Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/57548d-7096-45b0-8be8-00b7bf32ecf8/1/86g-8VvhX2RXI_GZ3E-WErHPzLw.roa
File: 86g-8VvhX2RXI_GZ3E-WErHPzLw.roa (raw, json)
Hash identifier: kUWxRdXkTlztJzq5dr9oPv9XAfC7Mg4zL1rfbdaWVbE=
Subject key identifier: F3:A8:3E:F1:5B:E1:5F:64:57:23:F1:99:DC:4F:96:12:B1:CF:CC:BC
Certificate issuer: /CN=ea9ff91c6b1c7a8ed02842b25c9b0d0638a90424
Certificate serial: 018CC424807C8B7F199D9EA8B9D29FA2EEC8
Authority key identifier: EA:9F:F9:1C:6B:1C:7A:8E:D0:28:42:B2:5C:9B:0D:06:38:A9:04:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6p_5HGsceo7QKEKyXJsNBjipBCQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/57548d-7096-45b0-8be8-00b7bf32ecf8/1/86g-8VvhX2RXI_GZ3E-WErHPzLw.roa
Signing time: Mon 01 Jan 2024 08:29:35 +0000
ROA not before: Mon 01 Jan 2024 08:29:35 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44934
IP address blocks: 83.138.62.0/24 maxlen: 24
2a05:5a42::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 03 Jan 2024 09:13:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:24:80:7c:8b:7f:19:9d:9e:a8:b9:d2:9f:a2:ee:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ea9ff91c6b1c7a8ed02842b25c9b0d0638a90424
Validity
Not Before: Jan 1 08:29:35 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f3a83ef15be15f645723f199dc4f9612b1cfccbc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:d6:11:05:e1:db:a6:61:6d:53:64:e6:05:89:
b8:e7:cb:3c:c3:18:9c:31:2d:bb:19:ce:fc:eb:9c:
12:d1:16:1d:d3:b5:66:16:d4:5c:a6:be:6b:3a:7d:
21:b6:56:c5:b3:04:96:93:23:11:10:65:6f:d2:93:
a1:17:27:6f:a4:63:09:71:fd:32:0a:70:7f:96:37:
79:9b:30:9f:f5:48:9c:da:bc:31:ab:e6:35:be:e7:
0f:d8:92:df:d2:35:5a:04:76:6d:2a:47:da:b7:aa:
a6:da:52:f5:f7:8b:69:2f:67:49:ce:2a:6a:36:85:
c8:1d:0b:db:20:b7:fd:7a:64:c3:fd:04:f2:0c:2d:
5f:73:70:4e:c5:91:82:06:0e:0a:66:a8:d8:41:bf:
55:8d:20:7d:32:b0:93:74:a4:c2:e7:76:6f:21:59:
e4:b3:20:f3:c2:4a:46:11:4d:af:bc:89:8f:a9:85:
73:b4:b2:44:fa:90:d7:ad:f3:7c:69:07:fb:74:56:
6f:fd:56:22:41:86:72:51:23:6b:4e:14:f4:d3:94:
c1:08:c2:85:21:19:f0:50:b9:84:03:86:60:30:1e:
83:4f:f1:41:d0:4d:53:a0:33:6f:92:7b:87:45:83:
b5:63:3f:c3:0f:97:c3:81:a5:63:5b:58:e6:aa:57:
dd:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:A8:3E:F1:5B:E1:5F:64:57:23:F1:99:DC:4F:96:12:B1:CF:CC:BC
X509v3 Authority Key Identifier:
keyid:EA:9F:F9:1C:6B:1C:7A:8E:D0:28:42:B2:5C:9B:0D:06:38:A9:04:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6p_5HGsceo7QKEKyXJsNBjipBCQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/57548d-7096-45b0-8be8-00b7bf32ecf8/1/86g-8VvhX2RXI_GZ3E-WErHPzLw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/57548d-7096-45b0-8be8-00b7bf32ecf8/1/6p_5HGsceo7QKEKyXJsNBjipBCQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.138.62.0/24
IPv6:
2a05:5a42::/32
Signature Algorithm: sha256WithRSAEncryption
3e:c0:f4:cc:d8:2f:28:fd:3d:46:2c:dc:16:c3:70:62:a1:a9:
46:74:a3:43:6e:05:7c:6c:53:ff:17:bb:b2:68:9f:b6:e9:97:
b9:01:81:68:9a:f5:15:2a:03:58:eb:76:ed:eb:75:6b:d7:cb:
62:05:e2:29:e3:c1:dc:61:9d:09:24:ad:3a:42:82:2b:bc:11:
5d:80:d8:5b:3e:7f:41:09:e5:8a:5f:bc:80:4b:03:73:7e:24:
3e:18:02:3f:97:f7:23:e1:d7:5d:ec:ed:23:25:41:d3:44:83:
bc:21:71:76:5d:5f:a3:86:89:be:db:34:3e:27:10:2e:fc:01:
44:e2:35:ff:e4:2f:20:a1:08:a9:e8:87:81:41:d4:59:50:01:
a4:fa:9a:1c:b9:ae:71:93:42:d3:0c:7d:0a:97:24:8c:44:d3:
2b:da:62:e9:83:56:a9:69:bc:5d:0d:27:71:a3:a3:09:88:5c:
0b:f1:57:1d:d0:99:74:cc:39:13:e1:b8:7e:d9:55:6f:5c:56:
6b:3a:f1:cd:b5:89:8a:d6:bb:95:2c:ff:08:72:ad:74:4f:2f:
83:35:75:4a:cf:00:46:aa:11:70:aa:f3:b3:41:91:25:5e:36:
ec:72:44:ac:84:27:c5:d2:02:30:53:ce:66:94:0a:2e:20:38:
05:c3:ce:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:55 2024 by rpki-client on console-ams.rpki-client.org