Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/a1597b-6ef2-4430-aa56-82451f33f4ca/1/BnvbWdI2xZUeiNX1ypZkkmao-Kk.roa
File: BnvbWdI2xZUeiNX1ypZkkmao-Kk.roa (raw, json)
Hash identifier: Cvqu6QSAaN1lmHYjDoeim/HF+mT5VodQMmOdQ83moys=
Subject key identifier: 06:7B:DB:59:D2:36:C5:95:1E:88:D5:F5:CA:96:64:92:66:A8:F8:A9
Certificate issuer: /CN=66feef09c450990af34779ce701be6cd54b3d924
Certificate serial: 01899C34190AA8F02CE34DCB999A9D202CAC
Authority key identifier: 66:FE:EF:09:C4:50:99:0A:F3:47:79:CE:70:1B:E6:CD:54:B3:D9:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zv7vCcRQmQrzR3nOcBvmzVSz2SQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/a1597b-6ef2-4430-aa56-82451f33f4ca/1/BnvbWdI2xZUeiNX1ypZkkmao-Kk.roa
Signing time: Fri 28 Jul 2023 11:13:27 +0000
ROA not before: Fri 28 Jul 2023 11:13:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197644
IP address blocks: 83.168.124.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 05 Aug 2023 14:10:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:9c:34:19:0a:a8:f0:2c:e3:4d:cb:99:9a:9d:20:2c:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66feef09c450990af34779ce701be6cd54b3d924
Validity
Not Before: Jul 28 11:13:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=067bdb59d236c5951e88d5f5ca96649266a8f8a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:53:ec:7c:97:05:12:3a:49:28:62:7f:1e:eb:
7f:ba:75:fc:11:37:93:da:db:67:95:2b:cc:a2:bf:
37:ad:0e:9e:77:82:c3:fc:82:00:04:65:55:c7:93:
fa:33:16:6b:f9:46:11:46:d8:27:72:9c:a3:d1:8d:
b1:42:1e:5e:f8:21:1e:de:2f:a2:df:a3:cf:9a:89:
45:9c:ed:69:30:e9:91:2f:d6:e3:6f:2d:85:35:a8:
dd:47:2f:e9:ed:f0:6d:44:b1:75:31:5d:4b:01:98:
3b:e4:83:b9:1e:37:59:4c:42:c0:9a:e2:3b:bc:9e:
a9:5e:ea:c8:93:79:3b:28:cc:87:8a:d6:c6:20:f3:
cc:e9:c2:63:4a:31:0c:cf:ca:85:d7:d3:37:ce:af:
45:c3:8b:65:af:c9:32:ca:8f:0d:93:ed:52:c0:52:
a6:f1:38:4c:ed:48:43:c2:7c:59:c0:6f:87:03:ef:
bd:ca:32:e7:92:4a:bf:38:26:f8:f5:03:9a:36:14:
b0:88:fa:8b:02:0c:4e:5f:a3:b9:22:dc:12:1b:03:
6f:04:8d:35:db:be:52:b5:b7:9e:2e:97:6c:e7:a0:
df:bf:26:f0:5b:14:de:bb:a2:3c:8f:a4:f2:f4:3c:
a9:f3:ac:b3:e5:3d:0f:5b:8a:ec:52:46:e1:ed:e9:
dd:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:7B:DB:59:D2:36:C5:95:1E:88:D5:F5:CA:96:64:92:66:A8:F8:A9
X509v3 Authority Key Identifier:
keyid:66:FE:EF:09:C4:50:99:0A:F3:47:79:CE:70:1B:E6:CD:54:B3:D9:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zv7vCcRQmQrzR3nOcBvmzVSz2SQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/a1597b-6ef2-4430-aa56-82451f33f4ca/1/BnvbWdI2xZUeiNX1ypZkkmao-Kk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/a1597b-6ef2-4430-aa56-82451f33f4ca/1/Zv7vCcRQmQrzR3nOcBvmzVSz2SQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.168.124.0/24
Signature Algorithm: sha256WithRSAEncryption
61:24:e0:2b:a9:c2:78:04:e1:0d:2a:06:f7:0b:98:14:fe:d0:
9c:cb:73:79:83:e5:5c:59:f8:a6:8b:ce:14:58:33:c3:3a:f6:
22:a2:cb:bc:3d:7d:5d:d0:d4:d7:fe:55:5f:f8:4d:ff:02:b5:
a6:72:15:43:94:ec:c1:40:b2:0a:cd:40:3d:9e:67:40:7d:80:
cb:b6:4d:b0:89:08:20:32:6f:0b:76:6c:42:1b:f7:59:31:d6:
f6:bf:3b:d8:d5:ae:5d:f6:24:0f:16:03:10:df:29:3d:aa:36:
31:8f:1c:e0:12:88:e0:fc:81:de:44:c5:39:b7:e1:6e:85:96:
b7:51:7c:13:ff:91:08:7e:d1:7b:3a:84:02:76:ea:ad:70:d2:
dc:14:eb:54:19:31:1b:d8:1d:49:ea:9c:2b:0a:1c:e5:ba:70:
26:06:2d:a6:f1:11:cd:41:69:fb:b9:37:2d:af:cd:5b:4c:cc:
7a:03:05:fa:1b:5e:cb:7d:6d:8e:d9:4c:c6:07:f9:a5:e9:c9:
0d:40:38:40:c6:09:84:49:2c:f6:a4:4c:4b:b7:e3:b3:0e:31:
df:10:14:fe:8b:02:93:71:97:5d:a4:92:0e:e3:65:2f:05:d7:
77:96:1a:71:f4:e9:8d:ab:14:1c:b2:8f:b0:fd:38:9b:27:35:
87:bd:7d:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:38 2024 by rpki-client on console-fra.rpki-client.org