Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/Uaoxvoc9b6AyNn8NtniNMheN9IY.roa
File: Uaoxvoc9b6AyNn8NtniNMheN9IY.roa (raw, json)
Hash identifier: LQ9u+GoOvRd+8+lrGyVqsUEVOGiWG/Tvk80yq18webg=
Subject key identifier: 51:AA:31:BE:87:3D:6F:A0:32:36:7F:0D:B6:78:8D:32:17:8D:F4:86
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 01856CE65E7AF158202ECB2A7CC400A9961D
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/Uaoxvoc9b6AyNn8NtniNMheN9IY.roa
Signing time: Sun 01 Jan 2023 10:35:14 +0000
ROA not before: Sun 01 Jan 2023 10:35:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57705
IP address blocks: 83.228.102.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:e6:5e:7a:f1:58:20:2e:cb:2a:7c:c4:00:a9:96:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Jan 1 10:35:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=51aa31be873d6fa032367f0db6788d32178df486
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:3e:22:1b:86:09:ac:56:61:d7:fc:44:8e:b0:
7d:b0:a1:58:88:51:86:81:70:c9:a6:fa:5d:8a:0f:
11:d5:1e:4b:0b:fd:62:18:5d:39:78:57:32:c1:d5:
e7:ae:e2:ed:df:32:eb:6c:d9:9a:12:6d:56:74:62:
45:fa:a7:32:6a:3b:6b:fe:92:61:24:06:cc:0c:d4:
4a:77:e7:48:c9:26:d2:d3:6e:04:1f:75:a3:e6:74:
da:e2:64:74:c9:dd:3a:36:f3:58:8b:7e:be:61:d9:
8d:f8:d5:79:19:d1:fa:e2:7f:88:bc:6e:ea:4b:56:
40:52:c8:8d:a7:ac:bf:05:b8:b7:12:6b:10:4c:7b:
e6:b5:fe:a1:68:4c:50:04:8b:29:a7:d5:ab:1e:d2:
04:bc:16:47:6a:71:7c:a8:a9:a9:e8:a3:4c:0a:38:
8e:ce:15:23:93:3a:8c:74:ca:79:a2:a2:a3:d5:86:
6b:09:77:af:22:72:5a:8e:91:fb:3a:c8:8d:5b:2d:
f3:42:fd:a4:e5:be:11:43:c1:61:58:bd:4e:da:53:
8c:dd:68:f9:02:0b:6e:23:f4:8c:38:1c:27:40:84:
65:13:9f:61:42:36:7e:2c:de:68:15:30:bb:22:87:
3f:5e:a1:c2:60:2c:63:1f:e5:22:49:6a:fb:44:4a:
14:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:AA:31:BE:87:3D:6F:A0:32:36:7F:0D:B6:78:8D:32:17:8D:F4:86
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/Uaoxvoc9b6AyNn8NtniNMheN9IY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.228.102.0/24
Signature Algorithm: sha256WithRSAEncryption
56:04:82:8a:d6:28:68:5c:29:76:09:fd:34:90:b7:94:c0:e6:
49:15:9d:55:08:62:18:ff:ee:fc:13:5f:6d:f3:b5:be:96:e0:
5e:29:d0:7e:c4:ed:7d:f0:5c:a8:6a:0e:03:6c:56:d7:31:97:
b2:e4:1f:02:a7:67:79:3d:3e:51:3d:46:21:83:30:6f:91:5e:
52:d7:3f:b4:79:c4:b6:bf:1f:a7:b0:c6:78:ea:6f:26:d5:e9:
b8:cd:d9:28:04:85:86:5f:57:03:7d:74:f2:d0:3a:53:06:69:
0f:d2:ef:c2:a8:d7:92:02:86:d3:b1:c1:df:56:55:69:dd:e5:
f1:22:bf:fd:65:7c:dc:f9:f4:26:ca:70:43:28:df:e4:f3:8a:
a3:6a:f4:b1:26:47:26:05:7d:4d:45:c9:2a:19:46:8d:fc:28:
cb:43:f3:10:d1:05:64:5d:99:da:76:87:7b:5b:2b:18:a7:16:
ff:a9:f6:24:d5:50:27:88:d8:c7:e1:b2:55:2b:52:d8:30:d0:
9f:3a:3f:86:e4:94:ea:ec:60:02:27:c3:99:ab:e5:ac:53:e3:
80:e0:74:67:66:60:55:4f:ab:d9:5c:2f:64:75:d2:f3:58:34:
2a:82:fb:7b:68:9e:5b:45:d4:ff:4a:2b:a5:c3:f8:85:f1:48:
59:12:9c:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:53 2024 by rpki-client on console-ams.rpki-client.org