Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/57548d-7096-45b0-8be8-00b7bf32ecf8/1/J2YJgY6JXQc_TB8TVPSxjLrmxv8.roa
File: J2YJgY6JXQc_TB8TVPSxjLrmxv8.roa (raw, json)
Hash identifier: Yg+a3br9taTM2MLt/UQhlrXuLZER5pkrh+prxv3k+fU=
Subject key identifier: 27:66:09:81:8E:89:5D:07:3F:4C:1F:13:54:F4:B1:8C:BA:E6:C6:FF
Certificate issuer: /CN=ea9ff91c6b1c7a8ed02842b25c9b0d0638a90424
Certificate serial: 018570B062868901587C73757DBC8B04BBCF
Authority key identifier: EA:9F:F9:1C:6B:1C:7A:8E:D0:28:42:B2:5C:9B:0D:06:38:A9:04:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6p_5HGsceo7QKEKyXJsNBjipBCQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/57548d-7096-45b0-8be8-00b7bf32ecf8/1/J2YJgY6JXQc_TB8TVPSxjLrmxv8.roa
Signing time: Mon 02 Jan 2023 04:14:45 +0000
ROA not before: Mon 02 Jan 2023 04:14:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8943
IP address blocks: 83.138.62.0/24 maxlen: 24
2a05:5a42::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:29:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:b0:62:86:89:01:58:7c:73:75:7d:bc:8b:04:bb:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ea9ff91c6b1c7a8ed02842b25c9b0d0638a90424
Validity
Not Before: Jan 2 04:14:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=276609818e895d073f4c1f1354f4b18cbae6c6ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:8f:5f:10:4d:6a:28:cf:f9:08:fe:f6:47:f5:
2f:42:c8:8f:70:9c:a1:9c:33:b9:71:6b:de:5b:52:
c3:3a:b2:79:67:4a:9b:ff:b7:12:f0:76:61:b3:73:
93:8b:1c:2d:45:a9:f3:a8:f1:be:5e:9c:16:12:9d:
64:ab:b5:ac:d7:af:2c:63:ca:a2:b3:62:cb:19:ae:
44:69:05:52:5b:4f:31:28:11:3e:09:69:32:88:f9:
e6:19:7c:ef:e0:74:a0:c0:46:8e:b2:10:55:6d:85:
71:1b:fa:00:18:7b:bb:55:f8:22:4f:74:a0:bb:79:
31:ba:2c:43:08:33:9a:f8:e2:e8:7e:01:15:70:ee:
6e:56:4f:d7:a1:56:97:cd:f6:30:dc:63:61:3d:c5:
90:0a:ca:a6:2c:b0:ee:9b:e2:7f:29:04:02:51:f1:
31:69:8b:57:46:7a:cf:b8:d1:fd:0b:a2:4f:9e:9c:
a4:e3:72:4c:da:24:32:66:55:df:80:cf:69:18:a7:
3e:ff:df:57:cf:28:70:15:29:de:be:55:c0:7c:0c:
c4:b9:c8:4e:26:f3:f9:9c:a5:72:93:67:f3:94:d8:
93:bf:f0:e2:2f:75:30:1f:c9:34:9d:c1:45:d2:5d:
30:e5:8d:79:48:4e:d1:5d:e5:22:ed:11:6b:c4:d8:
79:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:66:09:81:8E:89:5D:07:3F:4C:1F:13:54:F4:B1:8C:BA:E6:C6:FF
X509v3 Authority Key Identifier:
keyid:EA:9F:F9:1C:6B:1C:7A:8E:D0:28:42:B2:5C:9B:0D:06:38:A9:04:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6p_5HGsceo7QKEKyXJsNBjipBCQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/57548d-7096-45b0-8be8-00b7bf32ecf8/1/J2YJgY6JXQc_TB8TVPSxjLrmxv8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/57548d-7096-45b0-8be8-00b7bf32ecf8/1/6p_5HGsceo7QKEKyXJsNBjipBCQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.138.62.0/24
IPv6:
2a05:5a42::/32
Signature Algorithm: sha256WithRSAEncryption
a3:5f:3f:ac:a1:ca:95:c0:15:f3:1f:7a:33:7f:c8:31:fa:6b:
ca:f1:0c:dc:32:76:81:ba:40:f1:8b:dc:eb:c8:26:8c:13:5b:
88:13:6c:0b:4e:cd:a7:d0:97:e7:24:d1:5f:41:e7:d3:f0:26:
53:5d:7b:c3:91:3d:2b:4f:c1:9b:9e:f8:65:fb:1b:4f:28:3e:
d8:3d:92:02:34:3e:dd:69:60:19:15:79:43:ba:92:1a:c6:0b:
85:ab:3c:6a:85:ea:68:22:d6:d8:da:31:d4:8a:a0:ab:eb:be:
ee:54:48:e1:9c:f8:3b:6c:89:28:21:5f:e1:7a:2a:77:b8:5a:
b9:7f:89:f2:72:db:a9:34:6c:49:99:b5:f3:4b:b2:0a:b6:44:
90:d2:3f:bf:9f:b2:4c:5c:7e:d7:08:60:12:a6:b0:1c:b4:83:
b5:3d:50:a8:f3:06:25:86:33:d4:19:a0:43:f4:04:21:e6:89:
01:93:9e:ef:5d:70:16:0e:48:d6:b5:88:53:e8:93:de:b9:7c:
e1:3d:87:1b:2e:e6:c7:9f:2c:59:ae:9d:b8:90:fa:22:c3:d7:
a2:09:5f:54:c7:6d:a0:cc:6e:39:c6:65:67:1d:b0:ec:ae:86:
61:62:64:fc:f7:9c:fc:6e:b9:93:8b:66:15:99:08:a2:c4:75:
10:d8:7c:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:35 2024 by rpki-client on console-fra.rpki-client.org