Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/1cbc1e-4d46-4b5b-b249-3208de39c09d/1/y6Woj6cW0J84SUFvk0SfoE2YPfY.roa
File: y6Woj6cW0J84SUFvk0SfoE2YPfY.roa (raw, json)
Hash identifier: JsWoKIDxZFjFTF/E+vqDdM/t7w9t/13w4CobUBpj79I=
Subject key identifier: CB:A5:A8:8F:A7:16:D0:9F:38:49:41:6F:93:44:9F:A0:4D:98:3D:F6
Certificate issuer: /CN=96e6f77cbda101987d9dfc84be90b6fba66adc9f
Certificate serial: 018C90768F88AB0D122B205A79333B837E41
Authority key identifier: 96:E6:F7:7C:BD:A1:01:98:7D:9D:FC:84:BE:90:B6:FB:A6:6A:DC:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lub3fL2hAZh9nfyEvpC2-6Zq3J8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/1cbc1e-4d46-4b5b-b249-3208de39c09d/1/y6Woj6cW0J84SUFvk0SfoE2YPfY.roa
Signing time: Fri 22 Dec 2023 07:38:58 +0000
ROA not before: Fri 22 Dec 2023 07:38:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31595
IP address blocks: 83.167.160.0/19 maxlen: 19
2001:4be8::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:30:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:90:76:8f:88:ab:0d:12:2b:20:5a:79:33:3b:83:7e:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96e6f77cbda101987d9dfc84be90b6fba66adc9f
Validity
Not Before: Dec 22 07:38:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cba5a88fa716d09f3849416f93449fa04d983df6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:7f:40:4e:6d:a4:1a:3c:16:73:c5:36:99:13:
ec:23:4e:45:b0:85:d8:24:38:35:94:67:78:f4:ee:
ed:2a:95:ec:14:39:86:0d:8e:43:9d:8e:7f:63:1f:
50:00:74:3c:5a:31:dc:44:37:60:1a:d1:04:ec:bd:
ef:0a:de:1d:04:8f:9a:78:73:c2:2f:e9:bc:de:fd:
fe:3c:3f:dc:38:2d:5b:ef:42:43:0e:b7:60:c5:0c:
3b:f2:10:8a:c0:0b:3a:c0:33:b0:06:13:37:d1:66:
4c:a2:21:8e:3f:7e:90:6c:16:8d:8a:bd:25:67:88:
07:da:90:a7:44:52:76:c1:c4:c9:5f:c3:5f:46:5f:
ab:1a:62:37:b9:a5:54:cd:df:3b:11:6b:e6:e8:88:
ba:cd:91:50:9a:c7:cf:6a:f0:c0:9c:77:c3:45:30:
3c:45:17:d7:f8:64:84:81:77:4b:fb:6d:34:cc:10:
83:2c:96:e7:8c:e4:72:58:1e:93:5d:1f:64:cb:44:
0a:ff:5d:b0:85:e6:ea:02:a6:2f:29:ed:09:33:43:
19:48:47:35:3d:4e:3a:31:ed:d5:07:e2:ab:32:cb:
e1:46:da:f4:ce:8e:a9:d2:38:05:33:a2:54:c4:56:
97:45:4f:20:70:f0:2d:6d:9c:27:83:e4:32:d5:7d:
23:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:A5:A8:8F:A7:16:D0:9F:38:49:41:6F:93:44:9F:A0:4D:98:3D:F6
X509v3 Authority Key Identifier:
keyid:96:E6:F7:7C:BD:A1:01:98:7D:9D:FC:84:BE:90:B6:FB:A6:6A:DC:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lub3fL2hAZh9nfyEvpC2-6Zq3J8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/1cbc1e-4d46-4b5b-b249-3208de39c09d/1/y6Woj6cW0J84SUFvk0SfoE2YPfY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/1cbc1e-4d46-4b5b-b249-3208de39c09d/1/lub3fL2hAZh9nfyEvpC2-6Zq3J8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.167.160.0/19
IPv6:
2001:4be8::/32
Signature Algorithm: sha256WithRSAEncryption
33:75:f1:c6:c2:eb:c7:8f:38:e9:8b:f6:bc:02:54:e6:19:6b:
24:5e:29:a0:65:76:25:ab:55:7f:0f:eb:96:8a:2c:c7:af:27:
b5:b6:dc:fd:30:82:3b:df:03:77:b6:cb:c6:aa:24:ff:dc:40:
e1:ed:e2:fb:5b:44:cb:e1:8f:d2:ff:7b:4d:89:4d:ff:f1:e9:
94:00:b2:97:67:44:98:24:01:91:61:43:41:b7:e3:a0:91:e0:
aa:2e:be:7b:f2:16:76:4a:83:bb:5a:31:64:f8:5f:53:10:87:
d5:05:31:a4:86:10:16:b3:f7:a4:53:1a:98:f4:5b:b3:ab:dd:
21:72:65:7c:75:a4:71:40:c5:c8:37:23:e0:a7:7d:2c:42:3d:
3f:c0:90:9e:96:f1:8b:98:44:8d:8c:f3:32:d5:cd:a5:b0:79:
1d:94:f7:29:4a:a4:ee:59:84:e5:2b:51:6a:3a:e3:bd:36:93:
e8:76:16:3a:9e:f3:aa:88:a2:9c:d2:63:63:22:62:05:5c:12:
a2:17:a8:47:6f:8d:bd:99:3f:ab:0f:04:ad:b1:72:e3:e0:06:
75:86:9d:32:5f:0b:f2:96:8e:3e:92:18:dd:90:3b:44:3b:c0:
f7:a6:e8:54:64:55:eb:7a:6a:97:eb:de:87:a4:98:a2:04:12:
1e:01:29:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:04 2024 by rpki-client on console-fra.rpki-client.org