Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/96XarlLRLh7R5nL5LPEIvH6LoRc.roa
File: 96XarlLRLh7R5nL5LPEIvH6LoRc.roa (raw, json)
Hash identifier: UzORxO20K1PMG74jIbjrhhA7pFgnmFd1jLRbluP6l6s=
Subject key identifier: F7:A5:DA:AE:52:D1:2E:1E:D1:E6:72:F9:2C:F1:08:BC:7E:8B:A1:17
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 01856D8202B53BA6593032BAF949D65F7D2F
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/96XarlLRLh7R5nL5LPEIvH6LoRc.roa
Signing time: Sun 01 Jan 2023 13:25:14 +0000
ROA not before: Sun 01 Jan 2023 13:25:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201749
IP address blocks: 83.171.204.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Apr 2023 14:01:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:82:02:b5:3b:a6:59:30:32:ba:f9:49:d6:5f:7d:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jan 1 13:25:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f7a5daae52d12e1ed1e672f92cf108bc7e8ba117
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:cd:fd:52:26:d2:0e:a7:24:6d:4e:11:be:f4:
79:e9:58:8c:24:ac:52:cb:97:5c:0e:8b:46:c3:1e:
1e:52:73:6e:9a:88:87:2c:09:56:e3:e9:82:a2:5b:
d6:fe:a0:ee:87:2e:46:0c:54:fb:6b:a7:47:6e:1d:
27:3f:b4:47:e0:f0:01:37:db:c6:a2:1d:d1:2f:18:
37:e3:07:f9:74:ea:c0:e3:07:8d:e2:06:ee:9e:19:
59:29:07:fa:69:2b:73:a0:10:d2:5e:1f:d5:20:e6:
15:cc:7b:80:ae:af:7d:4f:6c:a9:46:0d:44:24:c9:
19:32:3c:c5:9a:95:7a:c5:a0:67:65:5b:c6:6a:8a:
88:f2:b0:63:97:47:51:d6:7f:4c:9c:30:72:e6:6d:
75:06:ff:d3:85:7e:db:6d:e8:ee:9f:cf:0d:0c:10:
63:12:a2:ba:c0:81:21:48:b6:86:c4:3a:b5:ca:40:
e8:3f:ab:45:38:4f:67:4b:d0:3f:8e:c1:c4:f7:f3:
93:cd:99:47:40:95:4d:55:5a:f3:47:ef:4f:3e:66:
f0:43:fb:12:42:35:4e:10:7e:42:71:f4:a2:59:f1:
0b:31:22:7f:06:a3:9e:ae:fe:72:f6:e1:f8:fe:d3:
62:22:42:de:f7:1c:5a:ea:1a:76:c3:e7:6e:5c:c2:
e6:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:A5:DA:AE:52:D1:2E:1E:D1:E6:72:F9:2C:F1:08:BC:7E:8B:A1:17
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/96XarlLRLh7R5nL5LPEIvH6LoRc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.171.204.0/22
Signature Algorithm: sha256WithRSAEncryption
a9:e8:ea:a6:f9:c5:25:66:cc:4f:40:c8:8c:e3:56:3c:a1:3a:
5e:38:d8:b7:a9:95:d4:8b:c1:48:df:ca:3f:c0:cb:7b:09:68:
60:88:b3:42:8e:dc:b4:28:db:7a:c5:07:6e:4e:f6:3c:c4:30:
9f:5e:e3:49:ed:bf:7d:04:d9:c5:64:73:3f:cf:cd:92:a4:08:
f4:0e:ea:e0:15:c7:54:95:d3:75:93:17:bd:01:7f:a9:a5:56:
75:82:59:c8:79:e7:24:5d:3f:56:45:d3:79:a5:d8:a4:35:ec:
f7:0e:c2:69:4b:6e:6a:05:f4:f2:eb:dd:16:d8:4f:af:8a:6d:
ed:fd:77:22:fe:44:dd:11:62:fe:b9:3a:7d:52:96:63:a7:4c:
af:d5:12:29:82:ee:a1:a5:f6:fc:9a:c7:64:63:5c:63:de:1e:
bd:56:9f:d9:de:eb:1b:71:06:90:c2:a8:2b:ca:35:b4:7d:56:
32:26:67:2c:e7:a0:8a:25:e4:e1:43:6e:a4:d0:a4:21:87:fc:
6a:bb:ee:88:c8:da:c1:c8:d0:ae:50:84:37:5b:be:41:dd:7a:
57:1b:74:be:de:cf:3d:c8:be:4d:27:b9:e6:0b:7c:c9:ed:ba:
5f:ac:02:6c:e8:71:bb:a9:87:34:2e:99:26:fb:97:ed:e3:a0:
f3:03:bf:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:00 2024 by rpki-client on console-fra.rpki-client.org