Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/e7bd01-432f-4bf9-80c5-897d00977ff2/1/V7M3bq2xf7dWpM0Nna7niSE59rw.roa
File: V7M3bq2xf7dWpM0Nna7niSE59rw.roa (raw, json)
Hash identifier: actk8jXZ9djg9ebXdZf5PQd6ZwjbLZMESvUu1NGkw7s=
Subject key identifier: 57:B3:37:6E:AD:B1:7F:B7:56:A4:CD:0D:9D:AE:E7:89:21:39:F6:BC
Certificate issuer: /CN=49596cecc21dd02677a727ef37f0689546ea5097
Certificate serial: 01876FFD10E0B329F4ACE109FCC946EA13CF
Authority key identifier: 49:59:6C:EC:C2:1D:D0:26:77:A7:27:EF:37:F0:68:95:46:EA:50:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SVls7MId0CZ3pyfvN_BolUbqUJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/e7bd01-432f-4bf9-80c5-897d00977ff2/1/V7M3bq2xf7dWpM0Nna7niSE59rw.roa
Signing time: Tue 11 Apr 2023 11:04:28 +0000
ROA not before: Tue 11 Apr 2023 11:04:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5390
IP address blocks: 83.119.0.0/18 maxlen: 24
85.148.0.0/15 maxlen: 16
83.119.14.0/24 maxlen: 24
83.118.224.0/22 maxlen: 24
85.150.0.0/16 maxlen: 16
2a02:2500::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 12 Apr 2023 07:39:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:6f:fd:10:e0:b3:29:f4:ac:e1:09:fc:c9:46:ea:13:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49596cecc21dd02677a727ef37f0689546ea5097
Validity
Not Before: Apr 11 11:04:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=57b3376eadb17fb756a4cd0d9daee7892139f6bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:cb:64:7b:1c:68:d9:1f:1b:18:01:77:95:f3:
01:55:e3:f8:1c:f5:d3:2c:41:1b:8c:a9:b5:d8:2b:
f8:71:aa:27:8e:a8:59:9d:db:69:e4:fa:87:40:e4:
d1:47:18:b0:84:45:1b:82:7d:48:3d:e2:a2:92:15:
88:6f:ad:04:da:3f:c1:21:2a:f9:90:aa:5b:1d:40:
55:8f:ce:86:40:e5:b7:ee:71:4a:37:e5:76:30:e6:
af:38:79:e5:9f:bf:7a:2c:56:80:53:b4:ce:20:c4:
69:dc:09:82:1e:3e:e3:5b:60:69:a9:81:1c:f0:f5:
b6:4a:93:2c:a0:3a:66:ff:4a:f5:6a:56:30:e1:7e:
6e:11:0d:97:64:4a:66:1d:16:b9:82:c3:99:91:d7:
82:e9:8d:80:1b:fd:e4:da:82:c6:f7:1b:f6:e4:58:
f5:3b:23:9c:fb:8b:2d:6c:af:79:28:b7:98:2c:1f:
7d:6f:e4:71:1c:9f:ec:55:b0:3a:2e:b6:09:ef:1c:
1c:88:b3:af:5b:d7:aa:54:3d:e4:f2:71:6d:d5:d8:
e3:4d:0d:39:55:c5:42:c4:50:ec:ca:66:01:f5:17:
e1:7a:2b:5a:f2:d1:7c:07:86:54:34:9a:0c:ce:ab:
91:8c:4b:cd:6b:72:3a:ba:9c:0c:fc:f2:96:80:71:
51:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:B3:37:6E:AD:B1:7F:B7:56:A4:CD:0D:9D:AE:E7:89:21:39:F6:BC
X509v3 Authority Key Identifier:
keyid:49:59:6C:EC:C2:1D:D0:26:77:A7:27:EF:37:F0:68:95:46:EA:50:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SVls7MId0CZ3pyfvN_BolUbqUJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/e7bd01-432f-4bf9-80c5-897d00977ff2/1/V7M3bq2xf7dWpM0Nna7niSE59rw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/e7bd01-432f-4bf9-80c5-897d00977ff2/1/SVls7MId0CZ3pyfvN_BolUbqUJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.118.224.0/22
83.119.0.0/18
85.148.0.0-85.150.255.255
IPv6:
2a02:2500::/32
Signature Algorithm: sha256WithRSAEncryption
14:3a:b3:3b:ed:ae:02:40:12:1c:09:07:ce:02:73:f3:b0:9a:
6f:ab:1e:ee:e1:53:cf:30:c0:6c:5c:7f:d8:73:58:82:15:c6:
86:af:7c:d7:f3:5a:78:2d:ce:ee:39:f9:c9:98:f4:3a:94:a1:
1f:a6:b9:71:9d:ea:5c:6f:8b:d9:49:8e:56:c1:c5:54:97:23:
c9:5a:7b:23:99:c0:3a:ca:5b:9f:71:85:f4:55:0d:40:6c:bb:
3e:3c:5c:e2:9e:52:49:be:6f:39:6d:0e:f6:a6:9b:b0:0b:82:
9f:18:77:84:4b:9b:1f:18:71:2f:fc:53:6e:69:f9:cd:44:a5:
8f:41:9e:68:28:ac:6f:1f:54:d3:84:df:4e:e7:db:d2:c8:e6:
45:e1:89:d4:92:ff:ca:ae:3c:f2:c2:38:65:97:12:b2:58:01:
39:e0:24:38:a9:1b:fd:92:b5:82:0c:c4:e9:52:ae:cc:d2:9c:
71:7d:6c:29:01:c9:54:3d:bb:3f:5a:26:b8:11:01:61:71:d8:
42:c6:49:a4:d4:80:7e:d3:d2:27:88:21:46:45:ba:d0:a9:58:
fa:04:49:d4:df:e9:44:2f:c9:f0:99:41:74:d5:b3:a6:4a:bc:
d7:76:7b:a2:ac:77:28:55:81:14:97:18:b0:dc:30:ad:cf:dd:
50:54:4b:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:22 2024 by rpki-client on console-ams.rpki-client.org