Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/RjQ3ESWdf40XlPz4VThjETB4XB4.roa
File: RjQ3ESWdf40XlPz4VThjETB4XB4.roa (raw, json)
Hash identifier: ej0uyXWrgE3MEzzpNzADwQcnwByyFzEbOSaCsio64bY=
Subject key identifier: 46:34:37:11:25:9D:7F:8D:17:94:FC:F8:55:38:63:11:30:78:5C:1E
Certificate issuer: /CN=3c4ed942e5c742e77bfb9beb954f872534f52848
Certificate serial: 018C1CAA2454CB23BEF05B21E2F338159ED0
Authority key identifier: 3C:4E:D9:42:E5:C7:42:E7:7B:FB:9B:EB:95:4F:87:25:34:F5:28:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PE7ZQuXHQud7-5vrlU-HJTT1KEg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/RjQ3ESWdf40XlPz4VThjETB4XB4.roa
Signing time: Wed 29 Nov 2023 19:59:21 +0000
ROA not before: Wed 29 Nov 2023 19:59:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 83.97.100.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:1c:aa:24:54:cb:23:be:f0:5b:21:e2:f3:38:15:9e:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3c4ed942e5c742e77bfb9beb954f872534f52848
Validity
Not Before: Nov 29 19:59:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=46343711259d7f8d1794fcf85538631130785c1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:a9:05:31:bd:19:40:f1:fb:7f:dd:59:c9:58:
56:46:84:34:b6:7f:1d:47:fb:2d:ad:d8:00:29:02:
6d:26:f8:89:15:7d:3d:52:37:3b:56:9e:98:f8:03:
d1:eb:5c:f9:fe:1c:9b:67:89:6d:e1:74:d5:40:7c:
bd:17:88:d8:a4:e7:be:7d:db:09:ed:f1:74:84:1e:
7a:4d:a4:b8:86:a0:7f:aa:da:35:9f:e3:56:85:ff:
34:59:00:df:2c:06:75:3c:a5:cc:7c:3d:23:5c:56:
0d:50:a2:9f:6e:5b:ad:44:03:3a:34:7b:ff:5e:ad:
5b:e3:47:8c:ad:21:34:42:8e:f3:1a:37:f2:a3:ad:
e1:1c:39:65:f0:a5:42:59:1c:90:69:b4:ec:e7:3c:
70:25:ae:65:db:8c:4a:65:ca:47:1b:78:5d:78:ea:
db:20:0f:92:49:4f:d5:99:8d:d1:60:9d:9a:eb:b7:
3b:53:91:07:30:c1:ff:3b:3e:2e:d3:ed:00:97:33:
63:b8:98:94:6b:21:69:b3:e6:36:5b:a2:32:67:b8:
7f:40:fc:d0:ef:7e:5b:52:c7:c4:d5:32:05:c3:de:
ac:38:0b:51:47:f2:0f:21:b1:b8:9f:e0:19:16:0f:
8b:17:0a:ae:a3:a0:db:3a:f3:25:a6:48:23:40:83:
9c:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:34:37:11:25:9D:7F:8D:17:94:FC:F8:55:38:63:11:30:78:5C:1E
X509v3 Authority Key Identifier:
keyid:3C:4E:D9:42:E5:C7:42:E7:7B:FB:9B:EB:95:4F:87:25:34:F5:28:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PE7ZQuXHQud7-5vrlU-HJTT1KEg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/RjQ3ESWdf40XlPz4VThjETB4XB4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/PE7ZQuXHQud7-5vrlU-HJTT1KEg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.97.100.0/22
Signature Algorithm: sha256WithRSAEncryption
69:f5:84:a7:36:cd:aa:76:73:69:df:27:c5:0f:6f:42:8c:88:
f4:aa:1d:ab:e7:a0:77:60:6d:cd:49:71:eb:a3:f0:b9:75:71:
8b:b9:f6:41:cb:dc:be:41:eb:54:7d:f4:2f:1c:58:b7:40:e3:
8d:69:9a:9d:bd:36:43:04:1f:b1:ce:ab:1e:41:35:17:d9:1e:
d8:ee:72:64:d7:e9:06:4c:90:87:97:7f:d0:c7:eb:55:9d:d4:
bf:b5:b5:7c:ec:d3:6b:7c:c1:50:ba:d6:45:c5:67:92:da:6b:
3d:2d:40:cd:71:c4:3c:6c:37:62:23:45:6d:eb:a3:3f:63:ea:
58:95:e0:1f:7c:0a:23:8f:ea:ec:97:ca:10:9e:ed:92:8a:a4:
91:e6:7f:6b:d6:48:2c:9a:c2:5f:73:89:9d:d4:95:20:c6:3e:
78:5b:e0:21:f9:31:1e:31:4c:4e:fa:8d:7f:74:86:e3:e0:f8:
1e:f4:d1:93:90:8d:e5:38:97:f7:3d:5f:02:d5:12:65:04:ef:
52:cf:da:b9:5b:fc:06:66:0c:9d:cd:e8:c9:1b:7f:2c:69:fa:
09:10:c3:0d:e1:73:e5:4c:2c:58:a9:b1:03:1b:e7:5d:e9:98:
93:b6:75:7f:03:b8:df:90:1b:3f:89:9d:28:49:85:7a:8e:8e:
f6:87:6b:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 13:24:12 2024 by rpki-client on console-fra.rpki-client.org