Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/6107e4-4393-4cbe-a6c2-27c1a35976de/1/3_GbHB7f2e_ynoDzDgyurGLzfwA.roa
File: 3_GbHB7f2e_ynoDzDgyurGLzfwA.roa (raw, json)
Hash identifier: 7iiV0cn7Vrtz2nerlNx13ooMzP2p95gWWH4qNaLDB5A=
Subject key identifier: DF:F1:9B:1C:1E:DF:D9:EF:F2:9E:80:F3:0E:0C:AE:AC:62:F3:7F:00
Certificate issuer: /CN=2940b694bba095344e4bdb99f51e1f1023be57ce
Certificate serial: 018CC64B8507FC8825072FDAFFF759FD652C
Authority key identifier: 29:40:B6:94:BB:A0:95:34:4E:4B:DB:99:F5:1E:1F:10:23:BE:57:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KUC2lLuglTROS9uZ9R4fECO-V84.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/6107e4-4393-4cbe-a6c2-27c1a35976de/1/3_GbHB7f2e_ynoDzDgyurGLzfwA.roa
Signing time: Mon 01 Jan 2024 18:31:27 +0000
ROA not before: Mon 01 Jan 2024 18:31:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51446
IP address blocks: 83.217.12.0/23 maxlen: 32
Validation: Failed, certificate revoked on Fri 22 Mar 2024 07:03:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4b:85:07:fc:88:25:07:2f:da:ff:f7:59:fd:65:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2940b694bba095344e4bdb99f51e1f1023be57ce
Validity
Not Before: Jan 1 18:31:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=dff19b1c1edfd9eff29e80f30e0caeac62f37f00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:6b:1a:69:b2:16:3d:61:59:d9:a3:09:27:ef:
97:80:98:ae:e3:ba:7c:30:5c:a0:92:39:92:1d:ec:
22:21:38:9b:e5:5c:75:45:b3:54:97:0c:ca:eb:87:
f1:aa:97:25:a6:fe:1e:97:09:f7:ae:e6:d3:88:e4:
85:19:cf:15:ba:c7:3e:10:f8:bc:91:00:fd:93:de:
1a:77:0e:c6:0a:82:7b:81:3e:33:f9:98:44:ae:03:
d3:f9:35:47:e5:da:98:e5:7a:0c:b2:60:08:bb:23:
0e:3e:a2:8e:ec:26:ab:ea:9d:37:6e:1d:61:16:eb:
33:c2:fa:9a:3f:07:e5:82:ea:dc:c8:1c:cb:43:7a:
58:11:57:9d:40:8c:4a:21:2c:25:dc:34:ac:8d:15:
01:3f:a3:8c:59:da:51:cb:b6:e2:b9:1a:d2:3b:f1:
e9:c3:c0:42:89:44:9f:78:75:17:16:5e:0a:91:07:
d3:04:7a:f3:dc:20:b1:04:94:7a:56:88:51:4d:cc:
05:dc:74:9b:aa:12:35:50:f6:32:36:8c:6d:d9:87:
c9:87:aa:fd:f6:e4:19:70:51:49:df:94:a1:fa:0d:
ec:f9:a8:e0:80:2f:90:a6:88:4a:4a:df:0a:59:31:
ff:c1:c4:0a:7f:77:f1:18:13:87:0b:f1:f0:79:76:
43:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:F1:9B:1C:1E:DF:D9:EF:F2:9E:80:F3:0E:0C:AE:AC:62:F3:7F:00
X509v3 Authority Key Identifier:
keyid:29:40:B6:94:BB:A0:95:34:4E:4B:DB:99:F5:1E:1F:10:23:BE:57:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KUC2lLuglTROS9uZ9R4fECO-V84.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/6107e4-4393-4cbe-a6c2-27c1a35976de/1/3_GbHB7f2e_ynoDzDgyurGLzfwA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/6107e4-4393-4cbe-a6c2-27c1a35976de/1/KUC2lLuglTROS9uZ9R4fECO-V84.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.217.12.0/23
