Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/d2jn3Fzu8wGYv0_8SnPR90ML_nI.roa
File: d2jn3Fzu8wGYv0_8SnPR90ML_nI.roa (raw, json)
Hash identifier: HcL9BKcSuCdnjoGJFB+hTApAZW08XnVY4EuSdvrgkhc=
Subject key identifier: 77:68:E7:DC:5C:EE:F3:01:98:BF:4F:FC:4A:73:D1:F7:43:0B:FE:72
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018DF912B3BEAD28B658262776B1B70D5EA3
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/d2jn3Fzu8wGYv0_8SnPR90ML_nI.roa
Signing time: Fri 01 Mar 2024 08:12:48 +0000
ROA not before: Fri 01 Mar 2024 08:12:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215476
IP address blocks: 83.219.97.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 11 Apr 2024 14:06:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:f9:12:b3:be:ad:28:b6:58:26:27:76:b1:b7:0d:5e:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Mar 1 08:12:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7768e7dc5ceef30198bf4ffc4a73d1f7430bfe72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:57:55:f9:16:53:a0:4f:c6:ef:f0:c5:30:a7:
57:1b:5f:76:78:8a:0d:20:31:d7:17:e9:3e:49:3d:
5a:4a:40:ce:cb:9d:ff:86:bc:ad:0d:61:6f:fa:73:
82:f4:06:ed:40:0b:05:ca:b1:e9:12:6a:8b:f6:56:
05:04:0e:96:24:03:b3:53:4e:43:bc:fc:e8:d8:4c:
58:c7:b6:34:70:c5:26:e5:41:e3:fe:dc:93:77:cd:
7b:8a:9e:9d:0a:8c:01:ac:49:16:39:22:cc:b8:7a:
44:f6:50:03:46:2b:5f:7a:dc:40:d9:7d:3a:6c:df:
bf:a7:0e:ce:2c:e7:72:0f:5d:e0:2e:1e:a7:30:d7:
12:c3:f7:07:72:c8:b8:e1:ce:ff:fb:9e:fb:11:2a:
5b:62:be:a9:af:f8:21:a5:7c:c4:6d:47:1d:b4:b4:
ee:8f:1b:84:50:69:49:56:d5:38:e3:a6:f1:7f:37:
df:fa:00:8a:66:a9:07:7c:94:d3:5d:85:74:89:bf:
12:90:d3:25:9f:64:8c:06:ab:a4:28:a0:db:ad:70:
dc:e4:72:4e:7d:da:ac:91:46:ea:ce:9e:46:00:db:
ac:19:08:a1:5c:84:ad:0d:30:a4:2f:e6:83:dd:1f:
67:a3:3e:fb:39:57:e2:40:6f:b9:60:4c:9b:8a:fe:
46:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:68:E7:DC:5C:EE:F3:01:98:BF:4F:FC:4A:73:D1:F7:43:0B:FE:72
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/d2jn3Fzu8wGYv0_8SnPR90ML_nI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.219.97.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:e3:e9:3d:19:9a:74:22:4d:02:66:9b:9f:24:4c:20:3b:f1:
d3:08:6b:d7:52:f6:a8:53:7a:28:92:fc:c5:67:17:e6:7f:4e:
90:22:98:f2:20:e5:67:33:76:42:fe:76:89:e6:37:d5:5e:0b:
3e:97:d4:df:09:e7:4e:fd:41:df:53:58:9d:63:4a:fc:4f:d6:
b3:71:65:d1:6e:a0:81:6d:dc:87:38:a2:b6:8e:6a:1d:09:66:
6d:44:d3:97:92:68:a7:46:f1:b7:76:e5:24:9e:23:fb:45:80:
ad:5c:68:cc:70:00:50:03:66:74:41:c0:25:7f:25:d1:74:22:
74:97:84:af:c6:c5:04:52:c1:11:44:15:1a:f0:76:27:55:6f:
74:24:a2:9b:aa:93:6d:4b:bf:3f:e3:b7:6f:46:df:54:1e:65:
42:3d:df:a6:40:b7:b0:38:03:94:d5:77:16:1f:8f:6e:07:ea:
b1:da:36:62:e9:71:7e:32:28:a2:f6:a0:d7:3a:bc:c2:a7:66:
b6:f6:88:9a:ae:f1:f8:84:f5:f4:95:38:78:17:e2:6f:11:10:
35:b8:15:84:1a:38:ad:2d:45:72:fe:83:51:45:b3:1f:18:51:
17:63:cd:cb:c7:6d:57:66:98:27:35:b1:59:4d:fe:af:17:bd:
a9:8f:e5:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 11 19:13:25 2024 by rpki-client on console-fra.rpki-client.org