Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/42d3db-e0c3-4a41-b7e9-2b9bf8051c8b/1/hb0juw5UNmXiOw4e5bLLxsU4Vdc.roa
File: hb0juw5UNmXiOw4e5bLLxsU4Vdc.roa (raw, json)
Hash identifier: U2jdRsVT3BkO8MAR/JM5tTR0egsuQaFzKMV+kvgwscg=
Subject key identifier: 85:BD:23:BB:0E:54:36:65:E2:3B:0E:1E:E5:B2:CB:C6:C5:38:55:D7
Certificate issuer: /CN=b91be2b3679904b60a2fc399b78081c86b038d99
Certificate serial: 018890F5410D6C8E2C1CA0848ABDCFB47204
Authority key identifier: B9:1B:E2:B3:67:99:04:B6:0A:2F:C3:99:B7:80:81:C8:6B:03:8D:99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uRvis2eZBLYKL8OZt4CByGsDjZk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/42d3db-e0c3-4a41-b7e9-2b9bf8051c8b/1/hb0juw5UNmXiOw4e5bLLxsU4Vdc.roa
Signing time: Tue 06 Jun 2023 13:46:12 +0000
ROA not before: Tue 06 Jun 2023 13:46:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198492
IP address blocks: 83.229.56.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:90:f5:41:0d:6c:8e:2c:1c:a0:84:8a:bd:cf:b4:72:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b91be2b3679904b60a2fc399b78081c86b038d99
Validity
Not Before: Jun 6 13:46:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=85bd23bb0e543665e23b0e1ee5b2cbc6c53855d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:15:fa:8f:27:f5:1d:52:9a:7d:3b:c3:b6:f9:
34:ce:06:74:16:cc:de:b8:7d:93:ba:f1:ca:f7:4f:
25:43:b1:56:0f:c7:70:c6:a1:29:e6:2b:3e:83:8c:
98:60:48:a1:bd:1c:95:4d:5b:83:54:aa:ca:c5:00:
a7:9a:4f:56:88:a1:88:90:af:c4:a7:ce:30:ee:91:
53:79:82:6a:3f:25:61:ca:c2:62:3d:29:03:37:c2:
b9:68:1a:d2:25:46:a1:a8:11:f7:10:0f:99:c3:93:
3d:20:04:09:32:d4:f3:7e:27:bb:b0:f3:9e:dc:77:
2c:0f:60:f9:05:49:d0:b9:69:f0:60:e3:d4:97:01:
92:69:3e:52:d9:75:f8:7a:7f:11:8b:90:a7:a7:e4:
db:c6:3b:64:40:66:ae:aa:6a:e5:4d:e1:78:4a:95:
69:ee:88:1d:b8:8f:9d:bf:3f:86:99:c0:29:cf:dc:
35:43:9e:62:8e:fd:8f:1e:c1:77:77:36:29:f8:ee:
0a:31:cb:88:58:f2:25:d1:7a:9b:35:f2:0d:ac:a9:
17:7c:f8:55:6b:97:bb:37:72:d8:20:4b:38:1e:16:
e7:46:d0:a3:0c:8d:2c:bb:a4:cb:3a:0e:4b:50:f7:
61:97:9a:3e:38:cf:c0:b3:00:a0:96:9f:7f:84:d4:
f1:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:BD:23:BB:0E:54:36:65:E2:3B:0E:1E:E5:B2:CB:C6:C5:38:55:D7
X509v3 Authority Key Identifier:
keyid:B9:1B:E2:B3:67:99:04:B6:0A:2F:C3:99:B7:80:81:C8:6B:03:8D:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uRvis2eZBLYKL8OZt4CByGsDjZk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/42d3db-e0c3-4a41-b7e9-2b9bf8051c8b/1/hb0juw5UNmXiOw4e5bLLxsU4Vdc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/42d3db-e0c3-4a41-b7e9-2b9bf8051c8b/1/uRvis2eZBLYKL8OZt4CByGsDjZk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.229.56.0/23
Signature Algorithm: sha256WithRSAEncryption
49:4f:25:3d:c0:d0:4d:e9:d8:37:46:4e:56:54:8a:fc:02:ca:
f5:8a:2f:71:49:b3:35:1b:3e:4b:6c:ec:f9:8d:e1:94:3e:15:
18:fc:4a:db:87:45:ed:b0:37:86:59:33:50:1f:95:3e:4f:36:
d0:3a:b9:50:90:ad:4f:74:f2:2e:47:49:db:2e:4a:c4:84:a7:
d5:96:e5:5c:43:56:7c:24:ab:d9:cf:79:6b:4a:22:47:de:c7:
26:4d:fc:df:fa:1d:f8:3b:45:a9:13:4b:41:d6:9a:47:63:7d:
39:57:4f:62:ee:af:8b:84:52:21:4f:b7:18:2b:2a:6a:15:ef:
4a:a1:38:3e:d8:6e:ab:85:65:b5:92:6e:d6:01:a8:80:53:81:
24:f1:77:da:18:2b:2f:22:96:7c:8a:63:1a:b3:41:ff:10:a2:
59:14:0d:cf:0e:59:e6:09:d2:22:cc:90:ae:a2:87:84:20:10:
65:24:70:e8:85:49:9a:d2:6c:19:18:de:d0:a8:96:c9:e4:9b:
32:9f:c3:a6:51:f5:eb:0a:91:49:2d:57:f5:95:2d:35:f5:a0:
2c:ee:f3:19:05:9c:cf:a4:9c:38:de:f5:f5:43:37:90:57:bf:
f5:6e:6a:33:09:90:4f:9e:f9:49:ed:d2:79:c5:fe:61:34:29:
91:f9:ee:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 01:40:39 2024 by rpki-client on console-ams.rpki-client.org