Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/iJDcW954m3hxI9xl-72ln9MiZF0.roa
File: iJDcW954m3hxI9xl-72ln9MiZF0.roa (raw, json)
Hash identifier: Afh6wMpWQaqDOhdyWZf1nxq5IyRHi/m7Jk8eK4kOOmU=
Subject key identifier: 88:90:DC:5B:DE:78:9B:78:71:23:DC:65:FB:BD:A5:9F:D3:22:64:5D
Certificate issuer: /CN=3c4ed942e5c742e77bfb9beb954f872534f52848
Certificate serial: 0185719541E1BF97876177912845D4476940
Authority key identifier: 3C:4E:D9:42:E5:C7:42:E7:7B:FB:9B:EB:95:4F:87:25:34:F5:28:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PE7ZQuXHQud7-5vrlU-HJTT1KEg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/iJDcW954m3hxI9xl-72ln9MiZF0.roa
Signing time: Mon 02 Jan 2023 08:24:45 +0000
ROA not before: Mon 02 Jan 2023 08:24:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2856
IP address blocks: 83.97.96.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:95:41:e1:bf:97:87:61:77:91:28:45:d4:47:69:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3c4ed942e5c742e77bfb9beb954f872534f52848
Validity
Not Before: Jan 2 08:24:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8890dc5bde789b787123dc65fbbda59fd322645d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:d5:5b:d0:c3:a5:51:72:4b:20:b4:e0:d4:1a:
7c:26:d1:92:f0:52:81:d6:71:67:cb:58:b5:b3:3c:
74:b1:23:50:a0:1f:45:36:cc:4a:a9:9c:e2:aa:68:
30:12:ff:b6:4b:17:aa:b0:78:6f:ec:7f:26:ac:e9:
8a:a9:65:f1:7d:bd:63:11:5a:56:0e:3e:5d:8e:c0:
97:d9:22:dd:7c:20:cf:f7:9f:09:a5:c1:c7:05:c0:
ce:c4:d3:04:23:a2:1b:a7:3b:e2:85:e5:d3:ff:97:
f0:2c:7c:03:be:7f:a4:ac:d2:d3:33:ec:6b:55:94:
57:70:5d:b5:57:c8:d8:02:75:4c:59:f3:a0:d2:e0:
7c:43:97:04:a3:ed:0b:89:e0:82:bc:ee:6c:79:66:
41:d4:3b:6c:04:39:a6:df:a6:87:e7:80:27:01:b1:
c9:13:9a:8f:4c:88:47:15:1e:88:98:06:28:0c:fa:
05:0e:96:8f:53:16:44:f8:53:cf:66:3d:0e:ed:b2:
02:fa:99:07:77:d5:93:f9:85:3a:85:d5:3d:92:96:
04:32:0c:8b:df:90:af:9a:f1:09:3f:53:c7:25:66:
58:6b:ff:27:6d:fd:e4:ea:44:2b:9f:c7:53:29:12:
18:f2:d2:8a:be:78:dc:7e:83:e8:8f:10:db:06:89:
19:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:90:DC:5B:DE:78:9B:78:71:23:DC:65:FB:BD:A5:9F:D3:22:64:5D
X509v3 Authority Key Identifier:
keyid:3C:4E:D9:42:E5:C7:42:E7:7B:FB:9B:EB:95:4F:87:25:34:F5:28:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PE7ZQuXHQud7-5vrlU-HJTT1KEg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/iJDcW954m3hxI9xl-72ln9MiZF0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/PE7ZQuXHQud7-5vrlU-HJTT1KEg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.97.96.0/22
Signature Algorithm: sha256WithRSAEncryption
2a:d9:a1:27:74:6d:0a:37:f6:93:dd:23:fa:88:93:f9:e1:4f:
1f:7d:73:44:c7:47:37:fb:ec:da:71:eb:d0:67:30:c7:7e:9c:
b7:62:c1:e8:af:92:55:3e:e7:b9:e1:51:cf:d5:66:c1:bb:70:
21:2e:8d:ef:fc:43:0a:60:42:01:69:8f:e9:b2:d1:78:57:76:
ff:35:ed:3d:eb:88:87:4a:c2:a6:f7:85:b8:73:41:9f:f7:1d:
2f:56:74:1a:ba:c7:2e:bf:86:fd:14:e9:df:9e:a1:25:19:2e:
09:42:cb:33:38:04:de:1e:86:04:d4:7c:81:d7:5d:67:ab:94:
c7:16:87:c4:42:df:20:6d:e7:c4:a4:18:ca:ee:7c:1d:27:f4:
8e:29:1f:64:92:2f:ee:d9:fc:0b:e0:08:7b:8e:0d:79:8d:ba:
bb:5c:0a:3f:0c:61:d1:88:30:6f:84:9b:5c:0d:85:a3:8d:7b:
dc:ca:42:02:7b:44:6b:62:1c:fb:16:71:2e:86:a1:f7:69:42:
6f:b0:ef:36:22:a1:cc:3e:90:64:b9:94:ac:5b:ed:90:e9:52:
9f:db:00:c8:fa:f7:5d:14:5e:44:27:a6:96:38:c7:25:7d:7d:
67:8f:5b:b0:b6:c9:47:4a:28:fa:1b:95:00:8c:bd:ee:34:b9:
c0:64:1f:07
-----BEGIN CERTIFICATE-----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Generated at Mon Oct 2 06:21:21 2023 by rpki-client on console-ams.rpki-client.org