Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/af3d81-0047-413c-91f4-0470b4bb30db/1/6MDOtSHUyO49X3dgqSoqZN1sOMY.roa
File: 6MDOtSHUyO49X3dgqSoqZN1sOMY.roa (raw, json)
Hash identifier: JB3nmLwRz+Tryj/0RLotwJ8k+7zFMrpXO+lRUC9bCQY=
Subject key identifier: E8:C0:CE:B5:21:D4:C8:EE:3D:5F:77:60:A9:2A:2A:64:DD:6C:38:C6
Certificate issuer: /CN=f879988e0f49971a326f419e5cfacbfddcc993e7
Certificate serial: 018E569A6E3160F77BF64AF1DF6F9FF8ED0E
Authority key identifier: F8:79:98:8E:0F:49:97:1A:32:6F:41:9E:5C:FA:CB:FD:DC:C9:93:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-HmYjg9Jlxoyb0GeXPrL_dzJk-c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/af3d81-0047-413c-91f4-0470b4bb30db/1/6MDOtSHUyO49X3dgqSoqZN1sOMY.roa
Signing time: Tue 19 Mar 2024 12:05:45 +0000
ROA not before: Tue 19 Mar 2024 12:05:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 21223
IP address blocks: 83.136.208.0/22 maxlen: 22
Validation: Failed, certificate revoked on Wed 20 Mar 2024 15:59:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:56:9a:6e:31:60:f7:7b:f6:4a:f1:df:6f:9f:f8:ed:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f879988e0f49971a326f419e5cfacbfddcc993e7
Validity
Not Before: Mar 19 12:05:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e8c0ceb521d4c8ee3d5f7760a92a2a64dd6c38c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:73:ea:c5:00:43:86:cf:7f:8f:1d:2e:56:c0:
f1:b9:a1:1f:ac:3f:f8:1d:96:e2:f0:7b:73:e6:24:
cf:ef:09:e4:32:f0:18:1c:73:b4:25:2b:a5:af:e8:
6e:40:c6:b3:55:df:b9:04:da:1e:40:26:a7:a1:5f:
45:e3:e8:23:c9:a1:84:dc:2f:de:c6:a1:5f:66:d1:
a9:ca:5a:9d:41:75:e1:a6:d4:74:8c:1d:84:bc:34:
87:52:6d:82:57:f1:0a:2f:71:89:58:c4:45:a1:87:
10:99:5e:35:14:59:71:5f:b4:26:be:57:43:84:3f:
9c:f5:a5:3b:ca:59:1b:9f:2c:6c:c2:7b:21:fa:fd:
d8:5a:68:01:91:18:af:39:d6:a3:f6:cd:68:0d:da:
00:ed:a8:6f:bd:bc:b2:f9:98:ea:ee:84:a2:11:c6:
65:2b:96:81:17:af:60:1a:27:c2:bc:30:e5:d5:1d:
29:37:24:4f:36:91:4c:ec:e9:57:49:8e:0f:74:83:
8c:c9:67:fd:03:46:99:d2:6e:22:0e:37:82:d7:42:
21:ff:45:7b:1d:82:49:01:1e:e2:10:e7:6c:24:e6:
76:57:34:f6:18:80:e6:bd:ad:7c:15:84:6f:b1:b2:
49:92:8b:68:1a:2d:ca:68:39:9b:0d:34:6c:ef:4c:
dc:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:C0:CE:B5:21:D4:C8:EE:3D:5F:77:60:A9:2A:2A:64:DD:6C:38:C6
X509v3 Authority Key Identifier:
keyid:F8:79:98:8E:0F:49:97:1A:32:6F:41:9E:5C:FA:CB:FD:DC:C9:93:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-HmYjg9Jlxoyb0GeXPrL_dzJk-c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/af3d81-0047-413c-91f4-0470b4bb30db/1/6MDOtSHUyO49X3dgqSoqZN1sOMY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/af3d81-0047-413c-91f4-0470b4bb30db/1/1-HmYjg9Jlxoyb0GeXPrL_dzJk-c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.136.208.0/22
Signature Algorithm: sha256WithRSAEncryption
9f:a1:4f:e5:5d:97:8a:85:21:5d:9b:be:7a:32:b8:3a:69:71:
9c:44:13:f2:61:69:c1:b4:66:f6:12:f6:0a:19:24:51:34:65:
36:29:19:91:20:ca:e3:34:5a:82:b8:e1:56:3c:56:b2:a8:dc:
a7:32:0a:ef:df:5f:21:60:27:2d:1e:b1:93:59:25:e4:5c:32:
3f:0c:8e:f0:04:ee:cb:01:d7:2c:6c:48:bb:fd:b7:26:b4:07:
97:6e:e5:a5:12:50:b3:62:66:26:14:2e:cd:cd:c9:43:11:df:
20:03:0b:af:24:a3:fd:5d:b0:a7:88:ca:6f:d4:ee:3a:ef:76:
e9:e7:8b:f9:e1:6f:25:d8:36:30:11:47:aa:09:1d:4f:44:80:
40:f5:ee:9a:10:cc:d9:5b:04:c8:91:c7:74:a3:16:6e:c4:0e:
ab:e3:55:f7:8f:f6:c8:cb:79:a6:d6:8d:93:b1:66:2a:b2:e9:
59:ed:01:e0:94:91:a1:ee:26:86:c9:d5:40:4e:5c:fe:d0:23:
19:08:ae:ef:f6:8a:1b:88:b5:26:73:00:74:9f:c5:4f:ca:ee:
c4:f8:9e:a8:73:95:7f:f7:77:be:21:af:a4:46:36:4e:ad:b7:
69:b0:24:9a:94:24:f9:22:b9:c2:34:98:2f:90:c9:c1:f8:45:
a1:a1:5f:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 20 19:31:58 2024 by rpki-client on console-fra.rpki-client.org