Signature Algorithm: sha256WithRSAEncryption
86:3a:7f:fe:b9:ba:9f:e8:f9:e5:a1:f3:9d:b3:b1:a0:2d:c3:
2b:40:3c:ad:5c:85:08:78:c5:b5:be:2d:42:bf:50:ea:7d:2c:
b2:85:ee:22:b1:77:96:43:05:ef:30:8a:36:9a:94:ac:97:11:
7d:bf:1e:7f:24:cc:10:29:53:3b:ef:5e:07:c3:c5:ce:15:89:
51:ef:a8:41:19:85:bc:ff:48:57:b0:67:d5:1b:16:b4:77:14:
44:a3:c4:bd:60:3e:3f:60:f4:3a:eb:0e:ec:67:79:09:da:fa:
6d:53:be:00:79:98:f8:ab:00:ab:1a:79:3a:c1:0f:c8:ff:16:
60:bf:c0:f7:4d:a8:95:70:a9:91:ea:5b:47:06:a1:10:f5:72:
1f:9d:c1:bd:6a:5f:54:c3:18:33:32:3c:69:ce:c6:83:48:87:
f2:80:d3:ee:d6:39:ed:80:be:ad:e0:12:13:3e:63:55:b5:2c:
86:02:3c:fb:a8:e7:01:12:ae:fe:cf:96:2d:e8:a7:f2:96:f8:
a6:65:b6:df:41:c4:03:01:69:39:fd:1d:65:07:ca:ee:eb:67:
b3:42:9f:e1:d2:e6:0e:78:ed:3f:60:9b:76:26:76:d3:ca:64:
32:7e:53:8a:f3:e9:39:b5:9f:50:6c:aa:d4:29:b5:31:36:90:
2e:ed:7f:ab
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzGS4UH/IglBy/a//dZ/WUsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI5NDBiNjk0YmJhMDk1MzQ0ZTRiZGI5OWY1MWUxZjEwMjNi
ZTU3Y2UwHhcNMjQwMTAxMTgzMTI3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkZmYxOWIxYzFlZGZkOWVmZjI5ZTgwZjMwZTBjYWVhYzYyZjM3ZjAwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAimsaabIWPWFZ2aMJJ++XgJiu47p8
MFygkjmSHewiITib5Vx1RbNUlwzK64fxqpclpv4elwn3rubTiOSFGc8Vusc+EPi8
kQD9k94adw7GCoJ7gT4z+ZhErgPT+TVH5dqY5XoMsmAIuyMOPqKO7Car6p03bh1h
FuszwvqaPwflgurcyBzLQ3pYEVedQIxKISwl3DSsjRUBP6OMWdpRy7biuRrSO/Hp
w8BCiUSfeHUXFl4KkQfTBHrz3CCxBJR6VohRTcwF3HSbqhI1UPYyNoxt2YfJh6r9
9uQZcFFJ35Sh+g3s+ajggC+QpohKSt8KWTH/wcQKf3fxGBOHC/HweXZDfwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFN/xmxwe39nv8p6A8w4Mrqxi838AMB8GA1UdIwQY
MBaAFClAtpS7oJU0TkvbmfUeHxAjvlfOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS1VDMmxMdWdsVFJPUzl1WjlSNGZFQ08tVjg0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZi82MTA3ZTQtNDM5My00Y2JlLWE2YzIt
MjdjMWEzNTk3NmRlLzEvM19HYkhCN2YyZV95bm9EekRneXVyR0x6ZndBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lZi82MTA3ZTQtNDM5My00Y2JlLWE2YzItMjdjMWEzNTk3NmRl
LzEvS1VDMmxMdWdsVFJPUzl1WjlSNGZFQ08tVjg0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBU9kMMA0G
CSqGSIb3DQEBCwUAA4IBAQCGOn/+ubqf6PnlofOds7GgLcMrQDytXIUIeMW1vi1C
v1DqfSyyhe4isXeWQwXvMIo2mpSslxF9vx5/JMwQKVM7714Hw8XOFYlR76hBGYW8
/0hXsGfVGxa0dxREo8S9YD4/YPQ66w7sZ3kJ2vptU74AeZj4qwCrGnk6wQ/I/xZg
v8D3TaiVcKmR6ltHBqEQ9XIfncG9al9UwxgzMjxpzsaDSIfygNPu1jntgL6t4BIT
PmNVtSyGAjz7qOcBEq7+z5Yt6KfylvimZbbfQcQDAWk5/R1lB8ru62ezQp/h0uYO
eO0/YJt2JnbTymQyflOK8+k5tZ9QbKrUKbUxNpAu7X+r
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:58 2024 by rpki-client on console-fra.rpki-client.org