Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/af3d81-0047-413c-91f4-0470b4bb30db/1/6CTJeRw1JSWH8bP09Y0jZWYnbVc.roa
File: 6CTJeRw1JSWH8bP09Y0jZWYnbVc.roa (raw, json)
Hash identifier: nfr1ExnGZckjbro/n7GK92C99epoIPfMFz+ntXEWXk0=
Subject key identifier: E8:24:C9:79:1C:35:25:25:87:F1:B3:F4:F5:8D:23:65:66:27:6D:57
Certificate issuer: /CN=f879988e0f49971a326f419e5cfacbfddcc993e7
Certificate serial: 018CE93E4290BCE9690FB21CA55BD778C53D
Authority key identifier: F8:79:98:8E:0F:49:97:1A:32:6F:41:9E:5C:FA:CB:FD:DC:C9:93:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-HmYjg9Jlxoyb0GeXPrL_dzJk-c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/af3d81-0047-413c-91f4-0470b4bb30db/1/6CTJeRw1JSWH8bP09Y0jZWYnbVc.roa
Signing time: Mon 08 Jan 2024 13:23:40 +0000
ROA not before: Mon 08 Jan 2024 13:23:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 21859
IP address blocks: 83.136.212.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 12 Feb 2024 08:29:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:e9:3e:42:90:bc:e9:69:0f:b2:1c:a5:5b:d7:78:c5:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f879988e0f49971a326f419e5cfacbfddcc993e7
Validity
Not Before: Jan 8 13:23:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e824c9791c35252587f1b3f4f58d236566276d57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:04:0e:67:2d:c4:d0:bc:06:b3:44:a2:df:c0:
c6:a0:9c:05:62:20:a9:6d:70:0e:1b:28:a8:91:6f:
d0:86:5c:47:82:48:0b:2f:65:32:df:dc:ea:bf:ae:
f6:2a:d1:ea:74:7e:6c:c7:6b:bf:de:f6:9b:4b:a9:
7c:78:b3:a6:ed:32:66:30:b9:96:0a:b1:cc:21:b1:
52:39:05:a6:e3:f2:1c:0b:cf:17:9f:a7:5f:84:35:
53:44:39:85:7e:88:9e:49:8b:59:33:96:d2:c5:b1:
6d:a1:d6:79:72:a5:79:4b:62:36:fe:37:02:1c:bc:
0a:a1:64:61:4e:5d:e8:37:ab:a2:0d:3e:8e:c5:3b:
c2:19:e1:a9:23:09:95:a9:00:dd:94:a3:f1:66:ce:
50:0b:77:d1:7c:4e:08:82:71:a7:cf:bf:3e:1f:ab:
07:25:ef:da:37:12:7d:3d:e6:41:5f:d6:46:09:92:
0b:b2:97:93:b7:fc:4e:4c:1f:59:d1:20:3d:6e:18:
02:f1:03:30:07:3c:e6:82:91:33:ba:03:00:ed:15:
c9:1c:12:43:94:70:54:01:e3:44:c5:0e:d3:cb:46:
0f:4a:16:02:54:a7:ec:da:50:76:79:fd:ca:d9:dd:
3a:58:fa:ff:a7:df:52:bb:49:f0:cb:c3:24:26:f8:
49:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:24:C9:79:1C:35:25:25:87:F1:B3:F4:F5:8D:23:65:66:27:6D:57
X509v3 Authority Key Identifier:
keyid:F8:79:98:8E:0F:49:97:1A:32:6F:41:9E:5C:FA:CB:FD:DC:C9:93:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-HmYjg9Jlxoyb0GeXPrL_dzJk-c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/af3d81-0047-413c-91f4-0470b4bb30db/1/6CTJeRw1JSWH8bP09Y0jZWYnbVc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/af3d81-0047-413c-91f4-0470b4bb30db/1/1-HmYjg9Jlxoyb0GeXPrL_dzJk-c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.136.212.0/23
Signature Algorithm: sha256WithRSAEncryption
71:43:9f:ac:36:bc:43:cd:09:97:66:ff:06:7b:3e:36:36:33:
bd:80:8e:35:ab:ee:e4:72:d0:b0:1f:dd:53:4b:66:6b:d2:cf:
ed:14:c5:fb:22:bf:67:fe:c3:73:a7:63:44:0d:88:1d:c7:03:
af:29:f4:01:2d:24:9d:40:1c:7b:96:5e:4f:c4:2d:97:5a:71:
06:8e:0b:7d:ad:1c:c7:f8:0f:01:de:35:9b:1c:0b:a8:ac:39:
ab:4d:45:af:06:5e:84:5d:72:38:9a:d1:fe:41:a7:0c:16:4a:
c7:28:23:5d:09:8b:f8:72:fc:f4:b6:87:fb:62:f5:8a:48:7e:
f8:a9:99:3e:d3:22:de:61:68:d9:df:be:db:7b:1c:b1:6b:73:
5d:f7:9a:75:f9:ed:bd:db:a9:35:31:38:51:60:ad:f0:52:7b:
94:14:2d:3e:fc:18:11:45:52:21:17:a7:01:24:0e:2a:38:4d:
09:a6:14:dc:c5:73:22:c3:5e:26:43:e6:5a:d0:a4:79:d8:d4:
f3:3a:56:71:e7:ac:96:f8:1f:1f:69:7c:49:a2:86:2a:bd:b9:
0d:56:3e:70:1a:2e:75:2a:17:da:2b:b0:3a:ba:8b:91:e2:76:
5e:7d:3d:28:f6:60:92:eb:61:d7:bf:6d:c6:6c:e6:59:60:76:
81:85:64:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 12 12:06:07 2024 by rpki-client on console-fra.rpki-client.org