Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/2ZMPVj2XARgB7YUeL1gPhG7qbpI.roa
File: 2ZMPVj2XARgB7YUeL1gPhG7qbpI.roa (raw, json)
Hash identifier: PnGk5VTRuu6ndwRskcYw2f5wNBAAO08YiV1X8Wx27fA=
Subject key identifier: D9:93:0F:56:3D:97:01:18:01:ED:85:1E:2F:58:0F:84:6E:EA:6E:92
Certificate issuer: /CN=adac830ccaa74783dd961fab241a228d7cc6f808
Certificate serial: 018570705EE1EFE939CC43370E469D891144
Authority key identifier: AD:AC:83:0C:CA:A7:47:83:DD:96:1F:AB:24:1A:22:8D:7C:C6:F8:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rayDDMqnR4Pdlh-rJBoijXzG-Ag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/2ZMPVj2XARgB7YUeL1gPhG7qbpI.roa
Signing time: Mon 02 Jan 2023 03:04:50 +0000
ROA not before: Mon 02 Jan 2023 03:04:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51543
IP address blocks: 83.234.54.0/24 maxlen: 24
83.234.169.0/24 maxlen: 24
83.234.168.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 04 Apr 2023 06:14:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:70:5e:e1:ef:e9:39:cc:43:37:0e:46:9d:89:11:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=adac830ccaa74783dd961fab241a228d7cc6f808
Validity
Not Before: Jan 2 03:04:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d9930f563d97011801ed851e2f580f846eea6e92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:a2:fc:43:01:92:a9:fd:84:30:a1:ff:78:69:
5f:16:19:46:ca:8f:8b:a4:f2:b0:a5:55:58:cf:55:
7a:79:af:89:6d:75:23:bc:8c:a4:4f:25:f5:46:53:
14:44:4c:a7:d4:d8:45:c5:38:1e:95:fd:6b:d1:51:
a1:9c:8f:c4:e6:1a:91:5a:3a:22:db:39:17:73:ab:
cf:23:25:7f:57:ce:ab:2f:b8:b2:39:d9:45:9f:f8:
a1:a4:e3:22:6e:41:c7:da:db:c2:6f:5d:de:ff:5f:
d0:8c:93:6e:95:23:73:27:48:0e:e5:8a:26:78:21:
08:ee:26:c1:21:0e:03:5c:58:e2:f3:2e:3c:cd:52:
8e:67:b3:06:4c:10:94:a7:cc:55:4c:40:9c:8e:8e:
55:4d:b2:b3:08:f1:a6:5e:c3:89:52:0d:b9:e6:7f:
ba:f6:9a:0c:ed:4a:58:3c:bc:31:b3:57:4d:e8:5b:
c6:cf:d8:bd:92:27:ac:59:c8:55:43:4e:79:f0:aa:
de:1c:fd:90:a1:fd:a7:e0:08:e3:81:da:57:e1:b9:
95:ba:1d:db:5b:6e:9a:ad:c5:e5:f0:23:9f:46:af:
b3:9c:d6:cf:55:8e:fd:d4:79:e3:f0:a0:e3:fd:71:
3f:fd:49:3f:96:92:0c:ff:5f:71:a1:8a:9b:31:35:
88:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:93:0F:56:3D:97:01:18:01:ED:85:1E:2F:58:0F:84:6E:EA:6E:92
X509v3 Authority Key Identifier:
keyid:AD:AC:83:0C:CA:A7:47:83:DD:96:1F:AB:24:1A:22:8D:7C:C6:F8:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rayDDMqnR4Pdlh-rJBoijXzG-Ag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/2ZMPVj2XARgB7YUeL1gPhG7qbpI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/rayDDMqnR4Pdlh-rJBoijXzG-Ag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.234.54.0/24
83.234.168.0/23
Signature Algorithm: sha256WithRSAEncryption
5e:70:22:a3:3b:fe:8b:48:e4:d5:14:ac:f6:d8:15:9a:4d:93:
46:a6:67:41:57:56:40:6b:f0:71:5f:e7:c4:87:60:09:28:08:
6d:60:9a:bf:6a:34:d5:3e:81:ba:f1:2c:ed:06:40:6f:93:10:
a8:68:68:bf:08:16:49:be:5f:72:ad:cf:5a:48:65:0e:98:89:
1e:f6:5e:5e:7d:93:c3:b8:cd:b8:67:9b:3c:f6:d2:b6:49:f4:
98:ac:1f:65:3c:3b:e8:ec:97:81:e9:e0:40:08:3c:94:a3:d2:
d5:b8:e1:a2:ba:da:7d:6b:aa:2b:7d:1c:36:fa:8b:11:af:9d:
d4:0c:82:c4:63:11:bf:34:59:16:b5:01:fd:c7:f7:a0:41:15:
76:d4:6e:dd:95:81:25:2c:e8:4d:83:4f:3b:16:e5:7a:fa:75:
1c:60:48:a1:22:19:88:b2:94:d5:14:e0:95:7a:3f:c9:7a:bb:
79:80:9e:46:37:c8:b4:a3:93:71:54:07:ed:6e:86:82:54:43:
8b:2e:fa:91:87:ba:d7:25:7d:74:cd:3b:f2:8b:ee:73:1a:6a:
66:6f:5e:f0:04:1b:3b:77:8e:16:27:af:ed:bd:d1:8c:a9:be:
f7:cf:14:e7:58:52:61:89:79:be:fd:e0:09:83:f7:ec:07:3d:
5a:d1:46:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:51 2024 by rpki-client on console-ams.rpki-client.org