Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/i6ArZpIBpRDSYZmBZkAXuCFDi8Q.roa
File: i6ArZpIBpRDSYZmBZkAXuCFDi8Q.roa (raw, json)
Hash identifier: U8fFF1yCMmE5m1PTkiFime4PZOwo3GpCX911ifp5bv0=
Subject key identifier: 8B:A0:2B:66:92:01:A5:10:D2:61:99:81:66:40:17:B8:21:43:8B:C4
Certificate issuer: /CN=f02dac605f4659718c0a15e1f732cbd4f48aae7b
Certificate serial: 01857030646AFFE316B83954ACE1B01295C8
Authority key identifier: F0:2D:AC:60:5F:46:59:71:8C:0A:15:E1:F7:32:CB:D4:F4:8A:AE:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/i6ArZpIBpRDSYZmBZkAXuCFDi8Q.roa
Signing time: Mon 02 Jan 2023 01:54:57 +0000
ROA not before: Mon 02 Jan 2023 01:54:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30942
IP address blocks: 84.2.79.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:32:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:30:64:6a:ff:e3:16:b8:39:54:ac:e1:b0:12:95:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f02dac605f4659718c0a15e1f732cbd4f48aae7b
Validity
Not Before: Jan 2 01:54:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8ba02b669201a510d2619981664017b821438bc4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:05:f7:8b:08:14:a5:c4:23:21:6d:fc:59:b7:
42:49:a8:67:63:08:cd:34:fd:e8:fd:05:5c:f0:2f:
cc:2d:58:92:d1:22:c8:42:0a:dd:c6:85:fa:2e:33:
47:73:6f:b2:93:03:b9:94:c3:23:63:0d:a7:19:2b:
7a:07:de:b2:b0:c7:d0:2a:4d:5d:e7:72:9d:aa:81:
30:9a:3f:fc:14:6e:39:f8:3f:ee:ca:80:8b:87:6c:
40:3f:d7:bc:d8:36:88:c8:fc:06:f6:0a:30:d3:ef:
0b:bd:15:3b:84:5b:c7:36:0a:5a:6e:99:46:89:f7:
c3:3f:42:63:04:40:d4:ae:54:e2:2a:da:db:32:1d:
0c:b7:b1:5a:18:b5:06:ca:71:1d:85:da:ee:fe:2f:
57:e0:7e:98:5a:5c:99:01:65:76:f5:9f:87:fc:34:
ba:2a:a9:a2:00:c9:53:3f:9a:f1:7f:f1:a5:1d:43:
42:8e:7c:af:91:cd:ee:05:73:84:8c:d4:5d:41:d2:
79:f0:1d:85:d5:90:8f:ca:64:33:74:e2:f1:39:f9:
3e:9c:2e:3d:d3:52:e3:09:2b:14:f1:c0:ab:98:a4:
8c:09:7b:c1:fc:c3:19:ac:be:45:2f:0e:03:b1:dc:
f2:76:e5:cb:4a:2c:c3:36:4a:88:da:c4:ad:7e:f9:
37:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:A0:2B:66:92:01:A5:10:D2:61:99:81:66:40:17:B8:21:43:8B:C4
X509v3 Authority Key Identifier:
keyid:F0:2D:AC:60:5F:46:59:71:8C:0A:15:E1:F7:32:CB:D4:F4:8A:AE:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/i6ArZpIBpRDSYZmBZkAXuCFDi8Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/8C2sYF9GWXGMChXh9zLL1PSKrns.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.2.79.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:46:5f:8c:dc:80:7c:89:e4:10:95:10:93:f2:e6:b1:3d:36:
a5:be:32:c8:79:da:48:17:9d:56:b1:90:b0:5b:00:48:5c:d5:
41:48:fa:6e:0e:7f:ec:6a:58:45:bf:5d:9d:82:5d:05:8c:62:
d7:24:a9:6a:66:17:c3:65:29:ef:3b:cd:45:eb:d9:0b:47:fc:
d4:8c:6a:3d:d1:c0:3c:08:ea:9c:90:01:7d:e6:e1:b0:73:0b:
ea:78:fd:4f:15:5f:b5:a8:8e:ad:29:01:d5:3c:45:63:61:8e:
9c:02:f5:72:50:d8:cd:40:6e:1a:60:8b:b3:28:6d:23:23:88:
df:94:2b:15:61:f7:c8:24:38:5b:40:a3:bb:d1:9f:22:46:7a:
6c:4f:d5:a5:89:9d:51:83:58:80:6a:79:68:24:f0:db:d3:44:
83:84:44:0f:4f:64:7f:76:e8:7d:14:9a:37:ed:d8:ba:b1:5f:
92:f9:c2:56:23:bd:78:b5:90:2c:ea:fe:2e:76:c3:de:d1:d2:
b2:8c:83:2c:f3:ae:3b:c4:ad:83:cd:07:e3:23:d2:b6:18:a8:
a7:f3:a4:57:52:2e:50:4c:c2:b9:67:c5:66:bb:85:32:17:70:
3e:53:3b:4e:36:07:97:24:4c:c8:66:36:25:8a:56:85:b5:b9:
57:94:4a:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:47 2024 by rpki-client on console-fra.rpki-client.org