Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/biOovFU-aK0DJW90syzbLYX6ABM.roa
File: biOovFU-aK0DJW90syzbLYX6ABM.roa (raw, json)
Hash identifier: iTZGGvsSQrTp+KrFsqbtQAUrwV1+QkqQ4EIFM2SMGKc=
Subject key identifier: 6E:23:A8:BC:55:3E:68:AD:03:25:6F:74:B3:2C:DB:2D:85:FA:00:13
Certificate issuer: /CN=3c4ed942e5c742e77bfb9beb954f872534f52848
Certificate serial: 0185719544BEF08F29AB9ECD2E28A7DF1EA2
Authority key identifier: 3C:4E:D9:42:E5:C7:42:E7:7B:FB:9B:EB:95:4F:87:25:34:F5:28:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PE7ZQuXHQud7-5vrlU-HJTT1KEg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/biOovFU-aK0DJW90syzbLYX6ABM.roa
Signing time: Mon 02 Jan 2023 08:24:45 +0000
ROA not before: Mon 02 Jan 2023 08:24:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 83.97.100.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:95:44:be:f0:8f:29:ab:9e:cd:2e:28:a7:df:1e:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3c4ed942e5c742e77bfb9beb954f872534f52848
Validity
Not Before: Jan 2 08:24:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6e23a8bc553e68ad03256f74b32cdb2d85fa0013
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:df:f1:47:5a:2c:b2:0c:73:32:ca:6d:27:dc:
9f:27:d2:43:f7:16:ad:10:4e:4f:9b:51:77:87:cb:
bc:a4:71:31:61:2f:47:21:8d:3d:31:a9:97:b5:12:
a9:4f:64:8e:19:22:bf:0f:65:ab:55:98:49:01:6c:
f7:27:70:a6:cc:d4:41:14:f1:f9:53:e8:42:ce:ab:
15:f9:df:53:af:7f:73:1f:3b:d9:72:8a:02:0d:88:
17:d4:39:e0:bb:87:9c:9a:2d:a6:5d:79:78:21:51:
32:ee:6d:d0:47:32:7d:3c:52:56:ac:9f:03:3c:d3:
2c:1d:55:62:fd:5d:32:fa:12:92:18:fe:34:b5:28:
f8:d6:96:83:1c:52:99:dd:a9:a0:e7:66:ca:d4:4f:
1b:8a:ed:a1:97:0c:1b:88:7c:55:e9:16:f9:72:83:
92:6f:c8:87:ac:08:c3:b8:b8:a3:43:68:1b:72:b4:
46:e4:a3:56:82:54:e8:13:7d:7f:6f:86:37:77:08:
f8:36:66:ff:10:31:b3:e8:51:df:80:b2:1e:2b:62:
9b:25:c1:11:12:ab:94:16:dd:96:0e:dd:28:4d:9e:
63:21:07:ca:ec:b6:13:2c:6d:f3:72:11:89:64:3a:
be:67:c7:7e:a0:6e:e5:4b:5a:d4:6d:3e:ef:af:64:
ff:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:23:A8:BC:55:3E:68:AD:03:25:6F:74:B3:2C:DB:2D:85:FA:00:13
X509v3 Authority Key Identifier:
keyid:3C:4E:D9:42:E5:C7:42:E7:7B:FB:9B:EB:95:4F:87:25:34:F5:28:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PE7ZQuXHQud7-5vrlU-HJTT1KEg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/biOovFU-aK0DJW90syzbLYX6ABM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/PE7ZQuXHQud7-5vrlU-HJTT1KEg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.97.100.0/22
Signature Algorithm: sha256WithRSAEncryption
a6:9d:47:83:89:11:bb:9b:bf:ea:67:6f:38:11:f0:ef:29:c3:
bb:c4:53:83:a0:d5:11:bb:5e:ba:8b:f1:34:40:c5:8a:9b:f5:
41:e2:75:51:5c:a9:1b:f0:41:69:bf:ad:3a:06:cc:1e:d6:21:
0c:3d:26:7d:42:26:eb:97:cb:e4:5c:b5:be:bb:b3:fd:ab:fd:
fc:ee:ba:08:82:40:3a:f2:50:c9:fc:9a:8c:b2:a4:c0:77:86:
1d:fe:f8:a6:39:19:c5:25:2c:42:66:82:e8:ea:31:cf:79:cf:
e6:13:df:ef:7b:43:62:5d:fb:ad:6c:3c:a1:a0:4f:9f:e5:29:
12:ca:9d:cd:f1:21:ca:ab:ad:e4:e3:67:4e:67:5c:0a:bc:65:
b8:af:f4:b0:60:12:f8:76:7e:54:01:7e:fa:48:9c:87:f5:17:
8d:2e:60:01:96:35:ea:ba:4c:ff:7a:cd:86:cc:79:8d:ea:54:
6d:12:73:2c:81:d9:99:1a:b8:af:8e:39:ce:43:ff:68:8d:f7:
a6:23:75:ca:7f:2b:96:4c:1d:c3:dd:a5:53:0e:80:b9:42:f8:
4e:7f:c3:af:77:1c:03:e4:e9:95:2d:8f:eb:56:d5:a1:d5:51:
bf:0d:73:2c:2d:93:11:ec:cb:34:2c:f2:90:ed:23:c5:d1:84:
73:b9:dc:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:54 2023 by rpki-client on console-ams.rpki-client.org