Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/4dd169-8dcb-4653-8a03-571b6c612bec/1/IZNu6I4b2WLd5NhKGvHCWaURNVA.roa
File: IZNu6I4b2WLd5NhKGvHCWaURNVA.roa (raw, json)
Hash identifier: EOROsA1ntKjHkrvvOVFKWkXWhDd664KmOR6gvIsreJY=
Subject key identifier: 21:93:6E:E8:8E:1B:D9:62:DD:E4:D8:4A:1A:F1:C2:59:A5:11:35:50
Certificate issuer: /CN=b541558181f7863119bf4a1554c75dab1f6c5292
Certificate serial: 0190D681A4E66A17D1D0C3D5752EAB001133
Authority key identifier: B5:41:55:81:81:F7:86:31:19:BF:4A:15:54:C7:5D:AB:1F:6C:52:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tUFVgYH3hjEZv0oVVMddqx9sUpI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/4dd169-8dcb-4653-8a03-571b6c612bec/1/IZNu6I4b2WLd5NhKGvHCWaURNVA.roa
Signing time: Sun 21 Jul 2024 18:15:38 +0000
ROA not before: Sun 21 Jul 2024 18:15:38 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215826
IP address blocks: 83.217.208.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 26 Aug 2024 13:28:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:d6:81:a4:e6:6a:17:d1:d0:c3:d5:75:2e:ab:00:11:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b541558181f7863119bf4a1554c75dab1f6c5292
Validity
Not Before: Jul 21 18:15:38 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=21936ee88e1bd962dde4d84a1af1c259a5113550
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:e3:46:d6:0d:cc:93:da:67:35:06:47:66:6a:
d7:f9:3c:16:33:b1:a8:76:90:f5:0f:dc:b4:f4:c6:
40:01:73:c2:cb:c8:3e:12:58:04:27:6f:9b:04:a5:
20:9a:e3:65:9a:cd:7f:eb:63:a5:09:7e:b2:69:0a:
90:44:16:07:c6:9e:47:01:ee:09:fe:15:4c:17:e0:
38:4c:4c:1e:f8:54:6f:19:0f:b5:0f:da:ef:8e:2b:
b8:6a:66:af:9b:ec:a4:f7:26:97:37:36:88:67:cf:
f3:3e:1c:7e:8b:9c:90:85:bc:46:da:9b:3b:af:14:
9c:19:28:50:95:80:4b:00:fd:c3:23:93:5d:a6:6c:
7f:65:8c:3a:16:39:d0:30:b6:d1:af:ca:bd:0b:94:
3f:ab:c2:5b:96:ca:31:be:45:31:f2:8f:80:9e:4f:
c0:54:68:a4:53:07:3b:3d:5c:e5:e0:f1:a7:29:be:
dc:33:e9:4c:ec:61:a9:ff:6b:da:7f:24:d2:58:06:
51:e8:f9:37:fc:3a:11:20:d1:69:d7:e0:7a:e4:39:
59:7d:5d:c3:88:83:40:6c:10:e3:d9:a6:2e:bb:7b:
8e:5d:1d:e9:9c:27:ad:3e:cb:95:7f:48:e2:f9:5e:
36:28:59:e3:fc:65:05:d1:75:4b:21:3d:41:4c:05:
7c:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:93:6E:E8:8E:1B:D9:62:DD:E4:D8:4A:1A:F1:C2:59:A5:11:35:50
X509v3 Authority Key Identifier:
keyid:B5:41:55:81:81:F7:86:31:19:BF:4A:15:54:C7:5D:AB:1F:6C:52:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tUFVgYH3hjEZv0oVVMddqx9sUpI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/4dd169-8dcb-4653-8a03-571b6c612bec/1/IZNu6I4b2WLd5NhKGvHCWaURNVA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/4dd169-8dcb-4653-8a03-571b6c612bec/1/tUFVgYH3hjEZv0oVVMddqx9sUpI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.217.208.0/23
Signature Algorithm: sha256WithRSAEncryption
3a:f8:a8:ba:af:72:8f:00:9d:48:75:2f:14:61:8f:39:55:34:
2a:aa:72:fe:d5:a5:68:88:c0:94:8b:4a:3b:5a:7c:a0:a7:01:
20:f0:ac:4f:50:e8:8a:28:ce:96:9e:fe:14:06:e9:12:a1:f0:
5a:1e:fb:5b:31:9b:7f:6d:8d:be:c8:7b:b4:9b:29:ac:d4:7a:
e5:57:4f:ca:84:34:df:db:33:9b:b0:d7:03:58:4d:b1:31:78:
39:d7:f8:ec:e3:38:d4:ef:ab:1a:c8:24:80:2d:5c:b1:68:58:
9d:6a:59:80:8b:f2:0f:61:33:c7:f7:57:8d:7b:ad:dd:7e:bb:
a7:0e:ae:4c:af:5e:7f:7d:b2:07:4b:e2:fd:c3:d3:1f:4f:fc:
ed:a1:71:41:8b:c3:53:b1:c0:e9:bb:b5:ba:06:97:b5:09:67:
ef:2b:93:93:83:5c:2d:42:61:ee:51:b9:09:40:de:e2:0e:b9:
4a:8b:08:ac:86:2c:dc:44:ae:4f:b3:12:4d:db:79:64:7f:34:
fc:ae:40:99:2c:67:09:55:39:7c:22:c7:3f:e0:95:34:bc:99:
89:a4:68:01:14:37:01:0a:46:ff:cf:36:0b:40:ec:93:a3:0c:
8f:c9:2d:c7:dd:ea:a2:ad:97:b6:94:99:7b:ea:c5:9d:bb:00:
90:a2:a2:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 16:54:15 2024 by rpki-client on console-fra.rpki-client.org