4c:87:01:ba:e7:
8a:7e:39:b8:eb:3e:37:e7:5a:3e:ae:4a:ce:f1:9c:
80:5e:1f:cc:4b:e8:c1:39:15:2c:a2:91:92:ac:c8:
15:96:0f:5d:c1:44:b3:38:20:cb:0e:6b:3c:06:57:
ba:27:26:74:09:8b:3a:d2:3a:62:7e:fa:b4:a0:1c:
72:6c:55:4c:14:47:72:f0:0c:28:d2:48:2d:5c:70:
28:97:29:9a:33:7e:33:2c:f9:3e:1a:af:e2:2b:ec:
87:32:f5:5b:f5:57:4e:ab:4d:83:7b:9c:23:1a:cf:
02:cd:d4:53:fd:22:5f:f9:39:2d:b4:92:cc:c4:53:
3d:7e:6e:ae:8e:3f:e3:69:1b:2b:16:b3:1e:ff:06:
ec:fa:df:46:99:a9:29:7d:74:38:83:50:c8:10:17:
05:8c:bc:10:c7:0b:91:a3:48:04:52:fc:3a:b0:1f:
60:4b:ab:63:d1:0a:63:6f:63:18:9a:b2:50:ad:a6:
f5:a9:d0:c8:c5:4e:a9:a3:ad:96:c5:9e:14:d6:bf:
5d:23:ed:39:5a:2c:22:ba:8e:6c:69:84:d6:07:d0:
ff:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:70:0E:91:3B:91:C3:7C:94:1F:44:58:39:C3:EC:1A:99:20:37:13
X509v3 Authority Key Identifier:
keyid:8B:82:43:3F:FE:94:BF:35:36:FE:C3:27:54:3D:39:61:58:20:20:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i4JDP_6UvzU2_sMnVD05YVggIHI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/f5593d-689c-4dfe-8d96-2dd7890dc689/1/Y3AOkTuRw3yUH0RYOcPsGpkgNxM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/f5593d-689c-4dfe-8d96-2dd7890dc689/1/i4JDP_6UvzU2_sMnVD05YVggIHI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.217.220.0/22
Signature Algorithm: sha256WithRSAEncryption
2a:bb:a5:37:c9:28:1d:05:ba:b9:e0:c9:a5:cc:cf:4b:4b:43:
4c:11:f1:2c:59:1e:da:c7:e4:96:39:ef:60:85:8e:fd:2f:77:
19:be:f4:ed:5e:80:aa:f0:bd:c7:61:64:ca:d5:f7:d0:39:ad:
37:5a:d4:8e:4e:28:6a:74:5f:de:da:69:cd:35:b9:de:aa:93:
b0:39:5f:83:59:7c:56:cb:bb:bb:39:b8:99:de:d9:43:49:c5:
df:91:89:cc:b0:00:2c:ce:c6:cc:aa:be:84:44:5f:bd:56:51:
05:60:05:ac:a5:3f:51:22:1a:e6:88:63:25:74:76:f5:f8:e8:
b5:57:95:a2:5f:59:fc:be:ed:72:19:e7:c6:93:d5:7e:30:04:
f9:00:fa:16:53:9f:29:5d:47:8c:7e:bc:4c:eb:b5:ee:17:04:
ba:8d:5e:8d:2c:65:93:38:3e:3b:02:b0:7c:f5:a8:4e:52:f9:
f4:e8:7f:92:2f:66:14:36:2d:65:00:15:29:c3:34:ac:81:7f:
d6:85:aa:40:86:5f:1b:42:06:2b:16:64:d0:d0:4f:78:99:5d:
79:f2:86:34:9c:03:b9:25:4d:53:cc:e4:af:16:f5:b7:de:fc:
31:2c:a5:09:fa:8a:06:39:21:2c:f9:d0:78:9a:6c:3b:60:62:
8b:34:fc:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 14:03:27 2025 by rpki-client