Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/4f05ce-a382-49a0-9999-e52f70c06c29/1/Uk0b9aE93Lv_jufUzEdwUZyZ4kQ.roa
File: Uk0b9aE93Lv_jufUzEdwUZyZ4kQ.roa (raw, json)
Hash identifier: dpJ1iI1nGhTklGxzTpmI0lgLuPvNiNQJnotbIZlhyOQ=
Subject key identifier: 52:4D:1B:F5:A1:3D:DC:BB:FF:8E:E7:D4:CC:47:70:51:9C:99:E2:44
Certificate issuer: /CN=9de783e9acd56992f5835fb4882183500ca03c83
Certificate serial: 018D5689AD6B4A19728E100C2800CFF064A0
Authority key identifier: 9D:E7:83:E9:AC:D5:69:92:F5:83:5F:B4:88:21:83:50:0C:A0:3C:83
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/neeD6azVaZL1g1-0iCGDUAygPIM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/4f05ce-a382-49a0-9999-e52f70c06c29/1/Uk0b9aE93Lv_jufUzEdwUZyZ4kQ.roa
Signing time: Mon 29 Jan 2024 18:44:39 +0000
ROA not before: Mon 29 Jan 2024 18:44:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16509
IP address blocks: 83.97.96.0/21 maxlen: 21
Validation: Failed, certificate revoked on Tue 30 Jan 2024 14:14:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:56:89:ad:6b:4a:19:72:8e:10:0c:28:00:cf:f0:64:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9de783e9acd56992f5835fb4882183500ca03c83
Validity
Not Before: Jan 29 18:44:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=524d1bf5a13ddcbbff8ee7d4cc4770519c99e244
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:5b:d5:3a:8f:dc:40:48:cf:0e:a6:af:d3:ec:
68:69:66:ad:78:ed:7e:e1:ea:77:2a:f5:b3:63:13:
18:a4:7a:95:c6:77:32:c8:11:98:ff:9d:a2:cc:6c:
c5:dd:94:52:df:72:aa:51:8b:f9:ad:1f:c8:a6:7c:
d8:eb:c3:c5:a2:1e:3d:f6:15:ba:70:6f:77:a1:36:
fe:60:e6:26:64:ea:00:bf:a4:e3:5e:ff:13:41:49:
56:5f:4c:87:26:64:5f:e5:26:cf:f2:5f:42:33:eb:
48:d7:13:fb:ed:bb:19:ed:de:f7:91:66:b0:7c:c2:
7a:90:7c:92:39:34:8b:86:c3:ae:7c:39:e3:35:dc:
6e:9d:b0:72:e5:cf:9e:94:fa:84:2a:c0:8c:7a:82:
65:21:f0:1d:12:51:65:6b:c4:35:32:36:61:7d:fd:
e9:10:7c:d3:d0:38:da:cf:f0:d0:07:06:6e:08:ed:
bc:57:f4:3e:a5:cf:8e:23:0f:99:28:98:46:1c:b9:
6a:e3:e4:c1:ac:b4:64:57:ef:f0:9e:26:52:34:c1:
f5:5d:04:cb:63:66:a6:3d:2d:3c:70:f5:58:61:b6:
28:dc:2e:41:11:6b:c5:d7:ef:4e:d0:ef:1a:99:82:
e8:ea:58:73:fd:e6:9f:ab:46:ee:61:9b:b0:ae:45:
18:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:4D:1B:F5:A1:3D:DC:BB:FF:8E:E7:D4:CC:47:70:51:9C:99:E2:44
X509v3 Authority Key Identifier:
keyid:9D:E7:83:E9:AC:D5:69:92:F5:83:5F:B4:88:21:83:50:0C:A0:3C:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/neeD6azVaZL1g1-0iCGDUAygPIM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/4f05ce-a382-49a0-9999-e52f70c06c29/1/Uk0b9aE93Lv_jufUzEdwUZyZ4kQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/4f05ce-a382-49a0-9999-e52f70c06c29/1/neeD6azVaZL1g1-0iCGDUAygPIM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.97.96.0/21
Signature Algorithm: sha256WithRSAEncryption
59:56:07:ed:1c:bd:a2:13:ea:58:5a:5a:2f:06:59:4f:7a:b1:
c3:e6:f7:c1:42:df:0e:3e:a5:ac:94:7c:3b:06:87:df:7e:04:
14:a0:c2:ad:01:42:e5:b2:ef:12:d2:ac:ab:44:3f:0f:ad:70:
76:aa:c9:6d:24:15:d5:4e:17:69:ef:2d:a4:e1:cb:b9:4a:72:
88:bb:e7:b1:1f:9f:64:2e:b2:90:1c:52:6e:bf:79:f7:97:cd:
de:aa:e0:e0:a9:92:23:b8:be:77:9e:8b:06:02:68:e0:7f:d7:
fa:0f:8f:a7:07:82:42:59:fa:f2:02:11:8a:a8:cd:5a:be:7f:
56:d1:c9:73:81:39:ca:1b:0c:e9:5d:bc:9b:6d:1c:ea:9e:4a:
45:fa:68:08:da:66:18:2c:6c:ff:88:56:26:64:a2:a2:4d:a2:
81:51:df:e4:83:d5:cf:c6:f9:90:09:a6:be:f5:53:48:cd:e2:
8f:a8:09:de:2a:47:6f:5b:a6:5f:bd:c4:b0:73:63:8c:18:27:
ac:18:3b:a4:db:3c:34:a5:b3:ed:5e:18:61:49:06:1d:7a:bd:
44:d7:2c:c2:fa:b6:84:b8:4e:38:1e:11:82:24:7d:3f:e2:5c:
a5:10:57:98:f5:4b:67:d4:d5:90:98:66:d0:76:8b:31:b8:cf:
2b:3b:02:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:20 2024 by rpki-client on console-fra.rpki-client.org