Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/1d9dda-2adf-46bd-8af7-4d16be9ba132/1/fGkC_F4XXeCwnXkZw-HjNjhQusw.roa
File: fGkC_F4XXeCwnXkZw-HjNjhQusw.roa (raw, json)
Hash identifier: fjGn6WjMRXSrCytkKxCFp8fYSi8wcqD7xGmVMQbs+JU=
Subject key identifier: 7C:69:02:FC:5E:17:5D:E0:B0:9D:79:19:C3:E1:E3:36:38:50:BA:CC
Certificate issuer: /CN=2236ed5f5623edeb7910acd31d5f6ee81e5cb17e
Certificate serial: 0189967880C4E8D18EC33C9092A3356F7857
Authority key identifier: 22:36:ED:5F:56:23:ED:EB:79:10:AC:D3:1D:5F:6E:E8:1E:5C:B1:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IjbtX1Yj7et5EKzTHV9u6B5csX4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/1d9dda-2adf-46bd-8af7-4d16be9ba132/1/fGkC_F4XXeCwnXkZw-HjNjhQusw.roa
Signing time: Thu 27 Jul 2023 08:30:26 +0000
ROA not before: Thu 27 Jul 2023 08:30:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43009
IP address blocks: 83.166.64.0/19 maxlen: 19
83.166.64.0/24 maxlen: 24
83.166.67.0/24 maxlen: 24
83.166.65.0/24 maxlen: 24
83.166.78.0/24 maxlen: 24
83.166.79.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:96:78:80:c4:e8:d1:8e:c3:3c:90:92:a3:35:6f:78:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2236ed5f5623edeb7910acd31d5f6ee81e5cb17e
Validity
Not Before: Jul 27 08:30:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7c6902fc5e175de0b09d7919c3e1e3363850bacc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:41:ef:24:83:75:60:34:b4:85:0d:0b:09:d9:
48:52:c3:59:a7:b9:e6:7a:0e:5d:17:53:d1:de:a6:
bd:e8:e0:88:db:df:98:e4:b4:ad:8a:e9:6b:b9:cb:
29:0d:a1:df:23:6d:3d:87:b7:09:34:c1:2d:49:15:
5a:d8:08:db:30:33:15:ae:87:32:46:40:be:31:a7:
15:5a:4f:9c:b6:f5:62:8a:3b:fb:13:c5:96:66:d7:
00:e0:f2:c9:de:d8:45:d6:62:a3:2a:ae:df:b6:ce:
84:1e:0a:53:01:14:c3:a4:03:39:23:52:9f:95:6a:
5a:b5:8f:5d:1c:cf:48:e3:c2:b3:e3:06:43:ab:7e:
02:bf:23:f3:06:06:fe:ac:fc:16:a4:ed:cf:6a:34:
b3:8e:25:b8:b5:c2:b2:50:5c:3c:2b:c0:26:d3:e3:
d5:0b:f7:3b:e5:61:b4:1b:72:5b:aa:7b:68:8c:37:
de:20:cb:f9:6c:5c:85:c6:ef:62:5c:01:70:89:11:
ab:5a:0d:19:70:06:61:80:fa:10:d4:fa:62:cd:27:
82:c3:48:48:ff:cc:e8:2e:d2:9d:b5:93:17:83:39:
dd:55:ed:79:d1:80:0b:13:c9:64:36:4d:78:39:29:
1d:1b:8d:52:7f:af:bd:e4:9d:f0:e3:96:b3:11:be:
b0:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:69:02:FC:5E:17:5D:E0:B0:9D:79:19:C3:E1:E3:36:38:50:BA:CC
X509v3 Authority Key Identifier:
keyid:22:36:ED:5F:56:23:ED:EB:79:10:AC:D3:1D:5F:6E:E8:1E:5C:B1:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IjbtX1Yj7et5EKzTHV9u6B5csX4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/1d9dda-2adf-46bd-8af7-4d16be9ba132/1/fGkC_F4XXeCwnXkZw-HjNjhQusw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/1d9dda-2adf-46bd-8af7-4d16be9ba132/1/IjbtX1Yj7et5EKzTHV9u6B5csX4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.166.64.0/19
