Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/m3ydpqoRkDf9_MdduXZAdFPzq8E.roa
File: m3ydpqoRkDf9_MdduXZAdFPzq8E.roa (raw, json)
Hash identifier: 3YiUzpL3bEQfDfi7boiStgfEs+CbrPMWId2yLmfiavg=
Subject key identifier: 9B:7C:9D:A6:AA:11:90:37:FD:FC:C7:5D:B9:76:40:74:53:F3:AB:C1
Certificate issuer: /CN=3c4ed942e5c742e77bfb9beb954f872534f52848
Certificate serial: 018CC493A097CBE76A25AD434022248D66D5
Authority key identifier: 3C:4E:D9:42:E5:C7:42:E7:7B:FB:9B:EB:95:4F:87:25:34:F5:28:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PE7ZQuXHQud7-5vrlU-HJTT1KEg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/m3ydpqoRkDf9_MdduXZAdFPzq8E.roa
Signing time: Mon 01 Jan 2024 10:30:58 +0000
ROA not before: Mon 01 Jan 2024 10:30:58 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16509
IP address blocks: 83.97.100.0/22 maxlen: 22
Validation: Failed, certificate revoked on Sun 07 Jan 2024 21:51:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:93:a0:97:cb:e7:6a:25:ad:43:40:22:24:8d:66:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3c4ed942e5c742e77bfb9beb954f872534f52848
Validity
Not Before: Jan 1 10:30:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9b7c9da6aa119037fdfcc75db976407453f3abc1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:e0:34:fa:c8:22:7b:91:2b:3b:b7:c8:06:90:
eb:3b:80:ae:83:58:8a:7f:7b:a1:3f:6a:fb:e9:bf:
4a:04:4d:57:0d:bf:78:60:ad:b7:69:5d:6d:59:4f:
d5:d5:40:81:2f:ac:b3:3c:9a:38:bf:e9:26:33:12:
f0:50:68:fa:31:43:14:b5:f1:94:87:03:5c:ad:b4:
45:da:5d:91:df:4b:6c:87:e8:ee:de:b6:11:8c:76:
cb:3c:4c:2f:3a:7e:52:f8:1b:bc:33:b7:f5:5f:c3:
41:6a:1a:88:59:08:dd:9b:33:82:c7:7d:65:cc:71:
da:b6:11:82:09:02:62:5b:b0:91:13:47:d6:6c:ad:
84:9a:55:2f:8e:b3:e6:a9:19:0d:73:20:b1:c8:b7:
0d:ef:1e:71:06:da:e9:f9:06:8a:87:06:5b:20:7e:
8b:86:c1:3c:f0:81:f6:7b:99:c9:2b:21:5f:05:b7:
d9:94:f5:d1:8f:a3:69:8f:fa:b3:90:26:3f:8f:a2:
bd:13:a2:ae:f3:67:c7:16:fd:b2:f8:71:22:e1:6f:
df:f9:1a:87:48:65:51:93:e2:02:cc:bb:27:e2:32:
62:de:eb:10:50:c0:0b:c4:44:02:b7:87:e9:75:43:
86:6d:ff:15:7b:60:fa:52:4b:24:24:1b:d4:f6:1c:
3b:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:7C:9D:A6:AA:11:90:37:FD:FC:C7:5D:B9:76:40:74:53:F3:AB:C1
X509v3 Authority Key Identifier:
keyid:3C:4E:D9:42:E5:C7:42:E7:7B:FB:9B:EB:95:4F:87:25:34:F5:28:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PE7ZQuXHQud7-5vrlU-HJTT1KEg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/m3ydpqoRkDf9_MdduXZAdFPzq8E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/PE7ZQuXHQud7-5vrlU-HJTT1KEg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.97.100.0/22
Signature Algorithm: sha256WithRSAEncryption
56:44:38:01:0a:a6:d9:01:f2:9d:4b:2e:36:b1:19:3f:a1:02:
97:9d:36:68:8f:f5:e1:0b:b3:dc:10:d5:89:96:f6:5e:de:01:
a5:de:be:06:8c:27:26:b6:8b:05:5d:23:e1:11:b3:8c:f2:26:
5c:81:0d:3e:e1:98:cd:40:dd:d6:7e:f5:79:80:7b:94:83:e9:
cf:f7:26:90:d6:e7:c0:49:6d:e8:95:26:9b:4c:75:96:3b:0d:
88:a6:91:3c:18:b1:f2:0c:29:fb:27:27:6d:b6:ee:7d:e6:cc:
7d:8a:34:ff:bd:37:2a:c9:38:00:c0:62:6f:d2:f9:31:48:99:
d3:8a:a7:2e:50:01:af:de:38:64:44:a4:62:73:10:a4:a9:0a:
3a:2e:e7:0a:87:5a:3a:29:f9:09:31:bf:31:de:12:ea:5d:fb:
a0:e9:86:8e:da:c3:17:27:7f:3b:04:21:25:24:4c:2d:ba:99:
c3:e7:6a:40:19:b4:0b:4c:0e:57:02:bc:b0:f5:6f:b0:fb:78:
6e:35:5e:08:1a:97:53:fb:ee:b6:d4:89:4c:7b:3c:c2:9b:55:
04:b3:58:6d:0b:af:2f:2a:78:8d:54:7d:df:9a:39:82:5b:e3:
12:0d:4b:90:ee:52:28:d0:c7:19:6d:ee:d7:68:28:5a:ae:ee:
ca:a4:34:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jan 7 23:03:33 2024 by rpki-client on console-ams.rpki-client.org