Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/5759f6-93e2-4029-a49f-35ba267ded3b/1/x29jqRxvE9-y0qFLd3PDzeqiEas.roa
File: x29jqRxvE9-y0qFLd3PDzeqiEas.roa (raw, json)
Hash identifier: MqDza2AU2dVQzStzh3zirvAdqy7C+Vcw1uS3+frWrGM=
Subject key identifier: C7:6F:63:A9:1C:6F:13:DF:B2:D2:A1:4B:77:73:C3:CD:EA:A2:11:AB
Certificate issuer: /CN=0e75fb4f52a829d136e29a9a025c636d19ae328e
Certificate serial: 01872378F0A8B09C95D6717AFBA9B582F03C
Authority key identifier: 0E:75:FB:4F:52:A8:29:D1:36:E2:9A:9A:02:5C:63:6D:19:AE:32:8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DnX7T1KoKdE24pqaAlxjbRmuMo4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/5759f6-93e2-4029-a49f-35ba267ded3b/1/x29jqRxvE9-y0qFLd3PDzeqiEas.roa
Signing time: Mon 27 Mar 2023 14:29:01 +0000
ROA not before: Mon 27 Mar 2023 14:29:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204620
IP address blocks: 83.139.21.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:29:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:23:78:f0:a8:b0:9c:95:d6:71:7a:fb:a9:b5:82:f0:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e75fb4f52a829d136e29a9a025c636d19ae328e
Validity
Not Before: Mar 27 14:29:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c76f63a91c6f13dfb2d2a14b7773c3cdeaa211ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:5a:42:4f:7b:ce:88:a6:4d:1c:40:09:6a:e9:
55:82:9c:25:03:2c:b9:8d:de:7f:f6:21:b5:60:a9:
a0:90:25:ed:24:6e:5b:16:3d:4a:aa:3a:a7:69:e5:
b6:17:92:66:80:56:13:5e:c4:53:8a:78:35:26:ec:
a7:9c:54:93:13:78:80:f2:90:bc:ac:6b:aa:d0:4e:
de:af:0e:69:08:b1:44:38:db:6c:de:0b:b0:39:e6:
ef:d9:fb:20:e9:a7:4d:18:8a:58:bd:30:8d:66:4a:
2d:e3:9b:63:11:c5:fd:fe:a3:15:50:f5:16:13:d6:
37:44:bd:69:0c:fe:77:77:0e:85:35:58:21:a5:99:
61:fd:97:86:3e:3e:19:dc:92:2f:e9:ee:ec:b6:2d:
65:bc:93:53:a1:8e:93:6b:db:ce:db:dc:9f:1b:df:
dc:1d:b1:72:e1:d2:1b:f4:b0:71:ef:49:fe:a9:ee:
a7:2c:d5:2f:06:4d:e9:0f:17:31:2e:f1:d5:fe:01:
2a:0b:27:ee:a7:ae:f3:83:9d:4f:f6:ef:71:93:28:
88:b1:ac:ff:1f:00:37:fb:ef:34:37:59:25:fd:85:
9a:27:16:da:dd:5f:e2:14:d7:5d:7f:43:14:b4:62:
5c:26:65:c9:a8:b9:87:30:be:8c:53:99:cb:1a:70:
8c:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:6F:63:A9:1C:6F:13:DF:B2:D2:A1:4B:77:73:C3:CD:EA:A2:11:AB
X509v3 Authority Key Identifier:
keyid:0E:75:FB:4F:52:A8:29:D1:36:E2:9A:9A:02:5C:63:6D:19:AE:32:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DnX7T1KoKdE24pqaAlxjbRmuMo4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/5759f6-93e2-4029-a49f-35ba267ded3b/1/x29jqRxvE9-y0qFLd3PDzeqiEas.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/5759f6-93e2-4029-a49f-35ba267ded3b/1/DnX7T1KoKdE24pqaAlxjbRmuMo4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.139.21.0/24
Signature Algorithm: sha256WithRSAEncryption
65:64:5e:96:69:d7:63:fd:ee:52:e0:d8:92:72:47:c3:00:b3:
d9:1c:5e:66:c2:83:4e:08:11:46:26:79:37:bd:7f:b6:ad:38:
92:f3:6d:4f:63:e0:4b:5c:ff:6a:f9:cd:5d:34:68:3b:57:59:
61:1e:2c:e1:d8:07:32:43:96:60:8d:7c:d1:fd:bf:b1:c6:f4:
36:0b:5d:8a:85:29:1e:8f:4b:43:53:a4:42:f6:f2:ff:e7:80:
42:c6:55:53:48:9c:f8:fb:b6:25:77:66:c0:3a:95:ec:f4:cc:
87:96:53:6c:7b:1c:68:83:0a:82:77:6e:ad:96:13:a7:1f:db:
d5:f0:a4:1d:5c:eb:c2:e5:f0:13:1e:45:53:07:cd:67:57:81:
ea:c4:74:0a:92:a3:07:19:c3:81:f5:4e:84:1a:4e:44:af:7f:
b3:3b:28:f5:05:d8:d2:74:18:5c:43:b8:47:bb:eb:68:10:e0:
c0:48:cd:86:e4:62:72:f0:7d:fb:bf:d6:77:f0:d5:a4:c3:d1:
ac:de:f9:51:fb:3e:b0:ec:cf:58:19:4b:7e:91:51:db:54:23:
fa:ca:69:96:4e:a6:be:2a:ee:2c:c3:06:18:bd:c5:36:37:ae:
e9:0f:06:fa:0b:31:95:c0:35:8b:46:be:58:67:88:8b:77:46:
95:16:f7:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:33 2024 by rpki-client on console-fra.rpki-client.org