Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/6107e4-4393-4cbe-a6c2-27c1a35976de/1/rUj3BL9YnkTCYhW6ilwWWyOJKvY.roa
File: rUj3BL9YnkTCYhW6ilwWWyOJKvY.roa (raw, json)
Hash identifier: QQhutd3JxrHLixLcq9sfO8aSG3nLwbUovTJAYLUqvzM=
Subject key identifier: AD:48:F7:04:BF:58:9E:44:C2:62:15:BA:8A:5C:16:5B:23:89:2A:F6
Certificate issuer: /CN=2940b694bba095344e4bdb99f51e1f1023be57ce
Certificate serial: 01856F94A02F8B961678A9B3C85DE4B7BB62
Authority key identifier: 29:40:B6:94:BB:A0:95:34:4E:4B:DB:99:F5:1E:1F:10:23:BE:57:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KUC2lLuglTROS9uZ9R4fECO-V84.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/6107e4-4393-4cbe-a6c2-27c1a35976de/1/rUj3BL9YnkTCYhW6ilwWWyOJKvY.roa
Signing time: Sun 01 Jan 2023 23:04:49 +0000
ROA not before: Sun 01 Jan 2023 23:04:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60651
IP address blocks: 83.217.8.0/24 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:94:a0:2f:8b:96:16:78:a9:b3:c8:5d:e4:b7:bb:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2940b694bba095344e4bdb99f51e1f1023be57ce
Validity
Not Before: Jan 1 23:04:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ad48f704bf589e44c26215ba8a5c165b23892af6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:3d:80:db:35:d3:51:f0:18:a0:f2:10:70:bb:
25:2c:3a:7d:30:3d:83:ad:e0:b2:e5:81:9a:e5:dc:
c2:46:54:24:5f:6c:5c:3d:ac:fe:f0:62:e0:73:8e:
9a:27:42:ab:72:e3:79:28:fd:6e:cb:3c:be:b6:6e:
32:cc:b6:73:67:41:83:8c:72:97:fc:2e:6c:74:4c:
35:bf:cc:9d:20:09:28:6c:0b:e7:6f:20:e3:07:ec:
4d:e1:3a:97:14:da:ca:6e:c3:d8:d8:9a:18:64:b5:
b4:3e:ba:2a:1f:3f:b4:20:0e:ab:67:2f:c1:01:27:
36:d5:80:53:91:97:44:5f:7e:63:5b:73:0d:ce:68:
67:f8:7e:7c:a4:12:7c:e5:c6:51:3e:fe:72:99:d2:
3c:07:ca:d4:7a:7b:27:b6:0e:b3:ac:43:bc:a6:28:
63:9c:01:41:39:02:84:bd:a3:f7:52:ac:49:7f:14:
a4:d0:be:d4:b6:d5:e0:e6:a2:a4:38:41:bb:78:c3:
8c:aa:f8:96:a2:e6:70:95:c4:1a:4d:21:d9:35:6f:
61:96:41:32:17:bf:f3:95:5e:3d:cb:d8:9a:76:7a:
37:64:36:c5:2b:27:39:be:a8:52:3e:1a:fc:57:05:
1a:f4:20:37:07:5c:5c:a0:e4:0a:e6:56:35:d6:01:
1b:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:48:F7:04:BF:58:9E:44:C2:62:15:BA:8A:5C:16:5B:23:89:2A:F6
X509v3 Authority Key Identifier:
keyid:29:40:B6:94:BB:A0:95:34:4E:4B:DB:99:F5:1E:1F:10:23:BE:57:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KUC2lLuglTROS9uZ9R4fECO-V84.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/6107e4-4393-4cbe-a6c2-27c1a35976de/1/rUj3BL9YnkTCYhW6ilwWWyOJKvY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/6107e4-4393-4cbe-a6c2-27c1a35976de/1/KUC2lLuglTROS9uZ9R4fECO-V84.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.217.8.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:f1:46:d3:84:7d:6c:74:f8:b8:18:b9:3e:de:04:02:b2:3b:
39:df:0a:43:6b:7c:00:df:bc:ad:15:9b:db:76:d8:6e:ff:11:
e1:6f:d3:c0:a9:65:19:05:db:47:10:5c:23:73:a6:89:99:e0:
02:b3:57:e5:e4:69:f5:e0:97:2e:93:52:95:35:7b:6f:78:df:
05:1e:93:95:a1:6a:01:73:36:3a:b5:17:de:7d:30:88:aa:31:
ae:8d:9a:83:a8:41:ff:7a:a8:e8:40:ae:0c:c6:50:f4:b2:be:
ab:8a:37:f4:1c:11:30:fc:ba:d1:b6:1e:af:30:91:37:d2:9f:
4e:32:d4:e4:12:3d:bd:71:45:3f:26:3e:c3:cc:43:22:10:b8:
bd:b7:e6:3b:fa:a8:92:50:9d:c5:c6:8d:97:f4:ae:80:ce:24:
da:9a:06:ba:00:b4:25:42:84:81:19:f5:c8:5c:2e:36:7e:1f:
f2:b5:2c:76:f0:d9:f2:51:38:91:8c:87:a3:2f:2b:84:cd:29:
37:5a:5a:df:10:3b:c8:a2:e3:9a:11:76:02:d3:56:e6:ec:dc:
21:3f:88:e7:fc:86:3d:33:6d:8d:49:7f:7c:38:5f:ae:2a:50:
98:69:22:67:77:e7:1f:7f:9b:72:cf:5d:50:f1:1d:66:70:84:
3c:4f:81:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:20:10 2024 by rpki-client on console-ams.rpki-client.org