Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/6107e4-4393-4cbe-a6c2-27c1a35976de/1/p7k4WMOeY07SxZE_44HQNAnB_kI.roa
File: p7k4WMOeY07SxZE_44HQNAnB_kI.roa (raw, json)
Hash identifier: XRnD/R8Hja0QHFmwq4CyiDQHbHKW3yWz5TWoiTmDr4A=
Subject key identifier: A7:B9:38:58:C3:9E:63:4E:D2:C5:91:3F:E3:81:D0:34:09:C1:FE:42
Certificate issuer: /CN=2940b694bba095344e4bdb99f51e1f1023be57ce
Certificate serial: 01856F949D82F5316BCCB3039EB035AFC3B2
Authority key identifier: 29:40:B6:94:BB:A0:95:34:4E:4B:DB:99:F5:1E:1F:10:23:BE:57:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KUC2lLuglTROS9uZ9R4fECO-V84.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/6107e4-4393-4cbe-a6c2-27c1a35976de/1/p7k4WMOeY07SxZE_44HQNAnB_kI.roa
Signing time: Sun 01 Jan 2023 23:04:48 +0000
ROA not before: Sun 01 Jan 2023 23:04:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48642
IP address blocks: 83.217.14.0/23 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:94:9d:82:f5:31:6b:cc:b3:03:9e:b0:35:af:c3:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2940b694bba095344e4bdb99f51e1f1023be57ce
Validity
Not Before: Jan 1 23:04:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a7b93858c39e634ed2c5913fe381d03409c1fe42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:a6:f2:da:e5:57:87:de:86:4f:0e:22:a2:39:
6f:9a:29:24:af:39:a6:c7:d8:35:01:dd:4f:8d:6f:
12:29:76:e8:3e:48:50:ce:4e:39:f1:4a:76:2f:c8:
67:89:15:1a:da:00:69:3b:77:9d:55:ac:1a:c9:f3:
33:6c:eb:5b:cf:85:c9:70:46:58:d1:70:09:e6:4e:
94:19:eb:15:df:26:0d:1d:97:72:30:40:34:21:71:
f1:c9:67:81:8b:0b:c9:b7:6e:0b:0c:b1:a2:a7:aa:
0c:a8:8c:f8:7d:e6:a3:8a:81:1e:59:de:17:03:bc:
c2:18:a6:f9:6c:d1:e9:3d:95:79:58:ea:e4:64:8a:
26:99:e7:bc:c2:95:94:1e:fc:05:bc:c5:7f:4f:3f:
5a:74:83:a5:e3:16:7d:c3:f8:0a:c9:37:81:c2:8d:
b2:bb:e9:fa:5b:11:a9:d3:5f:30:bd:39:dc:3c:41:
51:ab:90:1f:4f:dd:6a:29:49:8a:04:d8:d3:9c:a3:
57:0a:2d:8a:f2:76:89:81:fb:3f:44:c5:54:cc:b8:
fa:35:3c:47:18:29:ae:6f:23:db:af:ca:6d:3e:51:
e3:39:2b:56:1a:2e:49:ea:12:00:30:d8:f4:ac:81:
09:eb:ad:fb:27:9c:9a:39:86:e6:d8:31:2e:42:34:
52:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:B9:38:58:C3:9E:63:4E:D2:C5:91:3F:E3:81:D0:34:09:C1:FE:42
X509v3 Authority Key Identifier:
keyid:29:40:B6:94:BB:A0:95:34:4E:4B:DB:99:F5:1E:1F:10:23:BE:57:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KUC2lLuglTROS9uZ9R4fECO-V84.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/6107e4-4393-4cbe-a6c2-27c1a35976de/1/p7k4WMOeY07SxZE_44HQNAnB_kI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/6107e4-4393-4cbe-a6c2-27c1a35976de/1/KUC2lLuglTROS9uZ9R4fECO-V84.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.217.14.0/23
Signature Algorithm: sha256WithRSAEncryption
9c:17:f8:1a:5e:15:93:d6:05:46:6a:07:2a:e4:15:58:96:a4:
9f:a9:8f:0f:eb:8c:22:7a:db:a2:4e:f7:ee:b6:62:e0:20:eb:
e1:ef:d7:36:09:79:82:28:57:a4:ff:2a:e8:81:7a:9f:0e:79:
2f:2d:8d:86:75:91:4d:9e:b4:fe:4c:f8:5a:0d:2f:27:4a:b0:
9c:4a:1f:16:bb:d9:b6:03:bd:af:6f:97:dc:01:f1:4e:8e:1e:
6d:d1:4c:c4:ac:9f:03:f2:96:08:a0:a6:f6:e1:aa:56:99:8c:
42:75:57:35:c6:cf:72:7e:90:68:36:ba:13:df:ae:65:95:33:
c6:1a:86:f1:12:e0:1a:75:f1:e0:0e:47:e7:ca:12:2d:47:c8:
90:39:ba:8b:a9:a4:d4:9e:49:a9:06:46:59:db:98:a4:fa:39:
d8:5a:d3:76:cd:74:84:5b:5f:44:60:0f:4d:ea:13:ed:81:8a:
16:7a:1b:24:b0:fb:67:35:dd:3a:98:11:a1:8e:a3:96:12:4f:
bd:b6:2d:ed:2b:6d:c7:08:be:1d:ef:d7:5b:9e:de:1d:e5:e3:
8c:ec:29:11:e4:2a:9f:45:1b:66:99:5e:21:97:d4:6f:10:4f:
8d:f4:61:a8:2d:61:2b:86:d9:2c:87:dd:8e:13:78:cd:09:b6:
4e:d9:a8:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:58 2024 by rpki-client on console-fra.rpki-client.org