Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/iC1bb0rk5kjo7Te4mRyIA2Ppr6I.roa
File: iC1bb0rk5kjo7Te4mRyIA2Ppr6I.roa (raw, json)
Hash identifier: iVYzV/ynDRQhBhSGbbbrQ85b2x/knHumbF7a4TVhVxQ=
Subject key identifier: 88:2D:5B:6F:4A:E4:E6:48:E8:ED:37:B8:99:1C:88:03:63:E9:AF:A2
Certificate issuer: /CN=da00e981953061972c896bd6d27738d083aadb0e
Certificate serial: 018EFCAA749AAA33283C669FD149D193E993
Authority key identifier: DA:00:E9:81:95:30:61:97:2C:89:6B:D6:D2:77:38:D0:83:AA:DB:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2gDpgZUwYZcsiWvW0nc40IOq2w4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/iC1bb0rk5kjo7Te4mRyIA2Ppr6I.roa
Signing time: Sat 20 Apr 2024 18:00:13 +0000
ROA not before: Sat 20 Apr 2024 18:00:13 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 59895
IP address blocks: 84.247.20.0/24 maxlen: 24
89.34.171.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 17 May 2024 04:32:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:fc:aa:74:9a:aa:33:28:3c:66:9f:d1:49:d1:93:e9:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da00e981953061972c896bd6d27738d083aadb0e
Validity
Not Before: Apr 20 18:00:13 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=882d5b6f4ae4e648e8ed37b8991c880363e9afa2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:8e:fe:c0:40:97:68:f4:20:01:6e:b4:1a:8f:
6c:67:9c:0d:61:fa:2e:01:a8:e7:b7:27:ac:b0:54:
2d:9e:95:15:2d:0d:aa:bb:8e:d2:2b:33:72:85:0b:
47:4c:b9:bd:08:00:a4:ec:9e:8e:a8:52:66:9d:64:
48:d7:45:4c:99:02:86:d6:cf:4e:b7:51:e4:28:28:
40:d5:c8:2b:b2:99:86:5e:44:69:75:12:6e:5f:d7:
ca:39:e2:20:15:b6:a5:0d:65:ac:48:58:c3:0a:bc:
6b:71:52:ac:ea:06:e3:7d:2e:32:c8:38:51:3c:24:
aa:99:a4:35:dc:ee:74:2f:1f:17:61:f4:7c:c4:f6:
d1:e4:da:22:e5:ac:da:2a:72:05:67:f8:98:26:8f:
55:cc:a9:e7:e1:d7:48:90:6f:72:58:72:d3:77:b6:
1d:c6:da:24:5a:7c:ba:86:60:ca:9e:99:0c:4a:99:
90:e1:d8:63:72:8b:60:40:e5:3f:7d:85:ba:bb:b5:
3a:25:1f:38:fb:eb:e1:4b:5e:9d:b7:dc:40:f2:f2:
0f:82:2b:1c:c4:41:68:92:a5:ba:80:50:48:a7:c6:
23:56:c6:2c:e6:dc:99:71:10:80:67:26:2f:1c:b5:
c2:d2:97:9d:8c:cb:c6:ad:a3:35:18:a5:c2:78:9c:
84:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:2D:5B:6F:4A:E4:E6:48:E8:ED:37:B8:99:1C:88:03:63:E9:AF:A2
X509v3 Authority Key Identifier:
keyid:DA:00:E9:81:95:30:61:97:2C:89:6B:D6:D2:77:38:D0:83:AA:DB:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2gDpgZUwYZcsiWvW0nc40IOq2w4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/iC1bb0rk5kjo7Te4mRyIA2Ppr6I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/2gDpgZUwYZcsiWvW0nc40IOq2w4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.247.20.0/24
89.34.171.0/24
Signature Algorithm: sha256WithRSAEncryption
85:3b:65:ff:fd:d6:50:fe:05:c4:56:b3:7c:08:cc:45:85:72:
02:3a:78:5a:36:8f:2d:db:01:03:f7:f0:9b:b3:3c:e0:e0:bf:
ba:01:72:07:8a:16:da:f5:d9:0b:b7:24:25:f5:36:d6:00:e4:
f5:91:77:7e:90:12:5f:a6:7a:6d:9a:08:60:5c:db:13:0e:5c:
c0:b7:18:e0:1b:fc:f7:e6:90:4c:8e:bd:86:90:4f:d4:e7:9a:
bc:80:d3:41:87:cc:37:85:c4:ee:93:bd:f9:94:e9:05:ce:66:
a6:0d:58:00:c7:6f:1e:fe:8b:25:66:55:be:3f:53:bf:ce:8c:
ac:b0:1f:15:53:99:cf:da:3a:d2:c0:40:ae:1e:d8:07:0d:c2:
a2:ec:7f:8b:ca:e9:24:48:f8:c3:68:9e:fe:13:b6:c7:7d:b1:
e9:1b:b8:ce:92:2e:82:e0:b5:77:1c:0b:6b:1f:32:6b:cb:01:
00:36:86:3f:a5:f5:dd:f6:04:ed:a4:3d:f1:3c:99:38:91:11:
a7:a8:f8:78:84:a6:2f:d4:94:bb:44:8e:08:b4:10:12:99:f8:
aa:ef:f2:cd:16:0b:5b:f5:f7:16:e2:e0:55:61:fb:94:ea:74:
df:b7:54:29:a4:c9:25:a5:a5:46:4c:0f:0e:62:a3:1b:8b:64:
05:5f:0d:f3
-----BEGIN CERTIFICATE-----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Generated at Fri May 17 08:09:25 2024 by rpki-client on console-ams.rpki-client.org