Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/83CqIbQsThXPJte-4rSSAoZut70.roa
File: 83CqIbQsThXPJte-4rSSAoZut70.roa (raw, json)
Hash identifier: Gv8sRUNSMCNmVP8pchUsVPvgCGdLWKP0herKbj4RCmc=
Subject key identifier: F3:70:AA:21:B4:2C:4E:15:CF:26:D7:BE:E2:B4:92:02:86:6E:B7:BD
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 0187E6DA80C29889ABD535DD09B27F1CF0B0
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/83CqIbQsThXPJte-4rSSAoZut70.roa
Signing time: Thu 04 May 2023 13:01:32 +0000
ROA not before: Thu 04 May 2023 13:01:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 10753
IP address blocks: 91.200.212.0/22 maxlen: 24
85.255.176.0/21 maxlen: 24
Validation: Failed, certificate revoked on Thu 08 Jun 2023 11:59:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:e6:da:80:c2:98:89:ab:d5:35:dd:09:b2:7f:1c:f0:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: May 4 13:01:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f370aa21b42c4e15cf26d7bee2b49202866eb7bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:b8:4e:76:93:ac:c6:67:da:32:9f:c0:a2:16:
42:e0:9c:1a:4e:5c:d7:86:a5:0b:b7:18:53:eb:bc:
04:21:9a:ea:1d:8a:73:cc:2d:bf:3f:dd:48:8a:46:
f5:69:96:73:72:45:53:78:e6:f9:4d:fe:38:38:6e:
86:a0:1e:5d:cf:5e:e5:2d:19:4d:a9:6b:d2:f2:ca:
44:79:d9:fb:a0:e2:88:52:58:b0:16:93:9f:db:0c:
2a:79:2d:c1:24:5d:12:61:0a:24:62:4d:57:c1:b9:
cc:f0:e9:61:33:dd:49:12:e4:44:c3:53:d6:61:5b:
e0:b7:a3:c7:2e:f1:1d:cb:2c:f0:da:29:60:ee:eb:
4d:d2:01:d6:29:3d:30:d8:d5:d0:db:3e:06:ba:6d:
f5:e2:d3:93:66:ec:0a:07:e8:a0:6f:e0:43:02:85:
b9:6a:f9:9e:f5:7f:5a:1a:e1:fc:07:df:94:f6:46:
90:87:1e:43:fe:e6:c4:62:29:32:99:74:56:08:56:
e5:d3:ee:44:e4:b4:58:88:1c:fe:e8:52:23:72:03:
e4:22:cc:c6:50:97:f5:6f:b7:17:18:23:37:08:fe:
be:fd:d9:c1:67:78:60:b9:d9:5f:c1:47:98:52:9f:
ac:1d:29:2f:70:af:65:47:95:ec:8e:ea:ce:4f:1f:
55:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:70:AA:21:B4:2C:4E:15:CF:26:D7:BE:E2:B4:92:02:86:6E:B7:BD
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/83CqIbQsThXPJte-4rSSAoZut70.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.255.176.0/21
91.200.212.0/22
Signature Algorithm: sha256WithRSAEncryption
9c:9b:38:71:35:ca:bd:0b:ba:b7:90:47:bc:8a:ed:3c:18:9f:
cc:9f:cf:4d:28:c7:fd:96:d1:f1:ef:36:14:9a:1a:81:18:76:
da:37:fa:4e:f3:1f:ec:36:7d:7f:5a:06:8c:e8:09:cd:00:fa:
03:2f:be:91:d1:f7:57:7b:d0:a7:89:2a:0d:b6:5b:c6:e5:f2:
49:c3:11:10:ba:c8:37:32:2b:66:dc:45:f5:54:f7:1d:1c:06:
f7:03:5c:40:72:aa:3f:7e:08:35:bf:fd:41:f9:a6:59:df:c6:
69:11:c3:dd:0a:b8:ab:86:f7:31:7c:7e:c8:64:2d:a8:99:39:
86:d7:3b:6f:cc:85:fa:0e:74:c1:74:a0:36:21:75:f4:c7:24:
04:86:d8:95:1f:a6:a1:ba:8d:b0:ef:af:81:39:69:68:18:f9:
1b:9f:80:7b:f4:d7:30:cc:3b:06:cc:f9:3c:fb:5d:cb:32:59:
00:2f:bd:9c:f0:63:a7:1b:f1:2e:be:4d:ae:ac:f2:52:a8:93:
35:0a:06:fc:54:26:f0:8c:fa:4f:14:67:45:64:63:87:08:74:
7c:9c:f1:d1:06:01:e6:52:d2:8e:8d:cd:2e:d5:14:42:6e:4d:
8c:0f:10:16:4d:58:70:6f:9b:20:aa:e4:bc:ec:16:ac:85:02:
91:b6:65:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:27 2024 by rpki-client on console-fra.rpki-client.org