Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/Pa61jHQY1BDseAvsG5pu865tkk4.roa
File: Pa61jHQY1BDseAvsG5pu865tkk4.roa (raw, json)
Hash identifier: FcvrBArt8Bxq75khYwwhiCn7H5pOlRjFbGLkC21R9bM=
Subject key identifier: 3D:AE:B5:8C:74:18:D4:10:EC:78:0B:EC:1B:9A:6E:F3:AE:6D:92:4E
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 018635439A8172F8BFE38E8F61F017ADC4D3
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/Pa61jHQY1BDseAvsG5pu865tkk4.roa
Signing time: Thu 09 Feb 2023 08:21:08 +0000
ROA not before: Thu 09 Feb 2023 08:21:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 64267
IP address blocks: 83.137.152.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:35:43:9a:81:72:f8:bf:e3:8e:8f:61:f0:17:ad:c4:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: Feb 9 08:21:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3daeb58c7418d410ec780bec1b9a6ef3ae6d924e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:8a:a3:6b:52:89:21:11:c1:1f:0c:ea:f3:53:
1a:e3:52:2b:79:90:0e:41:87:96:6d:50:d6:7b:23:
2a:3c:3f:b2:56:1a:32:67:ee:45:f7:7f:82:c9:56:
76:1c:15:4e:f9:72:9c:0f:c8:07:05:e2:7e:43:bd:
49:32:fe:2b:02:0d:3b:49:37:d3:97:5a:82:77:64:
c5:30:3d:dc:c3:41:25:ad:39:6f:41:d3:11:a7:46:
d9:55:1c:cc:73:70:8a:3b:bf:3e:ad:4d:ce:94:02:
41:11:d8:83:c4:8b:18:4b:3b:89:6c:a4:e7:cb:80:
77:6a:7c:a8:6b:60:f2:7a:06:0d:63:fc:71:04:ba:
ea:ca:0a:92:d4:f8:3e:42:e7:69:4f:a6:9a:43:62:
a4:47:85:27:b2:34:68:87:4a:85:79:9a:5a:33:d2:
b8:81:af:3a:00:cb:de:ae:35:39:42:06:70:45:7a:
d9:e4:f4:a6:e8:76:f7:3e:00:77:c7:46:f4:85:83:
67:f4:76:98:91:db:c0:fb:75:8d:b0:5e:c4:0f:00:
8a:06:87:eb:a3:fb:6f:ae:9b:f9:30:06:23:26:60:
25:e4:db:28:ea:04:0c:b7:cd:c4:a9:33:22:fc:b6:
87:d5:dc:36:aa:1e:b5:39:25:40:e4:8f:cf:e4:3f:
54:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:AE:B5:8C:74:18:D4:10:EC:78:0B:EC:1B:9A:6E:F3:AE:6D:92:4E
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/Pa61jHQY1BDseAvsG5pu865tkk4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.137.152.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:d8:14:da:f9:e3:f1:8e:47:ab:a4:8f:78:1a:54:a2:ee:f8:
6a:2a:f4:58:c6:32:93:8e:85:66:d9:f4:b7:1f:fa:53:89:c5:
d0:b8:44:ac:bc:cd:9d:f0:ea:36:56:89:1b:22:2f:d2:98:dd:
98:f2:5b:19:e1:df:49:29:5a:53:fc:23:1a:8c:49:d6:be:5f:
50:6d:79:21:12:65:56:a2:37:27:0f:7a:dd:ca:31:b8:9d:cc:
b0:c6:49:ef:fc:f8:dd:32:32:3b:11:e8:95:50:7a:32:c9:0f:
f5:14:1d:a7:74:60:c6:e3:71:3c:34:6b:1b:77:d0:af:98:47:
3e:7e:11:c3:cb:7a:db:58:9f:f2:59:80:f2:6c:cc:42:7f:c3:
20:a5:8c:6f:05:cc:dc:dd:f2:70:ec:99:60:b2:c8:ea:b3:6e:
e1:b0:dc:d2:86:ca:8f:34:32:03:0b:31:c6:13:a7:a8:bb:6c:
84:18:ee:9b:c8:20:a7:88:0d:7d:76:1c:c8:22:76:f2:2c:f2:
c2:77:04:36:32:69:59:02:8d:d1:61:0c:c7:99:bd:c1:fe:fd:
34:fa:76:b9:a0:56:c0:d9:57:fb:8c:a9:26:b7:20:6c:8c:82:
c3:82:cd:41:ce:55:53:9e:0f:15:1f:dd:76:a1:04:4a:c9:70:
bb:1a:6f:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:01 2023 by rpki-client on console-fra.rpki-client.org