Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/6107e4-4393-4cbe-a6c2-27c1a35976de/1/fTWKEv-ZWcMKnBaUw0LW-BscW30.roa
File: fTWKEv-ZWcMKnBaUw0LW-BscW30.roa (raw, json)
Hash identifier: ft/3/W9+GN0U5RuV5d56/+PoPW6bdd+hvEJG7ly/XSU=
Subject key identifier: 7D:35:8A:12:FF:99:59:C3:0A:9C:16:94:C3:42:D6:F8:1B:1C:5B:7D
Certificate issuer: /CN=2940b694bba095344e4bdb99f51e1f1023be57ce
Certificate serial: 01856F94A0A109565D929FC386B885EFB132
Authority key identifier: 29:40:B6:94:BB:A0:95:34:4E:4B:DB:99:F5:1E:1F:10:23:BE:57:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KUC2lLuglTROS9uZ9R4fECO-V84.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/6107e4-4393-4cbe-a6c2-27c1a35976de/1/fTWKEv-ZWcMKnBaUw0LW-BscW30.roa
Signing time: Sun 01 Jan 2023 23:04:49 +0000
ROA not before: Sun 01 Jan 2023 23:04:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199669
IP address blocks: 83.217.9.0/24 maxlen: 32
Validation: Failed, certificate revoked on Thu 03 Aug 2023 10:02:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:94:a0:a1:09:56:5d:92:9f:c3:86:b8:85:ef:b1:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2940b694bba095344e4bdb99f51e1f1023be57ce
Validity
Not Before: Jan 1 23:04:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7d358a12ff9959c30a9c1694c342d6f81b1c5b7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:1c:42:5e:7b:7d:de:19:11:46:ed:a5:17:b4:
82:e3:f1:75:ca:8e:19:57:82:58:43:2e:56:a8:5b:
18:c4:5e:ee:a3:eb:e0:e5:d3:ff:d0:48:2e:61:80:
bc:9d:1b:24:d1:b0:26:78:91:6b:ed:77:98:f5:a3:
0c:4c:2a:67:57:bc:f0:dc:04:3d:87:4b:1a:4b:08:
b4:43:f7:0a:ca:53:32:17:20:17:75:ee:23:b8:cf:
6d:d5:34:f3:47:d8:93:1d:d9:d2:4b:2a:a9:69:ab:
96:34:a4:7a:06:a7:5d:05:c5:83:e7:9e:af:20:b7:
fc:51:25:21:b7:ac:35:0e:c7:70:e8:d6:26:0b:a0:
2e:33:43:94:d3:6f:65:27:22:3e:c4:7d:22:24:ad:
fa:d4:a5:9e:12:ff:f0:12:1e:a4:ce:16:26:ab:bb:
3f:ac:d5:6b:83:7d:35:d6:8c:b1:f0:7a:b9:8f:00:
96:d5:b0:ee:94:19:ba:4d:93:5b:64:03:f3:25:85:
f7:89:13:c5:b8:b2:4c:22:3d:78:26:e9:5a:f1:89:
0c:c6:da:e6:bd:ef:e5:27:97:be:b9:b1:32:72:b7:
ce:7d:90:78:79:7d:40:77:30:23:4e:dc:5d:74:eb:
5a:45:65:1c:d8:9f:33:b7:e5:5c:f3:47:ef:47:ba:
0b:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:35:8A:12:FF:99:59:C3:0A:9C:16:94:C3:42:D6:F8:1B:1C:5B:7D
X509v3 Authority Key Identifier:
keyid:29:40:B6:94:BB:A0:95:34:4E:4B:DB:99:F5:1E:1F:10:23:BE:57:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KUC2lLuglTROS9uZ9R4fECO-V84.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/6107e4-4393-4cbe-a6c2-27c1a35976de/1/fTWKEv-ZWcMKnBaUw0LW-BscW30.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/6107e4-4393-4cbe-a6c2-27c1a35976de/1/KUC2lLuglTROS9uZ9R4fECO-V84.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.217.9.0/24
Signature Algorithm: sha256WithRSAEncryption
22:ab:d3:87:8b:c5:1f:dc:b7:7c:5d:fd:2d:41:05:08:e4:6a:
a7:48:65:2d:8c:c3:b0:d3:60:26:4e:32:31:e5:4d:5c:dd:ae:
7b:0f:23:7a:4d:8b:14:ed:44:61:7b:b5:41:70:37:61:8c:6a:
82:fe:55:49:ed:a0:53:37:0d:91:e2:cb:e6:24:3f:52:57:40:
3b:93:82:f2:68:b3:e0:ca:d8:84:30:0a:f1:66:d2:82:62:a3:
16:5c:18:89:83:64:86:e4:1b:b4:4b:ee:bb:8e:7f:9f:f9:03:
01:8a:a7:f8:41:da:d4:c4:11:17:98:93:ff:b1:79:e7:a5:4c:
f4:78:0a:36:9c:1b:0c:c4:e1:a9:31:21:39:d1:cb:7a:6e:46:
34:7c:42:f6:07:64:55:08:25:ef:a3:cb:00:46:fc:a3:d6:8e:
62:72:fe:d7:4d:1b:62:e4:aa:65:bb:1d:4a:24:2c:60:94:15:
4b:08:7e:30:f8:bd:98:50:79:03:6d:eb:3c:1c:56:21:f1:ea:
5c:49:d3:4a:df:31:f1:bc:f4:5c:b5:71:51:15:53:51:77:f3:
3d:15:2d:2f:04:a1:d6:e9:83:10:a6:2d:eb:45:ab:cc:bb:d9:
d3:5d:d5:d8:3a:5f:b4:ea:51:2a:da:5d:be:94:50:02:5a:bc:
8f:ed:4f:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:58 2024 by rpki-client on console-fra.rpki-client.org