Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/a1597b-6ef2-4430-aa56-82451f33f4ca/1/iTQkKQFV80aFzChgqt0EKJr8Mq0.roa
File: iTQkKQFV80aFzChgqt0EKJr8Mq0.roa (raw, json)
Hash identifier: 3MB9LDmoh2R9XFk1tLWJDnrkshmzj8URGM0MZY/Hx+w=
Subject key identifier: 89:34:24:29:01:55:F3:46:85:CC:28:60:AA:DD:04:28:9A:FC:32:AD
Certificate issuer: /CN=66feef09c450990af34779ce701be6cd54b3d924
Certificate serial: 0189FDD509B3EDC0C0A653388FE19BB8D043
Authority key identifier: 66:FE:EF:09:C4:50:99:0A:F3:47:79:CE:70:1B:E6:CD:54:B3:D9:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zv7vCcRQmQrzR3nOcBvmzVSz2SQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/a1597b-6ef2-4430-aa56-82451f33f4ca/1/iTQkKQFV80aFzChgqt0EKJr8Mq0.roa
Signing time: Wed 16 Aug 2023 10:12:24 +0000
ROA not before: Wed 16 Aug 2023 10:12:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 83.168.123.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 21 Aug 2023 12:21:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:fd:d5:09:b3:ed:c0:c0:a6:53:38:8f:e1:9b:b8:d0:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66feef09c450990af34779ce701be6cd54b3d924
Validity
Not Before: Aug 16 10:12:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=893424290155f34685cc2860aadd04289afc32ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:8f:d6:35:e0:89:85:6a:62:46:ef:37:5b:81:
08:d9:c2:75:59:68:d8:31:cc:82:7d:3c:e8:fd:02:
bd:46:bf:e3:48:7e:d2:51:2a:6c:64:06:03:44:03:
00:1c:3b:12:71:ef:fc:af:ec:7d:c0:f4:c5:8a:4f:
0c:4b:fe:76:38:ac:43:4f:13:bb:4f:94:8c:71:29:
d2:6b:28:d8:d6:c1:f2:63:e5:84:6f:ed:28:16:ce:
23:83:4c:75:ab:f9:23:30:73:f1:68:85:05:e7:86:
fd:59:52:70:99:e5:68:6f:cd:ab:5d:31:82:48:64:
98:cf:27:37:e4:46:f0:e9:d2:ce:f7:bc:b6:b9:e3:
ee:d5:f1:40:58:dd:88:f3:0e:52:61:f4:ca:48:40:
ea:3a:15:88:4d:54:92:91:84:ea:18:6c:a8:70:28:
54:03:6f:68:5f:df:03:89:7d:9e:5b:2c:11:25:52:
e3:89:80:9b:7b:41:c4:63:bb:21:9b:21:04:9e:09:
3a:45:37:5f:84:5e:13:a1:81:95:df:ac:0a:c5:f1:
72:d8:10:11:03:91:75:72:72:0a:74:c5:07:42:20:
c3:89:85:54:36:81:d8:42:19:c0:35:a7:42:cf:96:
6e:8d:21:7c:cc:f0:c4:a6:c9:fa:96:0c:33:36:fc:
fa:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:34:24:29:01:55:F3:46:85:CC:28:60:AA:DD:04:28:9A:FC:32:AD
X509v3 Authority Key Identifier:
keyid:66:FE:EF:09:C4:50:99:0A:F3:47:79:CE:70:1B:E6:CD:54:B3:D9:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zv7vCcRQmQrzR3nOcBvmzVSz2SQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/a1597b-6ef2-4430-aa56-82451f33f4ca/1/iTQkKQFV80aFzChgqt0EKJr8Mq0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/a1597b-6ef2-4430-aa56-82451f33f4ca/1/Zv7vCcRQmQrzR3nOcBvmzVSz2SQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.168.123.0/24
Signature Algorithm: sha256WithRSAEncryption
34:c8:36:22:81:0a:93:c5:d6:9a:ef:f2:5a:bb:70:28:6a:94:
b0:87:e3:69:b7:07:1b:e6:f0:fe:24:a8:30:d4:f4:9a:0c:b0:
74:7b:a4:af:dd:c8:b3:b2:04:b0:30:d2:f3:5e:6d:e9:57:2c:
f9:ff:a1:a0:e9:05:23:87:fe:7f:19:99:ed:84:dd:80:de:7b:
11:d2:cb:bf:46:41:13:77:bc:43:03:ef:a0:c2:a1:70:cd:fe:
af:01:c3:ee:49:9d:80:9e:1f:3f:53:1b:dc:1c:ac:d6:76:b2:
2e:22:e1:70:e4:ca:10:18:60:d1:8f:f2:e5:e7:68:8f:89:9b:
b2:fe:a6:b9:3b:aa:07:ec:ae:6e:00:46:90:b2:cb:5a:39:ff:
54:86:9c:8e:a5:31:05:69:7d:8d:37:ad:d5:a6:42:db:29:6e:
c7:aa:8f:9f:27:18:d9:e1:a4:4f:6e:0c:87:85:8f:74:1a:a6:
52:2c:84:2b:b3:9f:73:80:dc:2b:ef:84:bf:cf:8e:b0:5e:7f:
bc:f7:71:7e:48:98:22:0c:09:07:2f:b3:42:d5:01:4e:d8:d0:
45:c1:e0:bb:2f:07:a5:3c:76:01:a6:5b:05:12:e5:2a:c1:b6:
17:a1:87:87:bb:a9:48:a9:e3:24:c9:b4:de:1d:91:fe:98:a9:
d7:02:eb:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:38 2024 by rpki-client on console-fra.rpki-client.org