Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/ee8b98-7240-4b62-acc5-780a25cd0dd9/1/J14UI7Ng9Ssgo9XgPbDxVaEqvuA.roa
File: J14UI7Ng9Ssgo9XgPbDxVaEqvuA.roa (raw, json)
Hash identifier: WsFFqQ3GcU5kZEqeN0FzRWKIZX+ZJ8JWrNcSSNFSQ5I=
Subject key identifier: 27:5E:14:23:B3:60:F5:2B:20:A3:D5:E0:3D:B0:F1:55:A1:2A:BE:E0
Certificate issuer: /CN=4d5a2921fbeb8a448e7ae1ec5a11b8ab898d22fd
Certificate serial: 0187B7DACEFD15CDB7762B0ECAA9442F2ECD
Authority key identifier: 4D:5A:29:21:FB:EB:8A:44:8E:7A:E1:EC:5A:11:B8:AB:89:8D:22:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TVopIfvrikSOeuHsWhG4q4mNIv0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/ee8b98-7240-4b62-acc5-780a25cd0dd9/1/J14UI7Ng9Ssgo9XgPbDxVaEqvuA.roa
Signing time: Tue 25 Apr 2023 09:59:42 +0000
ROA not before: Tue 25 Apr 2023 09:59:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44568
IP address blocks: 83.217.252.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:b7:da:ce:fd:15:cd:b7:76:2b:0e:ca:a9:44:2f:2e:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d5a2921fbeb8a448e7ae1ec5a11b8ab898d22fd
Validity
Not Before: Apr 25 09:59:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=275e1423b360f52b20a3d5e03db0f155a12abee0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:03:8a:db:79:c0:d0:8b:2f:41:f5:6a:56:56:
e0:5d:96:6d:c1:07:52:11:6a:9b:b4:23:15:fe:58:
9b:d5:67:e8:54:62:e6:6d:82:d1:65:21:44:ad:2c:
8c:9b:8c:79:06:c0:30:cd:d7:c8:2e:7d:70:df:59:
57:88:bf:6f:89:e7:2c:ba:c5:9f:39:bf:4e:69:9d:
02:e1:cb:bd:e2:66:d0:85:f6:e1:4e:86:0f:f4:1c:
a8:5c:ac:eb:db:3a:bf:8c:b6:39:56:7a:40:80:a0:
77:bb:63:10:84:db:e6:9d:25:0f:7e:3d:23:af:09:
39:06:73:f9:58:c2:a1:8b:86:66:da:17:36:52:d5:
ec:0b:95:92:39:30:e0:21:ea:e9:e9:eb:ce:51:7a:
ca:27:ec:a3:b0:b5:d6:3b:b8:e6:c2:54:6d:40:e1:
9c:ca:72:40:90:5a:5d:3c:04:a7:17:90:88:93:7b:
9d:ea:7e:b1:08:ba:3f:63:4a:3a:db:4c:1d:06:fd:
16:16:67:13:a4:70:50:a5:f3:47:b5:7c:e4:0a:f3:
9b:6d:19:48:31:e6:aa:76:30:62:b4:dd:69:72:9b:
94:6b:04:c0:fd:f4:7a:3c:76:4b:e6:35:97:4c:73:
a2:6c:36:90:cc:e6:04:60:20:0b:9a:8c:2a:e3:4c:
d8:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:5E:14:23:B3:60:F5:2B:20:A3:D5:E0:3D:B0:F1:55:A1:2A:BE:E0
X509v3 Authority Key Identifier:
keyid:4D:5A:29:21:FB:EB:8A:44:8E:7A:E1:EC:5A:11:B8:AB:89:8D:22:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TVopIfvrikSOeuHsWhG4q4mNIv0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/ee8b98-7240-4b62-acc5-780a25cd0dd9/1/J14UI7Ng9Ssgo9XgPbDxVaEqvuA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/ee8b98-7240-4b62-acc5-780a25cd0dd9/1/TVopIfvrikSOeuHsWhG4q4mNIv0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.217.252.0/22
Signature Algorithm: sha256WithRSAEncryption
64:1d:27:b4:2f:5c:c3:15:72:5b:d4:b0:d8:75:1c:3b:54:8c:
45:35:5c:8d:30:41:5b:b5:5c:78:5d:6b:02:56:76:b6:dd:8f:
68:13:18:4f:88:65:6b:b4:ba:c4:9d:7d:83:7d:67:22:01:b3:
74:dc:87:be:8d:c6:a9:62:39:d0:a8:a7:09:e8:33:e9:92:e2:
f3:96:05:0b:60:3e:f7:2e:c2:ff:fa:b9:67:4e:57:00:e7:4a:
9d:ab:2c:8c:ea:86:f7:5b:97:f1:23:cc:3f:c2:c6:e4:ed:94:
60:7c:60:43:1d:5a:63:5b:a8:32:f8:48:e2:ee:f3:59:f4:91:
61:d2:0c:3e:1b:cd:df:7f:5a:2d:67:3a:6a:3b:98:6b:3b:02:
24:1f:21:7d:9d:f5:40:64:4a:4d:4e:58:84:2e:71:98:2b:69:
00:d4:2a:ca:75:f8:04:d1:61:bb:fa:79:a5:37:0a:db:7e:9c:
43:ad:2a:81:e7:78:a5:0a:d3:27:83:ee:cc:57:d7:3c:e6:e1:
34:14:f4:43:92:3e:db:96:88:27:33:db:0c:b5:f9:55:f7:92:
82:05:ee:86:53:b8:97:a9:e1:71:d0:32:99:c5:b2:24:9a:b2:
4c:df:e5:6f:49:97:b1:27:a0:a7:98:92:59:31:b0:d0:a1:18:
7f:a1:8b:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:50:03 2024 by rpki-client on console-ams.rpki-client.org