Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/15abc3-c4e3-4ba9-82ae-5f620b38b908/1/OF3QatKXN4IyRN8Rv5afyxQeAZg.roa
File: OF3QatKXN4IyRN8Rv5afyxQeAZg.roa (raw, json)
Hash identifier: RTJyTe5rjJgrBdrbBI/3Gx9PX1b1eqdwsEsrMZnarhI=
Subject key identifier: 38:5D:D0:6A:D2:97:37:82:32:44:DF:11:BF:96:9F:CB:14:1E:01:98
Certificate issuer: /CN=dc167379b591e95710cf7f31de2ec73ffbfb5ae7
Certificate serial: 018A8DACD9FF72C5E7A948EFDB412E4F3A81
Authority key identifier: DC:16:73:79:B5:91:E9:57:10:CF:7F:31:DE:2E:C7:3F:FB:FB:5A:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3BZzebWR6VcQz38x3i7HP_v7Wuc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/15abc3-c4e3-4ba9-82ae-5f620b38b908/1/OF3QatKXN4IyRN8Rv5afyxQeAZg.roa
Signing time: Wed 13 Sep 2023 08:33:50 +0000
ROA not before: Wed 13 Sep 2023 08:33:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216315
IP address blocks: 83.220.30.0/23 maxlen: 23
2a13:abc0::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:8d:ac:d9:ff:72:c5:e7:a9:48:ef:db:41:2e:4f:3a:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc167379b591e95710cf7f31de2ec73ffbfb5ae7
Validity
Not Before: Sep 13 08:33:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=385dd06ad29737823244df11bf969fcb141e0198
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:c9:3f:8a:2b:c2:cc:a0:c5:bf:4e:df:5b:4c:
a6:ed:3a:9d:d8:8c:b3:2b:16:87:9d:b9:f6:81:7f:
16:e1:c6:81:4a:fd:5f:2a:5f:63:80:57:26:2b:41:
78:89:1f:98:95:dc:0e:8a:72:21:1b:c2:d1:53:ea:
2a:b6:06:25:94:90:ba:9a:e3:ae:e9:40:c3:40:99:
09:27:75:f2:3e:63:c8:8f:31:cb:c0:1d:10:6b:43:
48:47:3c:89:2d:61:ee:1c:bf:c8:67:27:f5:26:69:
90:e7:27:2b:25:aa:eb:c4:1f:d1:d3:de:71:fd:00:
26:d9:15:d4:0a:35:36:12:39:9d:f2:c8:76:a9:d6:
ac:3a:a9:55:36:ad:61:c6:24:23:f9:8e:dc:60:04:
49:9d:b6:2f:95:c0:a3:08:c9:5c:ab:bd:77:f1:3c:
78:ce:1a:a8:52:6e:3f:5b:50:93:33:df:5c:10:01:
a1:d0:8a:6a:39:11:b4:3f:e0:70:4b:3a:8d:5d:93:
6b:ed:d8:ec:fe:04:2a:8a:c0:bc:19:a2:fd:e3:a7:
0b:c3:f8:7d:ce:32:09:02:c0:ee:f8:cc:b2:75:b9:
79:f2:b0:b7:bc:1a:c5:29:5d:88:0b:28:96:93:05:
b2:06:24:96:a1:58:f9:c1:6b:10:21:e2:51:48:fe:
98:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:5D:D0:6A:D2:97:37:82:32:44:DF:11:BF:96:9F:CB:14:1E:01:98
X509v3 Authority Key Identifier:
keyid:DC:16:73:79:B5:91:E9:57:10:CF:7F:31:DE:2E:C7:3F:FB:FB:5A:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3BZzebWR6VcQz38x3i7HP_v7Wuc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/15abc3-c4e3-4ba9-82ae-5f620b38b908/1/OF3QatKXN4IyRN8Rv5afyxQeAZg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/15abc3-c4e3-4ba9-82ae-5f620b38b908/1/3BZzebWR6VcQz38x3i7HP_v7Wuc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.220.30.0/23
IPv6:
2a13:abc0::/29
Signature Algorithm: sha256WithRSAEncryption
19:3a:f5:4c:62:72:81:64:10:6b:1b:62:da:5f:5e:7f:ea:a1:
02:bf:dd:42:f1:7d:37:f8:59:1d:16:94:48:44:a4:b8:0e:3d:
b3:ba:b1:be:4d:76:6b:e7:b8:98:04:79:c2:ea:82:af:20:87:
b2:ca:39:3c:32:bc:10:bb:72:12:4b:7b:39:28:a0:71:28:ff:
f9:1c:06:8c:1f:4b:fd:49:f0:94:16:09:e4:b3:c9:07:b5:dc:
e1:68:78:53:ba:93:3a:2b:7a:ab:2f:61:dc:72:72:f8:ef:b5:
a1:bf:b2:33:59:52:09:a7:d2:bf:f3:ae:6c:a2:c6:c9:f7:e1:
77:3e:d3:35:2d:04:eb:c0:be:4d:9b:8f:20:29:76:87:5d:d4:
87:b6:34:bd:29:54:29:02:5e:6c:12:c5:fd:e1:9e:32:c6:b2:
86:a9:2d:b6:94:19:94:81:cd:cf:e2:cc:0a:3b:d5:17:32:22:
2e:26:cc:4c:f1:f9:bf:c9:53:8b:cf:09:bc:ab:0c:a1:71:a7:
0c:77:15:73:5b:66:4d:93:a8:fb:df:4f:b2:d3:9f:a8:06:a1:
76:b9:c3:1c:a8:6f:00:21:0e:7b:8d:ae:21:98:86:3f:8d:b4:
4b:3e:3d:ba:4e:e6:3f:fc:b4:5d:e0:38:67:cf:c4:b6:58:5c:
bd:f6:7a:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:01:20 2024 by rpki-client on console-ams.rpki-client.org