Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/20ff0f-618f-4cb6-bc7f-6541977f65f9/1/E9ZFSBAa51qtgVMTkNbZZRIETz0.roa
File: E9ZFSBAa51qtgVMTkNbZZRIETz0.roa (raw, json)
Hash identifier: yE21Ev+7uzC9IB8+4EL3fdj+ELCHmr1gCPDIxm6X1KM=
Subject key identifier: 13:D6:45:48:10:1A:E7:5A:AD:81:53:13:90:D6:D9:65:12:04:4F:3D
Certificate issuer: /CN=0962dc6940760b7fbc2ea4367cc53bc230a64f9b
Certificate serial: 018CC9BCA75BAA6F436813B8035E9BD47D46
Authority key identifier: 09:62:DC:69:40:76:0B:7F:BC:2E:A4:36:7C:C5:3B:C2:30:A6:4F:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CWLcaUB2C3-8LqQ2fMU7wjCmT5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/20ff0f-618f-4cb6-bc7f-6541977f65f9/1/E9ZFSBAa51qtgVMTkNbZZRIETz0.roa
Signing time: Tue 02 Jan 2024 10:33:53 +0000
ROA not before: Tue 02 Jan 2024 10:33:53 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 31275
IP address blocks: 83.220.64.0/19 maxlen: 19
2a04:e380::/29 maxlen: 29
Validation: Failed, certificate revoked on Wed 13 Mar 2024 12:58:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:a7:5b:aa:6f:43:68:13:b8:03:5e:9b:d4:7d:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0962dc6940760b7fbc2ea4367cc53bc230a64f9b
Validity
Not Before: Jan 2 10:33:53 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=13d64548101ae75aad81531390d6d96512044f3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:21:ee:69:3b:5e:05:29:5c:9e:7d:f9:e7:90:
e9:b5:8a:13:bf:5d:d3:d5:33:c2:c4:75:16:f6:83:
6a:16:25:d4:c4:8f:c6:10:1f:2b:e6:4e:7c:22:3a:
47:85:1f:db:f0:9d:42:89:11:24:30:0a:d1:c5:11:
65:7e:a4:11:58:23:da:2b:f5:7c:25:83:07:d8:9b:
cc:ec:b0:09:38:e2:f4:8e:b2:e4:ab:45:bb:38:be:
eb:ba:b1:e5:cd:ce:bf:8a:91:95:b4:bc:5d:25:d3:
b3:e5:4e:06:c2:ab:4c:d3:7a:81:a6:e9:5b:c9:8c:
3e:dd:33:68:d2:58:42:e0:ec:a5:c7:9a:cc:3d:02:
fc:5f:10:b1:d3:58:a2:21:d6:34:c8:a6:6e:c1:ad:
80:bc:d9:4f:de:fe:e6:9d:ea:38:a9:7f:f6:99:07:
89:f1:d3:0e:77:75:e7:4a:88:7e:98:15:2e:26:bf:
b4:2e:9e:5c:50:35:28:86:b7:b5:e5:4c:42:85:b9:
7b:23:72:c0:86:13:85:cd:1f:3d:9c:76:89:e1:d3:
68:ee:b6:b0:c9:a8:25:46:33:c7:76:11:85:3f:75:
8d:c1:dc:26:86:43:80:c4:9b:7e:4f:c7:c5:86:cf:
e8:3e:df:95:b8:4a:05:39:2b:f8:9a:80:c9:9e:57:
9f:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:D6:45:48:10:1A:E7:5A:AD:81:53:13:90:D6:D9:65:12:04:4F:3D
X509v3 Authority Key Identifier:
keyid:09:62:DC:69:40:76:0B:7F:BC:2E:A4:36:7C:C5:3B:C2:30:A6:4F:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CWLcaUB2C3-8LqQ2fMU7wjCmT5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/20ff0f-618f-4cb6-bc7f-6541977f65f9/1/E9ZFSBAa51qtgVMTkNbZZRIETz0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/20ff0f-618f-4cb6-bc7f-6541977f65f9/1/CWLcaUB2C3-8LqQ2fMU7wjCmT5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.220.64.0/19
