Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/f0078e-d0c7-428e-9524-ecaf578a34e3/1/vcDiNNFpA-OF8vbGroPIEERfeCQ.roa
File: vcDiNNFpA-OF8vbGroPIEERfeCQ.roa (raw, json)
Hash identifier: 2zaF4kTXkHo0KqD+k0cZ7V3TyYFz/gjl5vSBNj+H1Kk=
Subject key identifier: BD:C0:E2:34:D1:69:03:E3:85:F2:F6:C6:AE:83:C8:10:44:5F:78:24
Certificate issuer: /CN=612c1c53f6c1d996236cbb37ba3247670399a62d
Certificate serial: 01856EEFCA29C35E2A41482B40F16180564A
Authority key identifier: 61:2C:1C:53:F6:C1:D9:96:23:6C:BB:37:BA:32:47:67:03:99:A6:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YSwcU_bB2ZYjbLs3ujJHZwOZpi0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/f0078e-d0c7-428e-9524-ecaf578a34e3/1/vcDiNNFpA-OF8vbGroPIEERfeCQ.roa
Signing time: Sun 01 Jan 2023 20:04:46 +0000
ROA not before: Sun 01 Jan 2023 20:04:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49215
IP address blocks: 83.220.0.0/21 maxlen: 21
83.220.9.0/24 maxlen: 24
83.220.11.0/24 maxlen: 24
83.220.10.0/24 maxlen: 24
83.220.12.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:30:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:ef:ca:29:c3:5e:2a:41:48:2b:40:f1:61:80:56:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=612c1c53f6c1d996236cbb37ba3247670399a62d
Validity
Not Before: Jan 1 20:04:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bdc0e234d16903e385f2f6c6ae83c810445f7824
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:3c:de:ea:64:36:a6:9f:96:c0:5a:fc:6c:20:
c9:99:59:4a:e6:a0:95:5b:2a:f0:4e:a0:84:08:52:
e2:04:2f:f5:59:7e:5c:09:1e:97:7e:73:60:f4:41:
82:e9:8b:da:87:c7:30:b1:98:b4:a1:7a:07:6a:fe:
98:c5:3f:b2:db:a9:5a:65:8b:db:0e:63:81:9f:88:
c5:f1:25:fb:19:9f:07:d3:ce:d1:c3:08:6a:f7:41:
1f:99:4b:9a:47:b8:f9:06:02:93:d5:f5:f3:0e:72:
b8:c8:b3:cc:09:22:97:e0:98:e6:c1:3b:f0:97:e7:
08:2c:94:13:36:a6:ca:d5:44:87:55:d6:dc:18:d5:
fb:ac:c1:81:84:75:33:02:f9:45:9c:ec:3e:16:7e:
ce:c2:4a:cc:71:e3:3d:54:f2:03:b5:5e:5c:a8:0b:
e0:67:ba:af:55:05:52:0d:05:08:83:4b:8f:6e:7b:
98:01:13:7a:6e:e3:5c:2f:c3:73:79:ac:79:d0:86:
4c:52:1e:b8:92:c2:fe:d6:01:88:57:e1:76:49:ab:
34:b7:b2:8a:53:7f:76:9f:00:3f:bd:21:20:0c:a5:
cc:13:5e:8c:c2:15:83:45:d1:75:4b:50:d6:b0:ec:
e4:de:78:6d:1c:1c:16:8c:94:95:a7:d0:99:cf:4d:
e8:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:C0:E2:34:D1:69:03:E3:85:F2:F6:C6:AE:83:C8:10:44:5F:78:24
X509v3 Authority Key Identifier:
keyid:61:2C:1C:53:F6:C1:D9:96:23:6C:BB:37:BA:32:47:67:03:99:A6:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YSwcU_bB2ZYjbLs3ujJHZwOZpi0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/f0078e-d0c7-428e-9524-ecaf578a34e3/1/vcDiNNFpA-OF8vbGroPIEERfeCQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/f0078e-d0c7-428e-9524-ecaf578a34e3/1/YSwcU_bB2ZYjbLs3ujJHZwOZpi0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.220.0.0/21
83.220.9.0-83.220.15.255
Signature Algorithm: sha256WithRSAEncryption
27:d9:5b:a0:d1:dd:15:78:09:2f:9a:b4:c7:98:7b:39:57:6e:
5e:3f:ab:ff:4c:96:e8:36:4a:cd:ce:f6:5d:11:e2:ce:07:bc:
6c:2a:ae:85:9a:69:3e:e7:5b:b0:3e:61:04:21:6d:ed:30:fd:
1d:ff:2d:bf:6f:c3:a0:34:bd:fb:fb:51:b2:7c:93:d6:c1:72:
35:35:ac:ea:89:de:35:2d:0d:9d:de:43:c7:22:44:92:90:3b:
ae:a1:a7:e9:d6:14:75:23:5d:26:af:12:a4:63:52:39:1f:12:
e9:28:ee:c8:8b:17:25:d9:02:80:24:d8:74:dc:1d:40:3a:f9:
ff:7d:45:c6:b8:c6:1e:75:46:94:a6:9e:1c:21:69:3b:d2:02:
92:8f:07:18:34:af:a9:43:77:67:2c:1b:29:2f:11:db:c5:dc:
3b:5e:6d:c4:71:31:bd:c9:01:91:a6:ab:eb:83:38:35:51:26:
07:27:6f:4e:ac:eb:ae:fc:4a:21:36:54:60:0f:66:95:f9:1c:
00:2c:92:f1:05:34:20:ea:d0:1e:2a:b4:8f:45:c6:0e:6d:ff:
6f:dc:d6:ec:67:92:c1:0f:c0:56:ba:ee:8a:44:89:0a:98:41:
f6:02:64:78:de:2b:6b:51:f7:0c:9a:64:3c:5c:77:70:4f:3e:
97:07:7d:ea
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:35 2024 by rpki-client on console-ams.rpki-client.org