Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/57ed6a-1177-4a9d-98c5-d59e264ee83b/1/87rmr-vfe49bj7Upt2lJVBoAqVs.roa
File: 87rmr-vfe49bj7Upt2lJVBoAqVs.roa (raw, json)
Hash identifier: X1aaligi2MJgqSKr53kGh97em3heaion+960SK3IzSU=
Subject key identifier: F3:BA:E6:AF:EB:DF:7B:8F:5B:8F:B5:29:B7:69:49:54:1A:00:A9:5B
Certificate issuer: /CN=b0c5e6ae5987100664b23034cefc72d47f8f4b9b
Certificate serial: 01856BCA1326F04368D2E88F095B119ADC0D
Authority key identifier: B0:C5:E6:AE:59:87:10:06:64:B2:30:34:CE:FC:72:D4:7F:8F:4B:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sMXmrlmHEAZksjA0zvxy1H-PS5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/57ed6a-1177-4a9d-98c5-d59e264ee83b/1/87rmr-vfe49bj7Upt2lJVBoAqVs.roa
Signing time: Sun 01 Jan 2023 05:24:43 +0000
ROA not before: Sun 01 Jan 2023 05:24:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207642
IP address blocks: 83.138.58.0/24 maxlen: 24
2a0f:fe40::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:ca:13:26:f0:43:68:d2:e8:8f:09:5b:11:9a:dc:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0c5e6ae5987100664b23034cefc72d47f8f4b9b
Validity
Not Before: Jan 1 05:24:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f3bae6afebdf7b8f5b8fb529b76949541a00a95b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:7e:b7:f9:de:86:ee:be:af:84:79:5a:01:3b:
f9:1c:dd:0a:f7:b4:ca:f8:a2:b1:c7:b7:06:fb:b7:
1d:da:9f:46:f5:91:15:7c:ee:96:0f:5b:19:18:fd:
e5:99:71:bd:b3:7e:97:95:01:6e:08:1f:5a:c9:fa:
b7:34:99:2f:21:0c:9e:f8:fb:35:48:67:eb:f8:a8:
db:f1:87:d1:68:82:97:99:78:93:d8:01:18:62:2d:
94:35:11:ed:34:6f:87:37:ad:61:f2:a7:ed:a1:50:
4a:06:d6:89:04:5f:1e:e4:9b:06:18:b4:44:25:0c:
b2:29:a9:e0:11:f4:ca:a6:f5:54:91:b5:40:37:16:
ba:6e:9a:0d:c2:b9:3e:44:8f:b7:ec:1a:9c:9a:4e:
45:d5:c9:52:f0:46:91:d9:68:b9:e1:1a:f8:fb:03:
9e:4a:90:3c:b4:ae:04:18:d7:dc:b7:58:de:85:ed:
77:a0:a0:f4:79:bb:30:fe:04:83:a4:a8:ea:2b:32:
40:a2:58:80:8d:d6:0f:90:29:78:2b:a7:28:7e:c4:
f7:c4:66:dd:21:66:01:58:24:8f:cd:db:46:67:63:
fc:f1:78:c3:e6:45:69:77:9a:67:bb:c9:84:f4:2b:
0d:02:3d:3e:60:9b:29:64:98:80:fa:76:22:74:dd:
fb:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:BA:E6:AF:EB:DF:7B:8F:5B:8F:B5:29:B7:69:49:54:1A:00:A9:5B
X509v3 Authority Key Identifier:
keyid:B0:C5:E6:AE:59:87:10:06:64:B2:30:34:CE:FC:72:D4:7F:8F:4B:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sMXmrlmHEAZksjA0zvxy1H-PS5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/57ed6a-1177-4a9d-98c5-d59e264ee83b/1/87rmr-vfe49bj7Upt2lJVBoAqVs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/57ed6a-1177-4a9d-98c5-d59e264ee83b/1/sMXmrlmHEAZksjA0zvxy1H-PS5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.138.58.0/24
IPv6:
2a0f:fe40::/48
Signature Algorithm: sha256WithRSAEncryption
5d:83:e2:51:0a:f3:28:45:84:3b:62:b4:c0:80:56:c9:7b:ba:
ce:f3:1b:da:a5:85:ab:34:e9:76:32:93:cb:4d:11:e8:f0:bb:
cb:42:41:d3:4b:eb:68:1c:32:cc:0a:6a:cf:e0:a2:d0:4a:44:
d5:23:56:20:9f:4a:7b:b3:98:71:5f:f6:37:4e:09:4f:fa:e9:
9b:77:b2:79:01:12:6f:d2:90:c8:3e:04:41:66:9d:9e:95:bd:
41:2e:25:2c:a7:7b:cf:d4:59:a1:94:88:e9:3f:f2:3f:3b:f6:
8b:1a:35:eb:22:ea:3d:02:5e:41:3b:95:6a:74:7d:7e:8f:15:
23:eb:0f:e6:0d:f5:9e:d5:4a:b0:20:8b:5a:4b:d0:3b:44:7d:
f9:76:1b:4b:68:c9:e5:a8:ce:c5:d8:4d:14:95:1d:95:3c:a3:
83:a2:6e:0d:32:d7:65:34:c4:d5:f3:73:2d:bd:a8:6c:13:a1:
05:f3:a8:28:a4:84:ae:5f:bd:5f:d8:32:4f:be:7d:e8:35:00:
c2:b1:e7:fa:3a:0d:82:fd:ab:48:c9:b2:9a:9e:e0:80:2d:54:
a1:54:d3:88:93:f1:96:8d:e5:37:d1:45:e0:40:46:7c:7a:28:
58:35:13:36:9e:a8:0e:d7:f6:d0:89:5e:15:3b:64:26:d9:9d:
6a:dc:bf:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:13 2024 by rpki-client on console-ams.rpki-client.org