Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/6107e4-4393-4cbe-a6c2-27c1a35976de/1/gz8GwO9dRNQjdI_85vhNOtqphLE.roa
File: gz8GwO9dRNQjdI_85vhNOtqphLE.roa (raw, json)
Hash identifier: 4AylagNfqiW6H2nW8I5O2gS8GEZ6gvPGzX68Sx16oLM=
Subject key identifier: 83:3F:06:C0:EF:5D:44:D4:23:74:8F:FC:E6:F8:4D:3A:DA:A9:84:B1
Certificate issuer: /CN=2940b694bba095344e4bdb99f51e1f1023be57ce
Certificate serial: 0189BADAA39AD13667F464B8FD47CDCAB7A4
Authority key identifier: 29:40:B6:94:BB:A0:95:34:4E:4B:DB:99:F5:1E:1F:10:23:BE:57:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KUC2lLuglTROS9uZ9R4fECO-V84.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/6107e4-4393-4cbe-a6c2-27c1a35976de/1/gz8GwO9dRNQjdI_85vhNOtqphLE.roa
Signing time: Thu 03 Aug 2023 10:03:58 +0000
ROA not before: Thu 03 Aug 2023 10:03:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207713
IP address blocks: 83.217.11.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 04 Aug 2023 06:12:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:ba:da:a3:9a:d1:36:67:f4:64:b8:fd:47:cd:ca:b7:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2940b694bba095344e4bdb99f51e1f1023be57ce
Validity
Not Before: Aug 3 10:03:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=833f06c0ef5d44d423748ffce6f84d3adaa984b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:ec:d0:d1:79:1d:1c:24:aa:61:be:a1:50:5f:
6b:cd:91:61:1e:4f:3a:58:0b:c2:58:2c:b7:b9:f4:
b3:4f:08:ab:a4:83:c2:e2:b0:6b:33:bf:26:e3:a5:
81:ff:1c:c4:8c:0c:40:01:6d:be:cf:f9:c0:8c:0b:
fb:b4:f4:34:5d:f4:1b:52:ba:6b:26:84:7b:5e:ac:
30:23:f6:d8:86:45:6e:eb:fa:99:b4:b2:ed:75:f4:
50:56:a1:ce:12:85:00:50:6b:26:ca:0b:2d:48:f2:
ed:28:f0:48:31:10:4e:7a:02:37:22:c7:00:00:75:
e8:5e:f0:39:62:17:60:4b:f4:bd:8c:81:18:4e:f9:
ae:fe:18:76:f6:bb:08:f2:02:60:fd:a4:db:52:1b:
12:3c:84:49:ca:e2:2d:cf:1b:13:99:1e:95:d8:d8:
08:06:8a:a6:e5:8d:9d:38:44:cb:e4:ba:12:cf:b8:
77:b3:1d:6f:03:72:e3:1d:dc:86:c4:74:57:a8:68:
c0:a8:f1:14:61:a6:c1:65:b1:28:98:27:d7:a7:b0:
f2:a9:30:35:84:4c:4a:1f:87:cd:79:8d:51:b0:78:
14:19:97:d5:7b:90:83:45:4c:25:c8:2c:41:bc:d4:
f6:f3:57:5e:52:12:6e:6f:76:fc:83:aa:2b:98:b5:
2b:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:3F:06:C0:EF:5D:44:D4:23:74:8F:FC:E6:F8:4D:3A:DA:A9:84:B1
X509v3 Authority Key Identifier:
keyid:29:40:B6:94:BB:A0:95:34:4E:4B:DB:99:F5:1E:1F:10:23:BE:57:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KUC2lLuglTROS9uZ9R4fECO-V84.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/6107e4-4393-4cbe-a6c2-27c1a35976de/1/gz8GwO9dRNQjdI_85vhNOtqphLE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/6107e4-4393-4cbe-a6c2-27c1a35976de/1/KUC2lLuglTROS9uZ9R4fECO-V84.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.217.11.0/24
Signature Algorithm: sha256WithRSAEncryption
72:cc:42:b3:0c:5a:0a:09:8c:1d:83:f8:74:ad:c5:db:d5:38:
39:03:f9:00:a1:af:76:1e:07:60:88:95:3c:dd:5c:b5:50:e9:
04:8d:18:5f:1e:3d:bd:ae:68:6f:e7:a6:6c:1d:ef:22:b5:48:
31:9b:6c:dd:2d:21:71:6d:92:06:de:b7:30:e1:61:af:dd:2f:
6c:6c:ad:3e:92:80:3a:a0:14:a4:4c:a7:62:e3:30:a6:96:d6:
06:f2:86:9f:f7:64:6d:12:4a:78:7e:3d:44:14:9f:16:39:a4:
82:ed:db:08:46:d2:76:1b:98:be:50:bf:79:b5:0c:9e:5b:3d:
45:fb:f2:9c:e3:59:c5:5d:26:95:3f:a0:18:52:ea:76:da:7a:
2e:9a:94:92:3f:9e:35:83:cc:1e:ea:78:76:33:e5:42:4a:35:
b5:ee:b6:5a:89:5f:89:ec:c4:3f:01:c1:81:7f:53:eb:5e:b9:
48:81:d8:03:e2:91:17:5e:31:02:dc:a1:5f:75:c1:36:34:ea:
89:54:b9:5a:05:fb:67:bb:dc:ed:f4:47:cb:af:3b:e0:54:cd:
86:4f:9b:cb:80:b3:d5:f3:8a:39:4b:9e:d8:39:03:71:c5:0b:
d0:89:3b:40:fb:38:ae:f5:7a:c7:f3:8c:9d:51:55:da:9f:20:
ed:ff:e4:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:34 2024 by rpki-client on console-ams.rpki-client.org