Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/cab79f-abc1-4a62-bc69-442299f412fd/1/UhRJYnkL0D8IfORGA47tkPV8-oM.roa
File: UhRJYnkL0D8IfORGA47tkPV8-oM.roa (raw, json)
Hash identifier: 3u3/D505gMpH7T8uZ62EEpLgIgHf9CHNu7A9YeeB0t8=
Subject key identifier: 52:14:49:62:79:0B:D0:3F:08:7C:E4:46:03:8E:ED:90:F5:7C:FA:83
Certificate issuer: /CN=64e67f7ebc0a810b88c0aad340c26edcb45de65f
Certificate serial: 01857203496FB263A64735611DCA466DA4D7
Authority key identifier: 64:E6:7F:7E:BC:0A:81:0B:88:C0:AA:D3:40:C2:6E:DC:B4:5D:E6:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZOZ_frwKgQuIwKrTQMJu3LRd5l8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/cab79f-abc1-4a62-bc69-442299f412fd/1/UhRJYnkL0D8IfORGA47tkPV8-oM.roa
Signing time: Mon 02 Jan 2023 10:24:56 +0000
ROA not before: Mon 02 Jan 2023 10:24:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51009
IP address blocks: 83.166.96.0/19 maxlen: 19
2a11:8600::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:03:49:6f:b2:63:a6:47:35:61:1d:ca:46:6d:a4:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64e67f7ebc0a810b88c0aad340c26edcb45de65f
Validity
Not Before: Jan 2 10:24:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=52144962790bd03f087ce446038eed90f57cfa83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:13:61:5b:30:77:0e:ae:a5:f9:29:cf:02:9f:
7d:31:40:44:27:33:3d:41:9f:15:bd:52:0e:d8:ea:
58:9d:c8:52:37:29:c6:47:68:b5:61:e5:e5:98:3c:
30:96:82:3a:b9:9e:7a:11:b1:8f:bb:b9:2d:e6:a3:
b1:dd:7d:40:fc:5b:19:6d:6f:b3:7d:6f:c4:0c:32:
fc:b7:57:1e:e1:60:bd:09:fa:b0:a5:73:19:25:58:
ac:ea:b0:d5:61:06:57:5e:cb:b0:fb:51:9e:4a:3c:
bd:95:62:e0:dd:3c:a0:c3:1e:5e:bb:5a:0a:21:44:
00:89:d4:df:86:d4:72:80:8e:3e:9c:95:93:12:c4:
3f:09:f7:ad:01:47:3d:f4:34:bb:39:0b:d0:59:6f:
5f:fa:c0:20:0f:9b:c7:4e:52:d1:ff:70:d2:b1:42:
af:53:c9:5e:63:68:f8:9a:77:b7:ff:ac:37:63:f0:
73:0a:da:5b:f3:36:9e:1f:f8:ae:cf:71:59:28:e8:
d0:1c:13:20:c0:ed:15:fb:30:0f:98:76:71:65:b2:
a7:be:cc:39:28:18:84:8b:af:f7:3d:c3:7e:d7:0c:
45:25:3f:3d:5b:f5:96:f4:9f:2a:07:61:26:19:fd:
23:99:27:f0:47:d8:e5:fd:d6:b6:b7:ec:68:f9:50:
b7:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:14:49:62:79:0B:D0:3F:08:7C:E4:46:03:8E:ED:90:F5:7C:FA:83
X509v3 Authority Key Identifier:
keyid:64:E6:7F:7E:BC:0A:81:0B:88:C0:AA:D3:40:C2:6E:DC:B4:5D:E6:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZOZ_frwKgQuIwKrTQMJu3LRd5l8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/cab79f-abc1-4a62-bc69-442299f412fd/1/UhRJYnkL0D8IfORGA47tkPV8-oM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/cab79f-abc1-4a62-bc69-442299f412fd/1/ZOZ_frwKgQuIwKrTQMJu3LRd5l8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.166.96.0/19
