Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/9DFOJ676bG1EFwj86PF7g-ihP0M.roa
File: 9DFOJ676bG1EFwj86PF7g-ihP0M.roa (raw, json)
Hash identifier: N2M9XyVq6bv3OArC/MdzolgoxsZTYrw2IfEZNlaFq4g=
Subject key identifier: F4:31:4E:27:AE:FA:6C:6D:44:17:08:FC:E8:F1:7B:83:E8:A1:3F:43
Certificate issuer: /CN=e2a10de6ffae590427244a03343db66ac564275a
Certificate serial: 01856DE6389226A0BE264C48E7A23304C59D
Authority key identifier: E2:A1:0D:E6:FF:AE:59:04:27:24:4A:03:34:3D:B6:6A:C5:64:27:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4qEN5v-uWQQnJEoDND22asVkJ1o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/9DFOJ676bG1EFwj86PF7g-ihP0M.roa
Signing time: Sun 01 Jan 2023 15:14:42 +0000
ROA not before: Sun 01 Jan 2023 15:14:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212498
IP address blocks: 83.97.37.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:e6:38:92:26:a0:be:26:4c:48:e7:a2:33:04:c5:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2a10de6ffae590427244a03343db66ac564275a
Validity
Not Before: Jan 1 15:14:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f4314e27aefa6c6d441708fce8f17b83e8a13f43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:0b:26:cd:3d:ec:49:41:e8:7b:2d:4b:6b:a3:
9f:ff:42:e3:35:98:13:c7:d0:88:c7:3c:84:bc:8d:
59:d8:8e:79:5d:29:5b:ef:65:22:64:28:f8:50:d4:
5e:e2:a6:8e:6e:97:1b:d7:8f:e7:f3:57:05:a9:8f:
c9:1a:99:8b:02:40:b6:63:57:ba:8f:55:e5:4c:da:
10:67:8c:29:62:8e:3e:92:22:11:59:64:31:83:ca:
bc:e2:98:35:8f:e3:98:4f:b0:86:f5:1d:da:2a:28:
68:98:a9:40:4d:b6:e7:4d:16:ad:4b:3a:ac:b6:a5:
68:27:18:b3:b0:5c:39:25:d9:57:8b:72:cf:f0:57:
39:53:23:02:fb:51:71:b8:d2:fe:e4:4e:f7:2b:df:
5b:bb:e8:7b:a9:31:02:44:c4:d1:38:e8:80:9f:d2:
87:64:d9:58:c0:d0:e5:06:5e:44:c3:e2:a2:3d:92:
fd:4d:75:49:38:ab:95:b9:65:f2:13:92:ea:12:cc:
e0:7c:68:69:67:63:7c:1d:6d:3a:67:79:ae:13:1d:
96:a7:2b:a8:eb:db:53:c3:cf:c3:84:3a:fa:6c:40:
4c:57:6c:0d:9b:56:2a:e6:85:c5:cf:ea:e4:c6:c9:
43:97:15:dd:f5:8c:c7:0d:08:9a:d9:41:d5:d1:6e:
d7:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:31:4E:27:AE:FA:6C:6D:44:17:08:FC:E8:F1:7B:83:E8:A1:3F:43
X509v3 Authority Key Identifier:
keyid:E2:A1:0D:E6:FF:AE:59:04:27:24:4A:03:34:3D:B6:6A:C5:64:27:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4qEN5v-uWQQnJEoDND22asVkJ1o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/9DFOJ676bG1EFwj86PF7g-ihP0M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.97.37.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:3e:40:4b:d1:29:d1:2b:d6:9c:46:fc:1c:44:93:57:39:fb:
d6:b5:22:26:17:0a:86:48:0b:97:f5:5b:e1:fd:4d:12:4c:f8:
49:84:63:63:ca:c7:bd:9f:3a:90:d5:6a:29:74:ab:fc:a1:77:
90:01:ed:50:cc:90:3e:7b:59:54:cc:dc:ef:b0:45:ae:23:eb:
dd:4a:df:df:09:e6:75:06:84:64:2a:81:40:f2:c6:25:27:8e:
7b:7a:60:a3:44:63:96:c5:59:fd:05:19:83:91:14:2b:a4:7b:
ef:8d:53:f5:9c:ed:83:c1:43:92:af:97:ad:6f:d4:03:78:9f:
78:cd:ee:e5:3f:1b:50:08:55:03:bb:bd:c8:d7:44:96:44:44:
ca:8c:d1:7b:61:f4:2d:e1:62:31:76:2a:e5:d3:1a:b3:e2:05:
dd:21:ba:a5:ea:87:b9:b2:ff:f7:7d:ff:5f:70:88:8b:21:2f:
af:df:c8:7c:12:12:f0:95:c1:e6:6a:77:44:ad:71:19:25:4c:
18:0e:80:0d:5f:c6:4b:e8:c1:5d:07:9a:ec:1c:62:62:1e:ce:
31:05:db:21:b9:24:c1:98:a1:1e:97:03:d2:ac:3d:68:b8:c3:
6b:48:2c:b4:64:16:a0:19:78:6a:eb:73:6b:04:5e:5c:ca:b9:
56:fc:a0:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:27:00 2024 by rpki-client on console-fra.rpki-client.org