Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/g9dOFJwfYSLhZKXchWH_sa9ZWSw.roa
File: g9dOFJwfYSLhZKXchWH_sa9ZWSw.roa (raw, json)
Hash identifier: ORWyBA6E0wTh1ys9jKbkydJAjxAhXIFg8WEmw9T8ug8=
Subject key identifier: 83:D7:4E:14:9C:1F:61:22:E1:64:A5:DC:85:61:FF:B1:AF:59:59:2C
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018756F92B0B99449583CE6F33910AD10E81
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/g9dOFJwfYSLhZKXchWH_sa9ZWSw.roa
Signing time: Thu 06 Apr 2023 14:29:42 +0000
ROA not before: Thu 06 Apr 2023 14:29:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61302
IP address blocks: 83.219.97.0/24 maxlen: 24
171.22.18.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 11 Apr 2023 14:40:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:56:f9:2b:0b:99:44:95:83:ce:6f:33:91:0a:d1:0e:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Apr 6 14:29:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=83d74e149c1f6122e164a5dc8561ffb1af59592c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:fd:b0:4d:db:be:35:ec:9b:78:15:00:b2:1d:
81:b1:43:99:4a:63:0d:7b:ee:92:d1:64:2a:2f:27:
f5:b7:ba:55:30:eb:63:85:ab:b0:9f:85:99:75:51:
a3:6a:2a:6f:3f:21:77:df:c2:0b:db:e3:29:0e:f9:
05:41:7d:86:49:e3:44:bd:6e:7b:5e:47:60:0e:7f:
2e:ca:b7:03:8e:e8:af:6d:7c:b5:a4:4a:9b:cb:c3:
12:4f:33:23:ac:cf:d3:76:eb:21:c6:a8:de:e1:16:
19:33:30:f1:70:f6:6d:43:af:85:3f:30:5a:9e:2f:
c1:88:46:e6:b1:f9:fc:5e:9b:b9:ab:5c:9e:09:00:
e1:63:59:c4:ba:df:bb:36:da:9d:5d:2b:92:17:0c:
c2:a4:b6:1d:02:1e:54:55:8c:8d:9a:3d:e4:ca:9c:
8f:5e:e6:f6:db:54:63:d2:d4:4c:e6:76:a0:e6:7c:
bd:9a:87:17:f9:c5:f3:fb:1c:d9:8b:a2:ab:0f:7e:
91:9f:22:3a:25:c6:72:ca:e9:40:e0:0e:51:fe:89:
d2:ba:38:7e:76:d0:49:e6:9d:1e:44:b7:00:16:ac:
8f:06:13:e3:71:b9:a4:69:75:4b:1a:85:01:2b:54:
c2:b1:7b:de:a9:58:44:88:fe:63:27:7e:67:6c:65:
08:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:D7:4E:14:9C:1F:61:22:E1:64:A5:DC:85:61:FF:B1:AF:59:59:2C
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/g9dOFJwfYSLhZKXchWH_sa9ZWSw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.219.97.0/24
171.22.18.0/24
Signature Algorithm: sha256WithRSAEncryption
82:13:f4:de:36:46:12:7c:55:b6:fd:02:f3:90:bd:66:16:ed:
a2:dd:69:2b:2c:bc:4b:4d:04:c2:7d:77:7a:f4:4f:05:bc:d4:
79:22:ca:77:3f:8d:e1:9c:b8:ed:69:60:df:c7:2a:b6:1e:6a:
6c:e3:4c:89:16:82:c7:bd:a5:a9:4a:2c:40:b9:b2:c8:6c:66:
af:b5:dd:39:e1:17:83:54:da:cc:1e:c7:3b:65:60:f9:48:12:
b4:db:d2:f3:ff:b5:c2:33:34:ec:7e:d8:5d:69:c8:9d:8f:01:
21:32:9d:d3:10:7b:15:eb:d1:cb:87:c9:f3:9e:84:3e:f6:5b:
dd:45:fd:66:be:47:3a:0b:fa:d6:42:e2:3d:94:3e:40:0a:c5:
79:01:f3:e6:eb:b0:65:25:f9:03:03:2c:93:79:aa:ba:36:d2:
33:53:1c:31:a6:ec:a8:c9:f2:7f:97:e1:1c:01:bb:35:fd:96:
46:5c:4b:29:3c:79:3c:82:8c:30:c4:64:ce:ee:1a:61:94:c3:
3b:42:8e:41:5b:8a:d4:b5:28:dd:dc:b9:6d:74:28:5b:c3:15:
0f:8e:29:14:63:ae:d2:30:9e:d8:1a:da:2a:e0:68:41:7c:31:
eb:45:94:2c:f0:df:2d:d5:13:05:ad:cd:52:97:70:4a:e4:26:
f1:09:7c:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:16 2024 by rpki-client on console-fra.rpki-client.org