Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/Xig1vJZfiZcd4tlHsef7ZY6f-QY.roa
File: Xig1vJZfiZcd4tlHsef7ZY6f-QY.roa (raw, json)
Hash identifier: qCaWq1XLSoleHoB9ziZmCFAsOS05QhuRCl7mSUjiGYg=
Subject key identifier: 5E:28:35:BC:96:5F:89:97:1D:E2:D9:47:B1:E7:FB:65:8E:9F:F9:06
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 018AA4C81380F1B9ED9502241049A64B645E
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/Xig1vJZfiZcd4tlHsef7ZY6f-QY.roa
Signing time: Sun 17 Sep 2023 20:14:50 +0000
ROA not before: Sun 17 Sep 2023 20:14:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 399073
IP address blocks: 83.147.240.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:a4:c8:13:80:f1:b9:ed:95:02:24:10:49:a6:4b:64:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Sep 17 20:14:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5e2835bc965f89971de2d947b1e7fb658e9ff906
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:6a:22:97:4e:e4:e2:d9:de:26:1a:dc:8c:ea:
c3:e4:ba:17:f7:98:f9:25:48:00:09:63:65:c0:5f:
82:7e:10:7e:9a:15:d7:d3:7c:70:0c:b5:42:59:a3:
07:ff:31:39:49:93:be:69:4d:6c:f8:9d:b0:92:01:
e6:51:89:64:60:25:a9:c2:2c:68:02:92:f6:97:33:
4c:27:e6:e1:77:32:4f:59:b5:de:0f:94:26:0b:40:
bd:d2:bb:5a:ac:4c:51:54:01:28:64:5c:dd:d6:ad:
92:4d:a9:71:44:a0:98:82:53:56:06:c6:83:91:fa:
de:89:22:03:29:ab:66:39:f8:b4:af:f4:b8:cb:06:
d6:83:97:b5:01:27:57:e8:2e:67:75:ee:25:98:62:
02:27:ee:42:12:0e:f1:c2:ca:8d:d2:bb:39:9d:2f:
00:7d:16:c2:80:6e:83:6b:09:83:e1:96:d1:91:5d:
69:d9:97:4a:68:71:15:75:0f:a4:3b:e4:23:1e:39:
c4:1b:29:7d:6a:b6:c1:92:e5:69:4a:ef:63:d0:79:
6b:db:fc:f5:a4:c5:b9:c7:0d:37:ee:7f:39:7f:36:
69:0c:34:f8:a0:3e:ed:54:5a:6b:18:ed:75:9b:dc:
c1:0e:57:97:5f:19:37:85:53:bd:ff:b4:98:24:10:
39:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:28:35:BC:96:5F:89:97:1D:E2:D9:47:B1:E7:FB:65:8E:9F:F9:06
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/Xig1vJZfiZcd4tlHsef7ZY6f-QY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.240.0/22
Signature Algorithm: sha256WithRSAEncryption
39:62:40:2f:42:ed:46:1c:6f:f6:ba:c3:c3:ae:63:f7:5e:5a:
56:1c:64:fb:80:3c:4f:a3:2e:9b:ca:6b:9f:67:ae:0a:3e:21:
dc:f2:2e:b0:19:20:75:86:b8:62:78:30:62:7f:98:2f:a3:52:
39:be:c0:a6:04:96:c3:47:39:71:d8:e8:25:b5:cd:d3:54:6d:
07:1f:5d:9b:c6:93:57:de:21:7a:92:33:30:26:c1:47:91:4c:
9e:a3:51:ee:c7:eb:51:c5:8f:b2:45:50:0a:d1:68:09:36:9a:
da:c8:9a:4c:6d:35:d3:ae:35:00:eb:36:0a:49:54:19:40:71:
00:45:68:8a:27:be:b0:9d:1a:00:9c:fe:a1:37:95:db:89:ba:
78:c4:55:a3:09:e8:b4:e7:92:a3:46:66:93:22:9b:a3:b6:5e:
d6:c6:0d:7e:3f:1f:46:14:b5:e2:00:f4:73:b1:66:ff:7e:4b:
eb:7e:73:23:6a:c6:29:66:d9:4f:5f:24:a7:3d:57:4a:58:c4:
69:ef:3e:b6:e3:89:40:80:bf:28:aa:6d:62:e8:b3:8c:30:c6:
74:c7:b0:fc:39:33:db:ac:d7:32:df:90:ce:b2:4a:71:61:88:
d8:52:f4:e7:99:56:dc:63:dd:94:bd:aa:b8:fc:e8:ee:bb:f4:
c4:9f:d5:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 20 12:59:22 2023 by rpki-client on console-ams.rpki-client.org