Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/ebAf3tuUCuY0x-GxRBrU4eFqyZY.roa
File: ebAf3tuUCuY0x-GxRBrU4eFqyZY.roa (raw, json)
Hash identifier: EV8kzOqSTOuCMRBRbfOcUyrfdMJ63DvETRo9bHsip1Y=
Subject key identifier: 79:B0:1F:DE:DB:94:0A:E6:34:C7:E1:B1:44:1A:D4:E1:E1:6A:C9:96
Certificate issuer: /CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Certificate serial: 018B3D2DB1EAB5260365EF3DBBCD2F388F6A
Authority key identifier: 38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/ebAf3tuUCuY0x-GxRBrU4eFqyZY.roa
Signing time: Tue 17 Oct 2023 10:28:06 +0000
ROA not before: Tue 17 Oct 2023 10:28:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3058
IP address blocks: 83.149.192.0/18 maxlen: 18
2a00:db8::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 17 Oct 2023 11:15:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:3d:2d:b1:ea:b5:26:03:65:ef:3d:bb:cd:2f:38:8f:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Validity
Not Before: Oct 17 10:28:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=79b01fdedb940ae634c7e1b1441ad4e1e16ac996
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:80:31:ca:ce:8f:c7:e6:be:72:55:9d:fa:00:
26:fd:32:ec:51:c7:93:d1:25:22:a0:e9:ef:bf:d2:
39:20:15:df:a4:1c:22:af:16:7b:ee:44:7e:1d:49:
ac:29:a2:3c:d3:c1:06:06:b1:65:a1:95:cd:b2:97:
2f:11:36:94:26:c9:79:93:e3:a4:28:53:7e:8c:e6:
e1:bc:b9:68:43:5b:ff:d1:d2:53:1d:07:5c:51:8e:
c1:f5:90:b4:41:36:57:4a:d2:c6:6b:95:b4:a3:ce:
27:2f:bc:af:b6:c1:6d:d3:77:d4:a2:a5:2f:89:25:
d8:c8:06:46:62:52:07:7b:34:96:d3:da:a0:84:60:
94:3b:27:ad:50:b7:06:ef:98:89:a2:71:2d:81:c9:
41:75:9d:32:fd:6d:db:30:ca:62:47:4b:8c:1c:82:
58:c8:0e:88:8d:34:39:8f:f8:b6:df:e7:c7:26:9d:
b9:d1:1e:d1:1f:4e:32:f0:39:1a:35:bb:3e:72:4a:
d0:bb:df:30:01:94:d8:33:44:ac:d6:7f:41:cb:eb:
53:e0:b3:50:d4:62:af:23:3b:f5:2a:61:fa:c6:8c:
e7:bd:ad:1b:04:50:cf:59:3b:31:13:c9:2b:66:e7:
a5:13:ec:46:5f:7b:16:0e:b4:9e:ca:ba:21:1f:29:
29:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:B0:1F:DE:DB:94:0A:E6:34:C7:E1:B1:44:1A:D4:E1:E1:6A:C9:96
X509v3 Authority Key Identifier:
keyid:38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/ebAf3tuUCuY0x-GxRBrU4eFqyZY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/OLIgI7bq1MKWg6n-1Ek9A97ixoU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.149.192.0/18
IPv6:
2a00:db8::/32
Signature Algorithm: sha256WithRSAEncryption
50:2d:e4:a1:ae:c4:f2:0e:dd:88:fa:c6:26:02:d5:32:3b:90:
35:cc:41:af:7a:7a:cf:10:9a:5e:5b:54:16:ea:82:cc:e4:4c:
eb:28:07:77:b3:61:06:b7:a3:4b:4e:4f:1f:a8:18:dd:e1:60:
17:42:d9:b2:18:9a:28:be:6f:a3:33:a1:5c:1e:55:ca:b6:50:
27:85:25:90:c7:e5:63:3e:a6:c1:08:bc:be:27:3f:6b:ca:9d:
fe:aa:59:d8:31:8b:bc:8b:74:b3:39:1b:40:29:57:1b:7e:dd:
cf:1b:16:3e:42:f6:2f:79:e9:1e:10:fd:e2:cf:a9:3b:2c:cf:
52:ef:be:cf:86:f8:70:44:4b:87:e7:56:dc:36:ef:cb:ec:d1:
63:d6:8e:1e:34:5c:1c:ff:f2:11:43:fd:53:51:03:84:89:19:
02:4d:0c:b9:6c:e3:25:09:ec:3b:7b:0b:06:02:8d:03:ba:32:
4c:ce:fc:08:94:32:50:cb:78:4c:d7:8f:42:0a:62:a2:8c:ed:
71:15:e8:b4:7e:68:82:5c:35:08:fd:eb:7a:d2:0f:c9:ae:3e:
b1:39:43:d9:46:84:61:79:fb:2f:5e:4b:90:b6:f1:19:c5:bf:
bd:af:3b:27:1c:a2:ac:f5:47:26:63:7d:0e:3f:20:56:cb:ca:
f4:9d:0c:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:46 2024 by rpki-client on console-fra.rpki-client.org