Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/iJO5I-EYpYqHEzdf2UATZ81nNxs.roa
File: iJO5I-EYpYqHEzdf2UATZ81nNxs.roa (raw, json)
Hash identifier: t7p4Lam4QwKdYkMk79VM5J9V/hsL0MhocyH5CKPjna0=
Subject key identifier: 88:93:B9:23:E1:18:A5:8A:87:13:37:5F:D9:40:13:67:CD:67:37:1B
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 018571E7A2104F8CE9923225D04314B5A07E
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/iJO5I-EYpYqHEzdf2UATZ81nNxs.roa
Signing time: Mon 02 Jan 2023 09:54:43 +0000
ROA not before: Mon 02 Jan 2023 09:54:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43043
IP address blocks: 83.137.154.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:e7:a2:10:4f:8c:e9:92:32:25:d0:43:14:b5:a0:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: Jan 2 09:54:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8893b923e118a58a8713375fd9401367cd67371b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:f3:42:57:63:06:0b:d3:7f:59:97:1b:d1:6c:
49:b3:31:55:ff:0f:16:a2:f4:17:58:98:5b:e0:2a:
7a:c0:80:cb:d6:76:3b:33:ca:d5:00:fd:1c:c1:32:
f6:1a:1b:66:0e:3e:d6:ed:39:3a:ab:82:f9:92:ee:
33:f1:7f:a4:77:8a:d4:69:81:0d:f8:87:40:b7:82:
e6:53:9d:14:33:6c:db:15:28:f9:25:31:68:7e:62:
c5:4e:0c:92:d6:27:ff:98:dd:92:3e:02:6e:cd:db:
7a:a0:6e:fd:c8:1b:af:00:28:53:30:a6:1f:df:1f:
18:b3:73:df:ff:5f:2c:63:1d:03:82:cb:a4:ac:e2:
2d:d0:b7:88:5e:83:2b:bf:7d:3d:7a:48:ec:65:98:
75:7e:6c:6f:6b:9a:92:e0:80:f6:4c:64:d1:d5:90:
0e:cf:f8:55:c9:c5:ec:b0:36:34:2e:3d:5b:43:ff:
84:30:f8:60:5f:03:70:df:aa:40:08:71:ee:08:39:
29:b0:3e:6b:c1:ef:11:01:ae:2c:9b:3b:04:c8:3a:
ac:fc:2d:f0:22:c7:d0:80:b8:bf:fe:e1:15:e2:00:
0a:f5:ad:03:6c:10:9e:6a:1c:a0:01:a0:50:57:a3:
d4:e6:df:15:14:11:54:3b:e9:af:db:40:4e:1f:3d:
ec:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:93:B9:23:E1:18:A5:8A:87:13:37:5F:D9:40:13:67:CD:67:37:1B
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/iJO5I-EYpYqHEzdf2UATZ81nNxs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.137.154.0/23
Signature Algorithm: sha256WithRSAEncryption
53:8b:96:49:25:2f:68:53:ec:95:ca:5a:d3:5f:18:f6:f0:58:
95:4b:6f:2a:b5:61:1c:ef:44:5d:64:6d:c5:f9:7a:1b:02:19:
b4:bb:a9:a8:e5:95:6d:ac:68:46:bf:63:b3:97:e5:bd:d0:cf:
1a:7e:68:60:e6:6a:f2:94:f0:2d:6c:60:31:53:59:25:44:c4:
94:f9:4d:ab:9d:14:d1:6a:59:2c:30:7c:e2:1a:c8:1d:00:66:
df:59:8f:20:ad:ae:0d:43:94:2e:e4:01:fa:ea:86:dc:ee:c2:
41:ee:7e:13:60:f6:b3:c3:70:f1:0e:b3:71:35:c5:cd:a7:70:
1f:62:8d:f4:0f:b6:6f:6e:dd:4c:bd:42:3f:b0:39:68:72:97:
66:27:1a:d3:44:c6:2d:0b:4d:67:6f:ce:71:fb:50:5f:3b:ff:
64:45:26:37:3c:8f:82:df:d4:38:c6:03:6d:9d:36:d6:32:fe:
97:c3:b5:8b:a9:bc:5d:6e:47:44:c6:1d:37:38:19:ac:ff:b2:
0c:74:ec:3c:a7:0e:8b:94:b4:65:41:9b:bf:5c:5f:9a:88:26:
73:46:8e:45:fd:91:2d:95:ee:8d:f2:47:04:bc:a3:f8:67:25:
46:b1:08:dd:6e:8c:da:7f:11:7f:b9:53:c0:ef:79:4e:00:61:
b7:8e:a0:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 08:10:20 2024 by rpki-client on console-fra.rpki-client.org