Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/af3d81-0047-413c-91f4-0470b4bb30db/1/U2VXYbvDzhF0ccmSpTwK6fzWyH8.roa
File: U2VXYbvDzhF0ccmSpTwK6fzWyH8.roa (raw, json)
Hash identifier: WJc0OmwZgf5DdqutH/CoJacjEeWABhwFAIIyU/p7zsQ=
Subject key identifier: 53:65:57:61:BB:C3:CE:11:74:71:C9:92:A5:3C:0A:E9:FC:D6:C8:7F
Certificate issuer: /CN=f879988e0f49971a326f419e5cfacbfddcc993e7
Certificate serial: 0190FD4F81E977B3096A7B8576B56842A11C
Authority key identifier: F8:79:98:8E:0F:49:97:1A:32:6F:41:9E:5C:FA:CB:FD:DC:C9:93:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-HmYjg9Jlxoyb0GeXPrL_dzJk-c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/af3d81-0047-413c-91f4-0470b4bb30db/1/U2VXYbvDzhF0ccmSpTwK6fzWyH8.roa
Signing time: Mon 29 Jul 2024 07:06:04 +0000
ROA not before: Mon 29 Jul 2024 07:06:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 83.136.213.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 30 Jul 2024 14:10:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:fd:4f:81:e9:77:b3:09:6a:7b:85:76:b5:68:42:a1:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f879988e0f49971a326f419e5cfacbfddcc993e7
Validity
Not Before: Jul 29 07:06:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=53655761bbc3ce117471c992a53c0ae9fcd6c87f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:16:61:ef:84:e1:d4:e1:76:f2:8b:d4:2a:34:
2e:38:5c:ca:c4:79:79:65:a5:ff:6b:cd:36:c3:2a:
39:aa:01:d1:3b:3c:1d:d5:eb:75:8f:15:2b:fe:d5:
b5:ed:98:2a:41:74:3a:84:bf:c3:33:43:d9:5d:76:
2e:e1:0d:5f:c8:04:69:0c:38:ab:f7:e3:91:16:3a:
57:c9:ea:77:89:22:9a:d6:19:87:d1:26:9b:da:1b:
90:59:a2:bd:63:28:bf:f8:5c:80:82:1c:d2:78:f2:
50:f7:87:c6:3b:b0:73:0c:a1:0d:da:23:c9:2d:b8:
92:44:3f:00:82:80:86:ec:2f:92:21:3d:bf:84:85:
29:12:57:bb:45:ff:d7:a6:63:86:cf:52:86:dc:ae:
47:a6:c3:3d:d0:95:46:99:25:f2:0b:30:44:00:e2:
e9:87:37:52:d2:d6:bf:52:66:6c:75:51:64:4a:2f:
32:52:70:e9:3c:53:c7:10:57:2b:c7:da:54:c2:cc:
b8:33:d6:a8:89:6b:5e:99:af:21:20:83:f8:db:38:
2a:57:8c:4a:28:81:a6:fe:30:c5:a7:da:c7:78:29:
19:fe:c4:01:18:d2:24:08:a9:f2:9c:31:47:ee:06:
8c:bb:bd:c9:c1:1e:9f:6f:fc:06:75:ec:5b:0e:7a:
5f:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:65:57:61:BB:C3:CE:11:74:71:C9:92:A5:3C:0A:E9:FC:D6:C8:7F
X509v3 Authority Key Identifier:
keyid:F8:79:98:8E:0F:49:97:1A:32:6F:41:9E:5C:FA:CB:FD:DC:C9:93:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-HmYjg9Jlxoyb0GeXPrL_dzJk-c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/af3d81-0047-413c-91f4-0470b4bb30db/1/U2VXYbvDzhF0ccmSpTwK6fzWyH8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/af3d81-0047-413c-91f4-0470b4bb30db/1/1-HmYjg9Jlxoyb0GeXPrL_dzJk-c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.136.213.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:98:89:3c:e6:a4:06:cc:5b:6e:c1:7c:14:31:70:80:e3:62:
69:97:82:40:7b:cf:bf:4e:4f:37:83:13:06:15:43:b6:8e:7a:
5a:26:62:4d:47:17:14:d7:f3:aa:3c:a1:f9:9b:74:a6:28:53:
05:a1:7e:51:ba:c8:87:1f:fd:d8:09:61:12:d9:ae:dd:91:6a:
e7:0f:e4:f8:ba:62:8b:cf:87:80:4a:8a:f1:2a:af:93:37:f7:
d2:a2:d5:66:cc:2a:62:e3:6d:d2:db:63:29:1a:3a:6d:b8:40:
dc:0e:87:b1:b5:7d:8c:bc:e1:aa:59:7c:b5:f8:0d:3c:da:bb:
6e:6a:e2:f1:d3:6a:1e:b2:95:f1:12:ff:3b:3e:78:ab:86:af:
89:dc:c6:90:ce:ca:a1:bb:e0:14:17:1f:2f:a4:e4:fc:c8:ab:
89:26:95:b6:6e:6d:1f:f6:ac:62:d4:42:e5:a6:33:e0:6c:f6:
bd:96:48:30:cb:77:c5:01:a6:3a:45:9d:13:33:02:a9:35:85:
17:ad:04:00:77:fc:78:7c:03:e1:ff:8d:48:57:4e:54:9e:e9:
6a:5e:c0:e6:20:54:88:c0:2e:3e:34:34:5d:b9:d7:50:1e:65:
ff:fe:23:3e:0e:78:ba:07:d9:50:f7:df:cb:bf:c2:ee:ad:31:
35:f7:4c:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 30 18:12:30 2024 by rpki-client on console-fra.rpki-client.org