Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/xC9u9NVeihxm3JnxZdfkIvjl9Es.roa
File: xC9u9NVeihxm3JnxZdfkIvjl9Es.roa (raw, json)
Hash identifier: Oi6BYM5jtgdfpTVc9H/LJsEoGbmBsZqMdtoyPaw5PIM=
Subject key identifier: C4:2F:6E:F4:D5:5E:8A:1C:66:DC:99:F1:65:D7:E4:22:F8:E5:F4:4B
Certificate issuer: /CN=dd85dc6b6143a17feb49820ea520048958f48adc
Certificate serial: 01856E7908049782BECC83E6481BAB26EBCD
Authority key identifier: DD:85:DC:6B:61:43:A1:7F:EB:49:82:0E:A5:20:04:89:58:F4:8A:DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3YXca2FDoX_rSYIOpSAEiVj0itw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/xC9u9NVeihxm3JnxZdfkIvjl9Es.roa
Signing time: Sun 01 Jan 2023 17:55:03 +0000
ROA not before: Sun 01 Jan 2023 17:55:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211928
IP address blocks: 83.242.107.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:79:08:04:97:82:be:cc:83:e6:48:1b:ab:26:eb:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd85dc6b6143a17feb49820ea520048958f48adc
Validity
Not Before: Jan 1 17:55:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c42f6ef4d55e8a1c66dc99f165d7e422f8e5f44b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:44:85:5f:27:9c:5c:a0:75:b9:8a:32:02:f0:
0a:f2:07:14:a8:d2:7e:58:11:52:e6:83:cf:c7:f8:
4d:88:d0:ac:c2:6a:48:b4:94:40:b8:2d:a8:be:3d:
f4:f7:b6:24:53:44:0d:39:2f:74:d3:39:6e:28:b0:
0d:b4:f9:67:63:83:80:f1:d5:28:89:61:ba:70:aa:
e1:b3:6b:30:44:72:4e:67:c2:31:d5:a6:60:9e:f5:
73:12:01:65:e3:49:59:47:29:2f:44:15:a1:08:f3:
07:ac:cc:82:96:e0:7c:e3:dd:0a:0a:c2:2d:17:e1:
29:ce:d5:cf:dc:d8:a9:2f:a5:79:02:2f:93:da:ee:
df:f5:62:b7:47:e3:79:8f:f1:58:05:60:18:a0:e1:
6f:99:72:c4:69:c2:c4:94:c9:39:57:88:88:96:b9:
b4:46:af:6d:01:2e:89:08:21:d0:15:1b:03:76:bc:
97:2f:d9:65:92:8d:d3:8c:82:f3:2c:f6:14:c3:98:
61:44:91:a0:c2:ee:5c:c5:50:f7:58:06:f1:4b:74:
85:16:c0:79:f4:82:85:1a:73:5d:de:10:9b:87:11:
cc:94:a9:a1:aa:31:54:c3:a3:de:76:75:84:02:bd:
37:7e:72:7d:cd:b2:9e:48:b8:bc:3a:8b:f3:e1:7e:
41:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:2F:6E:F4:D5:5E:8A:1C:66:DC:99:F1:65:D7:E4:22:F8:E5:F4:4B
X509v3 Authority Key Identifier:
keyid:DD:85:DC:6B:61:43:A1:7F:EB:49:82:0E:A5:20:04:89:58:F4:8A:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3YXca2FDoX_rSYIOpSAEiVj0itw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/xC9u9NVeihxm3JnxZdfkIvjl9Es.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/3YXca2FDoX_rSYIOpSAEiVj0itw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.242.107.0/24
Signature Algorithm: sha256WithRSAEncryption
17:65:31:47:de:2b:f5:00:9e:63:0f:8a:2c:ef:ac:da:9a:6d:
0b:9e:6b:85:2e:ba:ae:bb:82:29:73:39:52:7e:5c:21:c6:87:
2d:06:34:83:86:6e:30:b5:db:24:52:73:8d:96:76:32:11:6e:
7c:59:ce:fe:5d:9d:f4:9a:17:d0:83:71:34:f6:8f:bf:7f:e5:
0f:66:0c:fb:dd:aa:24:8d:ac:08:c4:f0:d7:24:6e:8d:04:09:
20:51:ac:d8:22:61:29:e1:55:0f:0e:f7:21:3f:2c:f7:dd:c0:
b7:49:82:34:03:4d:e1:4c:8b:fd:23:c8:e0:5e:02:ce:94:34:
5d:78:8a:93:8a:df:16:fa:45:bc:ad:7c:c8:11:89:78:0d:55:
3a:c9:e1:c6:c8:06:7f:ba:12:9d:80:d9:8e:98:0b:6f:fe:6e:
f1:7d:2b:d8:e0:4b:40:0d:ef:f5:00:d1:da:00:b7:4c:31:1d:
37:57:bd:2a:44:b8:59:f4:9d:0b:17:8d:ed:b1:dc:a6:ab:c9:
eb:5a:b2:91:58:2d:7d:ab:32:09:a0:96:0a:ac:60:90:76:7c:
12:c3:2e:15:f8:0c:29:2a:6b:62:80:b7:a2:50:f7:04:0e:3d:
e5:be:2a:fe:58:52:13:04:2e:c5:d4:7c:57:16:19:90:f7:02:
8a:a4:d9:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:03 2024 by rpki-client on console-ams.rpki-client.org