Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/PS0LyrspwfZ4Ob2mXujT01jQgV8.roa
File: PS0LyrspwfZ4Ob2mXujT01jQgV8.roa (raw, json)
Hash identifier: NS9f2F01DJ5GCn1fZQwTmSm1m00Mh/y0x+YpDtCxkTA=
Subject key identifier: 3D:2D:0B:CA:BB:29:C1:F6:78:39:BD:A6:5E:E8:D3:D3:58:D0:81:5F
Certificate issuer: /CN=1fe90fde9784a91d93a7a2af59d4d043f1171fba
Certificate serial: 01856D6646E957C802A809F2A00B9780366A
Authority key identifier: 1F:E9:0F:DE:97:84:A9:1D:93:A7:A2:AF:59:D4:D0:43:F1:17:1F:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H-kP3peEqR2Tp6KvWdTQQ_EXH7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/PS0LyrspwfZ4Ob2mXujT01jQgV8.roa
Signing time: Sun 01 Jan 2023 12:54:57 +0000
ROA not before: Sun 01 Jan 2023 12:54:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60799
IP address blocks: 82.98.231.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:66:46:e9:57:c8:02:a8:09:f2:a0:0b:97:80:36:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1fe90fde9784a91d93a7a2af59d4d043f1171fba
Validity
Not Before: Jan 1 12:54:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3d2d0bcabb29c1f67839bda65ee8d3d358d0815f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:7c:7e:32:d1:0b:b5:77:55:eb:e6:d2:70:be:
c1:e7:c8:ce:7b:bc:81:b9:45:6e:35:aa:d2:14:d5:
b7:ae:43:f8:2b:ba:f7:c4:62:cf:0f:b1:a1:83:e5:
47:01:7f:9d:52:ee:97:ea:dc:1e:26:46:03:64:5e:
53:69:a7:e2:38:41:71:a2:ff:d3:54:41:6a:c3:cf:
ca:f0:9d:2a:a6:04:10:b7:d6:68:46:6a:42:d2:00:
a8:62:4f:c7:4c:04:94:c4:b2:d2:61:a7:c4:ff:09:
08:6e:9e:bf:84:d4:2e:59:a0:a2:d9:bb:88:a8:bf:
ec:9a:5a:7a:08:e4:54:9b:9c:9e:a0:41:74:f1:48:
5a:a4:1e:4b:8c:94:11:0c:43:f7:f0:8b:b9:4c:86:
e5:d3:48:74:6d:73:7d:7f:27:89:87:a6:e6:19:71:
32:e5:83:45:a6:89:3e:f3:27:a1:c9:31:a9:e4:64:
61:25:d0:a4:e6:de:3b:09:b5:e6:d3:bf:2b:ca:5b:
b8:14:bc:0e:d8:79:18:9d:47:d3:0e:02:2b:9b:a6:
2a:1c:37:4b:da:80:bb:c7:ff:61:52:8c:78:f4:62:
50:ab:a4:92:4f:80:b2:03:ce:b3:a2:01:9d:b7:d2:
96:ae:18:da:4b:fd:b9:aa:61:af:97:c9:48:4c:47:
73:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:2D:0B:CA:BB:29:C1:F6:78:39:BD:A6:5E:E8:D3:D3:58:D0:81:5F
X509v3 Authority Key Identifier:
keyid:1F:E9:0F:DE:97:84:A9:1D:93:A7:A2:AF:59:D4:D0:43:F1:17:1F:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H-kP3peEqR2Tp6KvWdTQQ_EXH7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/PS0LyrspwfZ4Ob2mXujT01jQgV8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/H-kP3peEqR2Tp6KvWdTQQ_EXH7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.98.231.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:38:30:f8:a7:d0:30:37:32:ff:47:95:59:44:a1:8d:99:35:
0a:1c:66:40:1a:64:3b:ea:81:69:63:4d:20:3c:3c:91:b4:d9:
4c:88:0d:62:fc:65:e3:94:df:c5:23:ee:e7:8c:04:e1:04:a0:
05:17:b2:b5:bb:af:e5:bd:a1:84:01:23:71:57:e1:b2:65:45:
f0:8e:6d:58:b2:42:f7:e6:85:de:91:0d:fb:a6:00:38:87:d7:
45:c0:70:1e:68:12:58:ee:b7:66:14:62:a1:2f:cc:f0:7e:09:
92:68:0c:6d:1b:8e:e3:af:e2:06:69:33:b8:e9:13:6a:4b:3d:
1b:0f:b8:40:88:a3:6e:84:8d:ce:dc:7c:4b:1b:d6:6a:e3:b6:
95:4b:5c:8f:52:39:10:0f:34:f9:75:48:ef:c3:8e:fb:24:14:
ac:78:07:4e:81:e4:9d:33:bf:f8:ad:2e:ff:6c:f3:4b:da:4e:
75:34:bd:c2:27:50:0a:72:76:1f:da:db:b7:53:cb:d8:60:13:
72:28:7d:b3:04:2b:60:9d:6b:15:e6:b9:06:04:4d:70:9d:d0:
17:85:a5:dd:86:2d:e8:aa:b8:e9:7b:c2:a6:bd:b2:51:5b:19:
b3:79:fc:ca:9a:1c:cb:f1:c1:db:dc:fd:50:68:6c:09:1e:66:
81:c5:a0:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 17:26:13 2024 by rpki-client on console-fra.rpki-client.org