Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/1af4a5-0d6c-4776-be5c-be852f644201/1/D1IEGFi5hUDHrJ5-SgpRGfv6EiI.roa
File: D1IEGFi5hUDHrJ5-SgpRGfv6EiI.roa (raw, json)
Hash identifier: gGkD0mUqFBBHBkKQCZu+iDccSEErMme9Tb0jZs4BswA=
Subject key identifier: 0F:52:04:18:58:B9:85:40:C7:AC:9E:7E:4A:0A:51:19:FB:FA:12:22
Certificate issuer: /CN=e916dc9db4e49de71b2fd0819dae853aeb053b06
Certificate serial: 018A847CDCE8AA34DA76A9AD7F4992BEF033
Authority key identifier: E9:16:DC:9D:B4:E4:9D:E7:1B:2F:D0:81:9D:AE:85:3A:EB:05:3B:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6RbcnbTknecbL9CBna6FOusFOwY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/1af4a5-0d6c-4776-be5c-be852f644201/1/D1IEGFi5hUDHrJ5-SgpRGfv6EiI.roa
Signing time: Mon 11 Sep 2023 13:44:50 +0000
ROA not before: Mon 11 Sep 2023 13:44:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16276
IP address blocks: 199.83.103.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:84:7c:dc:e8:aa:34:da:76:a9:ad:7f:49:92:be:f0:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e916dc9db4e49de71b2fd0819dae853aeb053b06
Validity
Not Before: Sep 11 13:44:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0f52041858b98540c7ac9e7e4a0a5119fbfa1222
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:c2:45:2c:73:68:f0:3c:55:a8:bf:48:4d:b6:
2d:6c:82:b6:68:c9:09:a0:2e:c0:d8:7b:34:96:c2:
cc:46:ec:39:be:f1:4a:a8:7f:ec:db:d6:3d:75:00:
6f:12:71:85:9c:71:13:33:ac:b6:5d:b1:38:0a:10:
43:e2:e9:98:45:f3:79:cb:c8:de:69:67:3f:7a:e5:
bc:49:f5:9b:57:7d:13:2e:49:22:fb:af:dd:04:c8:
48:57:f6:e6:6a:f1:52:20:d8:39:5f:80:07:a9:f4:
9e:09:d6:a1:4e:dc:47:27:a3:f2:05:00:2a:2d:a6:
6a:73:2c:54:c1:95:fd:e8:1c:c2:19:ec:43:79:75:
a9:79:74:5d:d2:84:a4:d5:83:ae:f1:f8:a6:f2:74:
20:22:4f:04:17:73:38:03:cc:9f:ca:76:cc:f3:ea:
cd:6e:78:cd:99:d6:d4:09:f1:65:65:34:83:bd:8f:
43:05:30:f1:3c:90:f7:ad:e0:6a:08:bb:fe:6e:5c:
9e:d4:fe:b4:b8:ce:f2:96:fa:cd:56:6b:03:f8:06:
84:8e:45:76:2a:e5:9a:41:2e:c3:fa:fb:23:dd:e3:
27:87:66:19:07:4a:a4:1b:aa:11:d3:d2:50:21:6f:
97:12:e7:85:77:c5:22:68:5e:80:c0:6b:8f:0a:5b:
b8:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:52:04:18:58:B9:85:40:C7:AC:9E:7E:4A:0A:51:19:FB:FA:12:22
X509v3 Authority Key Identifier:
keyid:E9:16:DC:9D:B4:E4:9D:E7:1B:2F:D0:81:9D:AE:85:3A:EB:05:3B:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6RbcnbTknecbL9CBna6FOusFOwY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/1af4a5-0d6c-4776-be5c-be852f644201/1/D1IEGFi5hUDHrJ5-SgpRGfv6EiI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/1af4a5-0d6c-4776-be5c-be852f644201/1/6RbcnbTknecbL9CBna6FOusFOwY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.83.103.0/24
Signature Algorithm: sha256WithRSAEncryption
64:fa:26:3f:72:cf:d7:6c:28:02:00:3f:95:a3:b0:37:11:aa:
ad:93:0e:b9:7c:ea:59:11:c6:fe:1f:8c:85:f1:34:fd:10:bb:
f3:8c:7f:6d:1d:a8:24:a9:23:66:96:d9:3a:9b:60:66:6c:cd:
66:3f:7c:11:bd:c7:20:f8:c9:e5:28:1e:6a:e2:5f:9e:7e:6c:
25:2a:86:76:e7:11:43:63:49:82:6b:24:b9:f3:2e:85:bf:b3:
11:3a:4f:de:d3:dc:fd:7e:2d:12:e3:5a:dc:0f:8c:d2:5a:8e:
66:ae:f5:1e:11:ee:41:73:cb:46:cf:a1:38:cb:35:f5:cd:50:
f0:b3:5d:98:3a:4b:3b:f7:c7:72:69:50:c5:d7:a7:5f:6d:82:
96:ca:65:f8:26:41:da:41:df:30:7e:bd:e2:29:4f:f9:e7:b6:
0d:71:40:12:fc:2d:81:03:46:58:62:7f:c7:1a:50:20:33:7a:
ae:96:3c:e5:f2:6b:ff:48:bf:6c:49:f2:17:f9:1e:c6:56:14:
c9:ae:14:dd:1e:7c:dc:ea:3d:60:9f:ca:c5:82:ab:34:e2:37:
4c:a4:26:61:a0:9b:3e:c6:f3:ed:ee:54:95:32:43:52:17:bc:
ae:5f:4e:bc:ab:86:b0:0b:fa:83:9a:1f:cf:76:33:80:64:90:
ed:c0:0c:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 2 16:09:58 2023 by rpki-client on console-ams.rpki-client.org