Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/26b47b-f2ce-4f2b-9d33-45579e418ff7/1/P2IUXTtwQlxIFdjvIS609uQSRlo.roa
File: P2IUXTtwQlxIFdjvIS609uQSRlo.roa (raw, json)
Hash identifier: 75JNbKlMJWj1b7yzn2NE4nGtWIlWPMOdQ8cK3A3ciVI=
Subject key identifier: 3F:62:14:5D:3B:70:42:5C:48:15:D8:EF:21:2E:B4:F6:E4:12:46:5A
Certificate issuer: /CN=d25622457a1be33a01258866a067e0447dfd8964
Certificate serial: 0188AE6D32473059375EFFF393AD7D56E175
Authority key identifier: D2:56:22:45:7A:1B:E3:3A:01:25:88:66:A0:67:E0:44:7D:FD:89:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0lYiRXob4zoBJYhmoGfgRH39iWQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/26b47b-f2ce-4f2b-9d33-45579e418ff7/1/P2IUXTtwQlxIFdjvIS609uQSRlo.roa
Signing time: Mon 12 Jun 2023 07:06:11 +0000
ROA not before: Mon 12 Jun 2023 07:06:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62005
IP address blocks: 83.97.79.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:ae:6d:32:47:30:59:37:5e:ff:f3:93:ad:7d:56:e1:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d25622457a1be33a01258866a067e0447dfd8964
Validity
Not Before: Jun 12 07:06:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3f62145d3b70425c4815d8ef212eb4f6e412465a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:e7:ea:c5:32:73:3a:6b:82:18:54:ce:b2:fb:
34:1a:64:10:10:7d:8f:62:4c:c8:ae:b5:21:04:25:
d6:17:44:4a:bb:d2:db:dc:8e:3e:a5:1e:7f:d9:d9:
a6:d1:6a:98:5b:f2:70:62:9c:97:cb:10:c7:c9:db:
c0:76:36:d6:35:a8:d9:6e:2a:22:29:5c:dc:58:8d:
51:ce:05:97:98:af:00:23:28:5b:fb:de:59:46:bb:
15:ee:87:24:1d:55:d3:80:a0:67:1f:8f:f8:58:b9:
53:2c:2d:80:76:d1:21:c8:16:ef:cc:90:92:10:3c:
ac:c2:4d:66:10:cf:8b:78:69:de:21:88:50:a4:9c:
6f:fd:50:50:8e:c9:32:3f:e2:24:df:6e:17:36:48:
7a:e5:f6:d7:e0:0e:49:f2:5f:49:aa:1f:55:7e:be:
e8:02:75:cb:28:0a:ef:af:eb:a6:e1:cb:28:76:d3:
ce:86:bb:93:1f:4f:a8:bd:33:c4:b3:26:79:1f:e9:
a8:5e:13:de:ce:2a:0e:60:71:c7:c8:f9:4b:4d:f9:
e4:df:c3:16:74:e4:1a:c1:03:d0:6a:d1:eb:0e:8a:
8a:8b:21:47:1a:78:5c:32:64:0c:60:cf:67:3c:30:
f0:9e:1a:34:79:4c:2e:63:41:d0:4d:17:23:0d:c2:
77:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:62:14:5D:3B:70:42:5C:48:15:D8:EF:21:2E:B4:F6:E4:12:46:5A
X509v3 Authority Key Identifier:
keyid:D2:56:22:45:7A:1B:E3:3A:01:25:88:66:A0:67:E0:44:7D:FD:89:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0lYiRXob4zoBJYhmoGfgRH39iWQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/26b47b-f2ce-4f2b-9d33-45579e418ff7/1/P2IUXTtwQlxIFdjvIS609uQSRlo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/26b47b-f2ce-4f2b-9d33-45579e418ff7/1/0lYiRXob4zoBJYhmoGfgRH39iWQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.97.79.0/24
Signature Algorithm: sha256WithRSAEncryption
76:1b:af:bc:a3:1e:6c:05:cd:44:79:59:b7:99:54:f2:65:8a:
5c:54:85:92:15:84:cf:86:7c:e6:a4:41:cb:9e:8c:44:a1:27:
08:65:ab:7c:ff:b4:97:22:a3:8c:a4:fc:3c:ce:c6:47:9e:2a:
aa:a0:19:8c:02:3e:1f:af:12:4e:b6:a7:0b:04:c5:0f:26:e8:
90:57:cd:9e:da:63:78:64:76:a5:9e:92:fc:1d:e7:61:e2:bf:
99:64:35:1c:02:07:1e:6c:11:ba:cf:d5:bb:c8:0a:db:75:ad:
f0:43:fe:cb:b6:ac:4b:46:94:19:ad:e4:a4:ca:67:41:8b:0a:
13:d6:68:cc:b0:7a:7d:29:93:12:6c:40:fd:eb:44:b0:59:29:
96:ae:2e:1c:27:7e:71:fb:f7:6b:a2:8a:19:3c:84:a6:03:13:
81:0e:52:cf:f3:3d:1b:f0:6a:ef:ae:3f:b3:3f:f3:f0:97:51:
e0:6e:f9:e5:11:12:13:03:c3:8c:93:c9:c0:1a:48:c9:47:cb:
6e:a7:73:70:ad:a7:a1:1b:46:88:a0:c0:80:c0:3c:ec:e6:61:
8e:56:e1:09:51:47:9a:9d:62:53:ea:8b:00:30:8e:0f:40:9c:
3b:b4:4c:a7:35:e9:82:54:f8:93:1b:c7:4e:ef:d3:87:a3:2e:
de:24:54:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 04:10:21 2024 by rpki-client on console-ams.rpki-client.org