IPv6:
2a04:e380::/29
Signature Algorithm: sha256WithRSAEncryption
5e:f9:84:1f:3e:78:1e:f2:c7:7e:fe:86:0d:33:17:d6:47:70:
dc:46:2a:f4:29:fc:75:2f:86:9c:e9:f3:44:f7:0b:14:87:be:
3a:70:f1:11:85:85:ca:12:2e:47:be:a7:22:8f:96:53:1e:b9:
88:81:39:b7:bc:10:44:5e:40:67:3d:db:ce:0f:b4:13:7a:99:
f9:97:8e:94:53:70:70:6f:0a:52:72:3d:9b:c9:b9:83:4d:ad:
2f:52:ee:c9:d1:82:db:04:fb:c2:5d:d3:d3:1e:ce:a8:46:d9:
10:12:ff:e1:b1:4e:9e:c1:b0:b9:10:a8:df:35:de:79:3c:86:
d8:a0:5e:56:99:f3:d4:3b:7f:41:85:ec:b3:56:3e:ff:50:88:
30:30:70:a1:8a:a8:65:52:0d:7c:dd:00:3e:aa:fe:77:f8:a1:
5c:df:11:af:25:27:6e:b1:c8:62:31:8a:af:79:77:1a:ed:34:
45:fd:e0:b7:bc:24:6a:7e:39:41:29:f7:c4:8c:88:cf:b2:b0:
70:e6:2e:0d:df:d9:77:81:25:9b:c5:9e:7f:82:c8:be:41:5a:
99:f2:7d:ca:9c:f5:83:a8:15:30:0b:01:95:93:02:31:e3:e1:
ce:5c:fe:89:ae:05:af:9e:45:5c:fc:f5:c0:40:9f:62:4e:58:
6b:0f:a7:3a
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYzJvKdbqm9DaBO4A16b1H1GMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA5NjJkYzY5NDA3NjBiN2ZiYzJlYTQzNjdjYzUzYmMyMzBh
NjRmOWIwHhcNMjQwMTAyMTAzMzUzWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxM2Q2NDU0ODEwMWFlNzVhYWQ4MTUzMTM5MGQ2ZDk2NTEyMDQ0ZjNkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmCHuaTteBSlcnn3555DptYoTv13T
1TPCxHUW9oNqFiXUxI/GEB8r5k58IjpHhR/b8J1CiREkMArRxRFlfqQRWCPaK/V8
JYMH2JvM7LAJOOL0jrLkq0W7OL7rurHlzc6/ipGVtLxdJdOz5U4GwqtM03qBpulb
yYw+3TNo0lhC4Oylx5rMPQL8XxCx01iiIdY0yKZuwa2AvNlP3v7mneo4qX/2mQeJ
8dMOd3XnSoh+mBUuJr+0Lp5cUDUohre15UxChbl7I3LAhhOFzR89nHaJ4dNo7raw
yaglRjPHdhGFP3WNwdwmhkOAxJt+T8fFhs/oPt+VuEoFOSv4moDJnlefjQIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFBPWRUgQGudarYFTE5DW2WUSBE89MB8GA1UdIwQY
MBaAFAli3GlAdgt/vC6kNnzFO8Iwpk+bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ1dMY2FVQjJDMy04THFRMmZNVTd3akNtVDVzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC8yMGZmMGYtNjE4Zi00Y2I2LWJjN2Yt
NjU0MTk3N2Y2NWY5LzEvRTlaRlNCQWE1MXF0Z1ZNVGtOYlpaUklFVHowLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMC8yMGZmMGYtNjE4Zi00Y2I2LWJjN2YtNjU0MTk3N2Y2NWY5
LzEvQ1dMY2FVQjJDMy04THFRMmZNVTd3akNtVDVzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQFU9xAMA0E
AgACMAcDBQMqBOOAMA0GCSqGSIb3DQEBCwUAA4IBAQBe+YQfPnge8sd+/oYNMxfW
R3DcRir0Kfx1L4ac6fNE9wsUh746cPERhYXKEi5Hvqcij5ZTHrmIgTm3vBBEXkBn
PdvOD7QTepn5l46UU3BwbwpScj2bybmDTa0vUu7J0YLbBPvCXdPTHs6oRtkQEv/h
sU6ewbC5EKjfNd55PIbYoF5WmfPUO39BheyzVj7/UIgwMHChiqhlUg183QA+qv53
+KFc3xGvJSduschiMYqveXca7TRF/eC3vCRqfjlBKffEjIjPsrBw5i4N39l3gSWb
xZ5/gsi+QVqZ8n3KnPWDqBUwCwGVkwIx4+HOXP6JrgWvnkVc/PXAQJ9iTlhrD6c6
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:23 2024 by rpki-client on console-fra.rpki-client.org