Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/Bcb9MxyjaHjoCXA77vsiutwXhRs.roa
File: Bcb9MxyjaHjoCXA77vsiutwXhRs.roa (raw, json)
Hash identifier: 6ii/2FoRgNNuBuivgj/ucGJ0AyMYtFOatdu5kvoI9Dc=
Subject key identifier: 05:C6:FD:33:1C:A3:68:78:E8:09:70:3B:EE:FB:22:BA:DC:17:85:1B
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018756F92BE01C665EF9FAE0B206C0DD7E35
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/Bcb9MxyjaHjoCXA77vsiutwXhRs.roa
Signing time: Thu 06 Apr 2023 14:29:42 +0000
ROA not before: Thu 06 Apr 2023 14:29:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206003
IP address blocks: 83.219.97.0/24 maxlen: 24
171.22.18.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 11 Apr 2023 14:40:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:56:f9:2b:e0:1c:66:5e:f9:fa:e0:b2:06:c0:dd:7e:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Apr 6 14:29:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=05c6fd331ca36878e809703beefb22badc17851b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:49:3c:31:57:14:43:fb:95:76:00:56:cf:17:
f7:14:b6:13:39:66:58:5e:dc:84:d2:37:50:5a:a9:
06:59:dd:3f:2c:3d:e0:15:ec:23:97:0f:ef:20:2a:
c9:7b:88:3b:de:72:cd:3a:da:f6:42:ad:e4:82:f5:
85:e7:b2:a5:d6:09:ce:f0:b0:de:7f:13:de:df:f6:
bc:a8:3e:d1:5f:54:94:40:fb:67:7e:c4:eb:36:00:
f9:80:77:72:07:e1:d1:61:4e:aa:bd:7c:d5:f0:74:
7f:1e:e0:98:4a:5b:fe:6a:0a:55:9d:d5:7e:95:12:
bd:c3:bf:0a:53:f4:25:d9:f4:11:c2:ab:01:38:e7:
81:1f:a4:1e:78:78:fd:bc:67:38:19:af:ee:6c:f4:
e0:f4:1f:f9:fd:a8:87:b1:7f:b8:97:33:f0:4e:f6:
7a:51:6b:f7:a5:26:e9:aa:e0:00:53:82:f9:b1:8e:
22:8d:2b:33:43:f2:2c:44:b7:c3:c0:05:21:43:7b:
8f:3d:49:be:eb:41:ea:20:c5:3c:a6:a8:54:49:0e:
1e:66:01:3e:4e:93:78:eb:db:57:3a:10:3c:7b:3d:
75:5c:ae:0f:f4:22:d1:53:cd:f5:a1:09:12:ad:9f:
d0:8f:89:3f:6b:5e:2b:fc:91:87:39:85:3a:00:42:
16:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:C6:FD:33:1C:A3:68:78:E8:09:70:3B:EE:FB:22:BA:DC:17:85:1B
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/Bcb9MxyjaHjoCXA77vsiutwXhRs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.219.97.0/24
171.22.18.0/24
Signature Algorithm: sha256WithRSAEncryption
82:6f:18:68:51:ec:42:b6:15:d7:4b:99:f9:82:97:b0:c2:d0:
e6:b1:e0:7f:49:dc:fa:70:72:8f:6b:bd:05:4f:21:dd:c6:06:
08:af:0e:a4:1f:06:89:34:cd:b7:e7:37:fb:dc:9c:47:78:a6:
c7:15:75:48:01:0a:06:20:ee:32:12:c2:be:ae:ea:37:a6:03:
e7:2e:8d:a0:dd:63:9b:9d:60:4b:ba:38:c9:dd:19:e1:2c:89:
4b:ca:2c:3b:6e:52:30:23:da:04:30:11:26:e8:a1:88:a6:3d:
36:88:c3:86:dd:24:a2:ed:9d:ba:04:59:3c:e4:39:38:48:9e:
95:30:a3:c7:a0:6f:64:ef:49:60:c2:00:c9:e4:b3:1e:fe:29:
b8:cc:1f:7b:85:77:d7:66:01:9f:d1:4f:1e:cb:80:41:58:09:
c6:9e:c2:b2:66:af:5e:1f:81:1b:40:7d:43:59:15:65:01:91:
4f:67:23:4c:27:0d:70:81:72:16:89:2b:dc:b5:15:cd:e4:5d:
59:e2:ff:25:f1:bf:f7:dc:20:d5:84:2f:ab:64:e4:39:9b:e8:
64:69:f1:70:9a:ae:d1:89:45:d0:bf:49:68:3b:10:db:b7:bf:
d3:8b:0a:ed:1c:71:09:8d:08:f2:7a:9c:19:d4:2b:50:e4:ef:
90:86:7f:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:01 2024 by rpki-client on console-fra.rpki-client.org