Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/6rfdYGcI_xh9ktC2Xj6dGILXAj4.roa
File: 6rfdYGcI_xh9ktC2Xj6dGILXAj4.roa (raw, json)
Hash identifier: 4x+N6iIxVGXwDBL3aCKANYk/rjCwJ20WNGjzGmV95fg=
Subject key identifier: EA:B7:DD:60:67:08:FF:18:7D:92:D0:B6:5E:3E:9D:18:82:D7:02:3E
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 0185708CE1FA97097D8655E8B91F96C315FF
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/6rfdYGcI_xh9ktC2Xj6dGILXAj4.roa
Signing time: Mon 02 Jan 2023 03:35:59 +0000
ROA not before: Mon 02 Jan 2023 03:35:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56876
IP address blocks: 83.147.212.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:8c:e1:fa:97:09:7d:86:55:e8:b9:1f:96:c3:15:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Jan 2 03:35:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=eab7dd606708ff187d92d0b65e3e9d1882d7023e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:db:f7:22:8f:37:ae:5a:0f:ae:a6:ee:f7:24:
a6:ba:db:d6:04:69:ca:c1:0b:3b:85:aa:58:0d:fc:
e6:33:3f:59:c4:b1:61:63:cf:02:64:1b:a3:5f:ca:
cb:6f:c4:e6:e6:f8:eb:9d:a8:7a:f1:8b:fb:c8:bd:
40:50:4d:a4:df:93:30:26:4c:26:ae:94:f6:75:00:
9b:61:13:e2:aa:46:b7:c9:8a:ca:87:03:cd:ec:ac:
cb:2b:a1:11:b8:cc:bf:24:66:c1:e0:27:8c:ae:79:
34:96:38:32:5d:b1:ca:3e:69:24:b7:0d:f2:69:cb:
5a:77:65:d7:38:b1:d4:6e:f8:c6:0f:a3:73:af:70:
dc:ff:95:6b:16:3b:cd:37:97:cb:6a:de:41:58:02:
f6:88:2d:04:bb:22:4d:4f:ca:2b:00:17:b5:72:d0:
a3:a1:9f:8a:90:8a:c9:ae:0e:f5:49:91:ae:05:f3:
e8:b4:62:2f:d6:a8:e4:cf:ed:99:2d:e0:39:97:5d:
9e:ba:58:38:a6:d9:11:23:07:9f:71:34:c1:4b:02:
26:38:6c:e0:60:fe:b6:08:5d:04:ab:29:af:f2:36:
2e:93:b0:c6:b4:e7:05:72:8e:57:b0:09:5c:8e:35:
87:6a:0d:57:92:97:1d:9e:b4:29:db:d4:85:0b:4a:
6c:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:B7:DD:60:67:08:FF:18:7D:92:D0:B6:5E:3E:9D:18:82:D7:02:3E
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/6rfdYGcI_xh9ktC2Xj6dGILXAj4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.212.0/22
Signature Algorithm: sha256WithRSAEncryption
09:07:53:67:f2:e5:4c:d2:da:86:1e:be:2c:70:e7:1c:d2:ef:
ee:e2:eb:0e:0a:5c:18:93:17:b3:14:37:5d:32:30:ac:eb:da:
61:6a:cb:c2:3e:e6:fc:22:31:7e:33:4c:9f:be:bb:4a:e2:2e:
d4:79:cb:0e:e6:f7:ec:b1:f6:d0:08:ff:12:e0:28:f9:f2:5e:
57:00:fd:1a:c3:53:02:65:39:cb:dc:8f:87:0b:a4:6d:43:39:
50:83:41:39:56:07:cc:af:9b:aa:96:2b:c9:f0:96:8b:78:e3:
46:9e:14:67:97:6d:c4:66:09:2b:fe:9b:59:74:4c:a2:ef:0b:
74:7e:53:6f:7e:fc:db:10:a5:81:98:11:a5:61:94:bd:6d:c5:
a4:6e:94:1d:97:63:b1:9a:9a:44:54:f5:bc:d4:92:bd:2b:a5:
7f:3b:24:f9:db:54:9d:1b:8f:16:5e:58:9d:d9:69:10:32:68:
82:76:c9:71:da:5c:e0:53:4c:ad:d9:0e:e3:09:b4:ef:9c:ac:
89:2f:25:ec:8b:fd:d6:12:bc:7d:1d:f6:6a:40:5a:8b:26:5e:
18:79:2e:18:77:57:53:ea:ce:5d:f1:2f:5b:87:70:f2:b7:d2:
a9:94:83:8c:ed:e4:af:4e:11:56:7e:11:52:0d:5f:77:35:e1:
03:1c:3e:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:22:36 2024 by rpki-client on console-ams.rpki-client.org