Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/1d9dda-2adf-46bd-8af7-4d16be9ba132/1/Vt-a2BV67FDNm-C9SAdcONMaLRA.roa
File: Vt-a2BV67FDNm-C9SAdcONMaLRA.roa (raw, json)
Hash identifier: NS5iSMAZ0nVfqFqrOLnFHc/Q3VcHvU2oukKsqHfG9Ow=
Subject key identifier: 56:DF:9A:D8:15:7A:EC:50:CD:9B:E0:BD:48:07:5C:38:D3:1A:2D:10
Certificate issuer: /CN=2236ed5f5623edeb7910acd31d5f6ee81e5cb17e
Certificate serial: 018570B082688B35B452CA4518AB83A19B2D
Authority key identifier: 22:36:ED:5F:56:23:ED:EB:79:10:AC:D3:1D:5F:6E:E8:1E:5C:B1:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IjbtX1Yj7et5EKzTHV9u6B5csX4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/1d9dda-2adf-46bd-8af7-4d16be9ba132/1/Vt-a2BV67FDNm-C9SAdcONMaLRA.roa
Signing time: Mon 02 Jan 2023 04:14:53 +0000
ROA not before: Mon 02 Jan 2023 04:14:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43009
IP address blocks: 83.166.78.0/24 maxlen: 24
83.166.79.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:b0:82:68:8b:35:b4:52:ca:45:18:ab:83:a1:9b:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2236ed5f5623edeb7910acd31d5f6ee81e5cb17e
Validity
Not Before: Jan 2 04:14:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=56df9ad8157aec50cd9be0bd48075c38d31a2d10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:9e:03:f0:76:43:d5:50:86:4a:b8:25:24:5e:
e3:b3:dd:35:1c:da:6c:fc:73:41:c1:55:bc:5d:c5:
4f:2a:92:d7:81:30:90:0d:76:29:5a:a3:ea:c9:49:
9f:44:5b:35:ba:93:79:d8:01:79:72:40:c8:b5:c6:
01:95:bb:f0:da:19:86:73:90:fb:94:ec:7d:16:f9:
6e:92:ae:75:2e:de:29:45:81:ca:86:b6:9c:10:01:
8c:3a:b9:01:62:29:38:1f:a3:a8:d9:e7:28:fa:bf:
b9:de:98:67:a4:d9:d0:63:65:9f:3a:e9:c5:e2:d9:
45:87:6e:46:a2:05:5d:08:75:25:ad:75:60:cb:d7:
a5:ea:e7:9c:bd:19:c5:03:43:2d:f0:04:b7:85:4a:
df:7d:b9:d7:d4:db:2a:ad:15:97:b0:5f:f9:76:17:
b2:ed:57:50:bd:57:62:3c:9d:d5:eb:31:a9:c5:af:
e7:8a:ab:cf:33:fa:e5:5b:a8:29:4e:76:e9:26:58:
16:e4:58:e6:06:f8:5b:28:26:22:33:b3:4f:a0:cd:
aa:2b:ce:63:63:aa:60:c1:32:90:8d:ab:de:73:60:
af:e5:a9:56:a2:b8:76:86:d5:84:9f:ee:d9:36:2a:
56:6c:17:c6:13:73:b3:5f:6e:8f:44:2a:7d:1e:79:
20:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:DF:9A:D8:15:7A:EC:50:CD:9B:E0:BD:48:07:5C:38:D3:1A:2D:10
X509v3 Authority Key Identifier:
keyid:22:36:ED:5F:56:23:ED:EB:79:10:AC:D3:1D:5F:6E:E8:1E:5C:B1:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IjbtX1Yj7et5EKzTHV9u6B5csX4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/1d9dda-2adf-46bd-8af7-4d16be9ba132/1/Vt-a2BV67FDNm-C9SAdcONMaLRA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/1d9dda-2adf-46bd-8af7-4d16be9ba132/1/IjbtX1Yj7et5EKzTHV9u6B5csX4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.166.78.0/23
Signature Algorithm: sha256WithRSAEncryption
83:ba:19:af:05:a7:4e:74:84:61:a0:45:b3:8a:35:64:8f:65:
f8:fb:f1:55:1b:52:dd:c0:a4:5b:96:a7:5f:5c:fe:f5:bc:a3:
dc:ea:b0:f8:24:b1:c9:17:e4:58:fd:04:d8:cd:89:df:ef:74:
b4:c4:35:75:d4:03:f0:a0:0e:7e:21:c9:8f:e0:c9:59:10:c9:
88:7b:e0:57:ec:bf:a5:2f:71:f2:93:6e:0d:9e:8f:16:32:ad:
2f:b8:bc:6f:a0:12:f5:ef:29:1a:bb:6f:4b:13:65:6e:ed:55:
bb:bd:c7:e5:bc:28:0b:d0:e0:80:60:60:1d:af:2d:60:b6:65:
86:f7:7c:6a:43:18:1e:7c:3e:82:f4:36:b7:70:b0:06:b9:dc:
69:c8:d8:7a:71:65:f4:40:5a:78:65:31:a2:c4:d1:7f:0e:ac:
93:0d:44:f6:69:4b:12:40:11:a7:c5:f9:05:cc:1b:53:38:6f:
83:c6:ee:5c:8d:91:00:23:ef:03:ce:a3:33:3a:46:19:8f:c1:
47:57:2a:3f:c7:6b:98:ba:3f:a5:fd:98:a9:f1:ac:0e:e7:80:
ff:c4:bd:50:fa:62:e0:a2:54:f9:70:fc:83:f7:d6:b3:79:9b:
ff:a3:c6:11:ec:cc:b5:b5:20:6f:26:cc:70:5a:6e:a1:79:0e:
56:25:c1:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:45 2023 by rpki-client on console-ams.rpki-client.org