Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/26b47b-f2ce-4f2b-9d33-45579e418ff7/1/DFc2QbfndITYjuxbiFuWuPK-XA0.roa
File: DFc2QbfndITYjuxbiFuWuPK-XA0.roa (raw, json)
Hash identifier: p/BihP/BAI4h7lgHh4Gv3ho4RTp5hgHhuDofIeIt1zQ=
Subject key identifier: 0C:57:36:41:B7:E7:74:84:D8:8E:EC:5B:88:5B:96:B8:F2:BE:5C:0D
Certificate issuer: /CN=d25622457a1be33a01258866a067e0447dfd8964
Certificate serial: 0187A2E7A181B19EC2C20782C251E27D3BD6
Authority key identifier: D2:56:22:45:7A:1B:E3:3A:01:25:88:66:A0:67:E0:44:7D:FD:89:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0lYiRXob4zoBJYhmoGfgRH39iWQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/26b47b-f2ce-4f2b-9d33-45579e418ff7/1/DFc2QbfndITYjuxbiFuWuPK-XA0.roa
Signing time: Fri 21 Apr 2023 08:21:41 +0000
ROA not before: Fri 21 Apr 2023 08:21:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60912
IP address blocks: 83.97.79.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:a2:e7:a1:81:b1:9e:c2:c2:07:82:c2:51:e2:7d:3b:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d25622457a1be33a01258866a067e0447dfd8964
Validity
Not Before: Apr 21 08:21:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0c573641b7e77484d88eec5b885b96b8f2be5c0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:0d:ea:51:f5:51:35:6b:7f:02:9d:b7:da:fe:
b9:4b:9e:f6:8f:62:80:8e:61:1b:7c:a9:51:f8:94:
b9:c2:5d:09:10:93:8f:9f:46:c4:0c:a8:54:9d:52:
5c:08:1e:85:39:b5:d6:60:66:ae:b9:4d:3c:90:aa:
22:86:f4:e3:8b:cc:b6:52:51:0c:15:c6:35:ca:e9:
f2:48:0e:5e:27:21:0b:a2:8b:9b:1d:d2:5a:44:d2:
00:3a:70:5a:01:a5:5d:26:37:7e:83:e5:35:77:6f:
6a:d3:29:45:e3:99:78:47:92:2d:25:24:3a:78:30:
73:83:b6:29:67:9e:27:a1:47:0d:77:e4:64:f0:b9:
dc:65:4a:ad:88:ac:40:bc:76:a6:61:a8:62:a5:14:
65:15:b4:40:86:f2:f6:ce:ba:4b:a8:ec:2c:e8:b2:
f2:d1:b2:9d:c9:a7:73:8f:d2:aa:28:19:b6:ab:fd:
6c:fb:77:c1:74:85:2d:c6:fc:d6:bb:d4:18:33:35:
95:c3:1b:87:dc:d7:21:ec:d7:9f:99:55:8e:0f:0a:
17:18:c0:10:1b:78:25:60:cc:c5:ca:6f:7c:f3:b2:
94:11:f8:33:7e:99:79:91:86:e5:bf:54:83:f0:fc:
64:f1:91:db:43:27:b1:30:62:5f:68:b5:5c:53:bf:
94:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:57:36:41:B7:E7:74:84:D8:8E:EC:5B:88:5B:96:B8:F2:BE:5C:0D
X509v3 Authority Key Identifier:
keyid:D2:56:22:45:7A:1B:E3:3A:01:25:88:66:A0:67:E0:44:7D:FD:89:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0lYiRXob4zoBJYhmoGfgRH39iWQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/26b47b-f2ce-4f2b-9d33-45579e418ff7/1/DFc2QbfndITYjuxbiFuWuPK-XA0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/26b47b-f2ce-4f2b-9d33-45579e418ff7/1/0lYiRXob4zoBJYhmoGfgRH39iWQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.97.79.0/24
Signature Algorithm: sha256WithRSAEncryption
51:f5:23:77:d2:d8:f3:c0:1c:a9:4d:fc:74:ad:20:88:51:cc:
60:66:19:3e:4d:da:19:47:0d:e5:27:ce:8a:e9:d0:a2:5a:13:
7c:61:96:d6:c8:90:3a:2a:12:56:48:09:d8:b9:b3:85:6b:98:
1f:47:ac:76:60:ce:4b:43:5d:f6:29:72:33:53:66:cd:fc:9f:
f2:b1:7d:f3:2f:f2:bb:c1:57:5b:0f:bd:99:ae:9d:8f:ae:8b:
b5:6e:11:33:de:a9:80:d0:7a:1c:c3:0d:24:1b:f5:02:1f:16:
1c:85:63:e9:f7:f6:12:a9:99:e1:f4:2f:78:7d:19:24:51:4f:
03:c5:a5:aa:9c:c7:3f:01:2a:b4:fa:0a:d6:7a:c8:10:04:06:
29:0b:65:e0:9e:28:8a:3f:47:c3:21:88:55:c7:24:89:73:80:
59:de:9b:51:da:7e:e0:87:b1:11:1b:90:e0:a6:75:32:65:92:
f5:07:54:0e:8a:a2:a1:01:87:f1:e7:15:63:09:54:9a:dd:a2:
ca:65:97:b1:8c:9b:c4:fe:90:3e:ac:38:1c:24:b3:92:9d:1d:
b9:2d:31:88:84:78:8b:18:44:39:4a:4b:58:84:c2:e4:77:dc:
0f:d7:4f:59:a1:54:de:74:a9:0b:20:ea:67:06:58:fe:33:0e:
88:b9:27:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:49 2023 by rpki-client on console-ams.rpki-client.org