Signature Algorithm: sha256WithRSAEncryption
0f:13:63:cf:ad:2f:6e:97:68:0c:5f:96:99:11:f0:d1:bc:f9:
f6:65:54:f4:41:5a:e0:7b:d0:64:5d:bb:cf:a6:12:b1:46:7a:
7c:8f:5a:a5:85:99:ba:ee:47:d9:ec:50:d0:06:01:82:c2:d6:
a2:63:f9:1a:69:de:8d:2e:c7:74:82:8a:cf:a9:44:ef:ba:d7:
ea:2b:05:31:d1:67:ce:5c:b1:b8:65:3c:89:0f:40:75:8b:ae:
d8:33:84:fc:5f:7d:16:fb:ab:ed:28:da:12:ab:f4:83:38:14:
85:21:42:e2:2a:23:fb:08:3b:a2:83:b2:04:4e:64:4d:51:77:
06:52:f6:41:97:99:e4:ed:b7:3b:0e:03:2f:45:9c:1d:ed:7e:
d1:e4:92:b0:eb:f6:ac:aa:22:12:39:70:e8:a7:ce:e4:e5:c7:
54:18:52:50:c7:fb:29:5e:e3:e1:69:fb:0a:f0:f1:37:07:b2:
7a:f6:01:6d:02:86:7b:4e:dd:0c:a4:46:42:a5:7c:d8:2b:9c:
38:8d:4b:04:42:d7:44:4b:42:80:7f:7e:27:0a:2d:45:ff:bf:
30:99:7c:3d:41:45:7f:bc:0d:0c:bd:8b:15:c8:73:d5:da:bd:
0c:10:2b:0a:ae:0b:e4:49:10:a5:90:53:17:04:f1:5f:25:dd:
fc:2b:79:44
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYmWeIDE6NGOwzyQkqM1b3hXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyMzZlZDVmNTYyM2VkZWI3OTEwYWNkMzFkNWY2ZWU4MWU1
Y2IxN2UwHhcNMjMwNzI3MDgzMDI2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3YzY5MDJmYzVlMTc1ZGUwYjA5ZDc5MTljM2UxZTMzNjM4NTBiYWNjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt0HvJIN1YDS0hQ0LCdlIUsNZp7nm
eg5dF1PR3qa96OCI29+Y5LStiulrucspDaHfI209h7cJNMEtSRVa2AjbMDMVrocy
RkC+MacVWk+ctvViijv7E8WWZtcA4PLJ3thF1mKjKq7fts6EHgpTARTDpAM5I1Kf
lWpatY9dHM9I48Kz4wZDq34CvyPzBgb+rPwWpO3PajSzjiW4tcKyUFw8K8Am0+PV
C/c75WG0G3JbqntojDfeIMv5bFyFxu9iXAFwiRGrWg0ZcAZhgPoQ1PpizSeCw0hI
/8zoLtKdtZMXgzndVe150YALE8lkNk14OSkdG41Sf6+95J3w45azEb6wwQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHxpAvxeF13gsJ15GcPh4zY4ULrMMB8GA1UdIwQY
MBaAFCI27V9WI+3reRCs0x1fbugeXLF+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSWpidFgxWWo3ZXQ1RUt6VEhWOXU2QjVjc1g0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC8xZDlkZGEtMmFkZi00NmJkLThhZjct
NGQxNmJlOWJhMTMyLzEvZkdrQ19GNFhYZUN3blhrWnctSGpOamhRdXN3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MC8xZDlkZGEtMmFkZi00NmJkLThhZjctNGQxNmJlOWJhMTMy
LzEvSWpidFgxWWo3ZXQ1RUt6VEhWOXU2QjVjc1g0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFU6ZAMA0G
CSqGSIb3DQEBCwUAA4IBAQAPE2PPrS9ul2gMX5aZEfDRvPn2ZVT0QVrge9BkXbvP
phKxRnp8j1qlhZm67kfZ7FDQBgGCwtaiY/kaad6NLsd0gorPqUTvutfqKwUx0WfO
XLG4ZTyJD0B1i67YM4T8X30W+6vtKNoSq/SDOBSFIULiKiP7CDuig7IETmRNUXcG
UvZBl5nk7bc7DgMvRZwd7X7R5JKw6/asqiISOXDop87k5cdUGFJQx/spXuPhafsK
8PE3B7J69gFtAoZ7Tt0MpEZCpXzYK5w4jUsEQtdES0KAf34nCi1F/78wmXw9QUV/
vA0MvYsVyHPV2r0MECsKrgvkSRClkFMXBPFfJd38K3lE
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:46 2024 by rpki-client on console-fra.rpki-client.org