IPv6:
2a11:8600::/29
Signature Algorithm: sha256WithRSAEncryption
8f:16:51:ef:25:45:b7:64:87:2b:e6:76:5f:0e:59:a9:c4:6e:
1c:6f:cb:b6:d2:14:ac:92:b5:73:b4:43:17:25:0c:5b:8f:5b:
6b:7e:31:b5:cb:fb:a2:e0:f3:bb:88:08:bd:20:8d:4d:fe:5d:
98:d6:db:8d:fc:e2:77:26:11:4c:57:61:f6:10:85:3f:11:54:
ec:c7:c1:58:8d:08:36:ed:52:05:04:d6:5b:bc:b5:0d:0c:42:
bd:2f:89:5a:36:79:f9:d0:2c:1b:89:e2:a1:cb:87:9d:4c:4d:
f9:a7:3c:cf:55:18:54:cd:3b:90:bf:4d:41:ee:d1:f3:f0:1f:
68:a6:60:1c:57:ed:a7:6b:b7:00:24:01:42:05:e4:5f:c9:d6:
1c:56:a1:1e:ff:4a:41:fb:07:b3:5e:10:4c:aa:50:5d:02:f8:
e5:ba:33:53:99:c2:fd:7c:3b:99:54:f8:f5:03:b4:e9:73:2a:
21:1d:be:8d:06:f1:2f:cf:c6:8e:81:df:8b:a0:5c:cf:93:1a:
9b:19:a6:14:ad:a2:07:a5:c8:fe:56:3f:23:19:b1:bb:c1:60:
84:2a:44:1e:b2:3c:52:4d:c5:91:65:8c:bf:83:97:6e:d1:0b:
49:c1:48:86:b5:54:ea:2d:da:c2:5e:1c:67:6f:51:43:b3:5d:
53:06:4e:3b
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYVyA0lvsmOmRzVhHcpGbaTXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY0ZTY3ZjdlYmMwYTgxMGI4OGMwYWFkMzQwYzI2ZWRjYjQ1
ZGU2NWYwHhcNMjMwMTAyMTAyNDU2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MjE0NDk2Mjc5MGJkMDNmMDg3Y2U0NDYwMzhlZWQ5MGY1N2NmYTgzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgxNhWzB3Dq6l+SnPAp99MUBEJzM9
QZ8VvVIO2OpYnchSNynGR2i1YeXlmDwwloI6uZ56EbGPu7kt5qOx3X1A/FsZbW+z
fW/EDDL8t1ce4WC9CfqwpXMZJVis6rDVYQZXXsuw+1GeSjy9lWLg3Tygwx5eu1oK
IUQAidTfhtRygI4+nJWTEsQ/CfetAUc99DS7OQvQWW9f+sAgD5vHTlLR/3DSsUKv
U8leY2j4mne3/6w3Y/BzCtpb8zaeH/iuz3FZKOjQHBMgwO0V+zAPmHZxZbKnvsw5
KBiEi6/3PcN+1wxFJT89W/WW9J8qB2EmGf0jmSfwR9jl/da2t+xo+VC3JQIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFFIUSWJ5C9A/CHzkRgOO7ZD1fPqDMB8GA1UdIwQY
MBaAFGTmf368CoELiMCq00DCbty0XeZfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWk9aX2Zyd0tnUXVJd0tyVFFNSnUzTFJkNWw4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi9jYWI3OWYtYWJjMS00YTYyLWJjNjkt
NDQyMjk5ZjQxMmZkLzEvVWhSSllua0wwRDhJZk9SR0E0N3RrUFY4LW9NLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Zi9jYWI3OWYtYWJjMS00YTYyLWJjNjktNDQyMjk5ZjQxMmZk
LzEvWk9aX2Zyd0tnUXVJd0tyVFFNSnUzTFJkNWw4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQFU6ZgMA0E
AgACMAcDBQMqEYYAMA0GCSqGSIb3DQEBCwUAA4IBAQCPFlHvJUW3ZIcr5nZfDlmp
xG4cb8u20hSskrVztEMXJQxbj1trfjG1y/ui4PO7iAi9II1N/l2Y1tuN/OJ3JhFM
V2H2EIU/EVTsx8FYjQg27VIFBNZbvLUNDEK9L4laNnn50CwbieKhy4edTE35pzzP
VRhUzTuQv01B7tHz8B9opmAcV+2na7cAJAFCBeRfydYcVqEe/0pB+wezXhBMqlBd
AvjlujNTmcL9fDuZVPj1A7TpcyohHb6NBvEvz8aOgd+LoFzPkxqbGaYUraIHpcj+
Vj8jGbG7wWCEKkQesjxSTcWRZYy/g5du0QtJwUiGtVTqLdrCXhxnb1FDs11TBk47
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:08 2024 by rpki-client on console-fra.rpki-client.org