Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/319d7c-7e76-4308-bc00-be5832d5f7aa/1/83KoTl_et_jexmyNX_WftbnI8Dc.roa
File: 83KoTl_et_jexmyNX_WftbnI8Dc.roa (raw, json)
Hash identifier: PSfh8Nc2KElTeiMmBBHwMlDWiOfcHU2HI+4hVoHiAT8=
Subject key identifier: F3:72:A8:4E:5F:DE:B7:F8:DE:C6:6C:8D:5F:F5:9F:B5:B9:C8:F0:37
Certificate issuer: /CN=fb987244611b5230536744b6a89f044f32f462ea
Certificate serial: 018570E75090E998A9544DEC0F94149B9676
Authority key identifier: FB:98:72:44:61:1B:52:30:53:67:44:B6:A8:9F:04:4F:32:F4:62:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-5hyRGEbUjBTZ0S2qJ8ETzL0Yuo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/319d7c-7e76-4308-bc00-be5832d5f7aa/1/83KoTl_et_jexmyNX_WftbnI8Dc.roa
Signing time: Mon 02 Jan 2023 05:14:45 +0000
ROA not before: Mon 02 Jan 2023 05:14:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43463
IP address blocks: 82.135.228.0/22 maxlen: 22
82.135.156.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:e7:50:90:e9:98:a9:54:4d:ec:0f:94:14:9b:96:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb987244611b5230536744b6a89f044f32f462ea
Validity
Not Before: Jan 2 05:14:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f372a84e5fdeb7f8dec66c8d5ff59fb5b9c8f037
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:dc:19:b1:f7:a4:55:f3:aa:a5:e2:0c:c6:10:
a5:33:e3:22:92:49:ec:95:4e:d0:ef:19:a4:17:53:
68:52:d8:28:7f:b9:f4:58:ef:a8:68:2b:0b:ae:65:
5e:ea:bb:2f:da:69:ae:3d:03:16:6d:85:0a:50:ba:
8a:2f:43:f6:f3:34:11:22:1b:c8:21:9c:7a:2f:11:
de:35:5f:fb:b8:8e:2d:d9:2d:1b:7d:ad:6e:83:f0:
b5:66:b4:2a:76:93:25:c4:b4:80:36:0c:41:9b:1e:
ad:e0:31:ed:2c:7e:54:e2:75:e0:40:30:03:fc:b0:
dd:6d:3f:b2:02:31:18:b1:8f:39:09:69:a0:db:ff:
12:42:9a:29:de:9d:18:0c:3c:82:3d:bf:6a:5b:69:
d4:c8:63:4e:67:2d:b2:9b:79:06:1d:eb:a5:c2:24:
9e:72:6e:12:0c:49:48:fd:3d:0a:e1:5f:2b:07:01:
2b:69:12:c1:31:64:2e:75:d2:2c:b3:cd:9f:f7:94:
12:15:ee:8f:1b:ae:3a:b9:9b:2b:03:51:f8:1b:d1:
e9:9e:5a:c2:52:9d:93:5f:ee:38:64:4e:a3:0c:a4:
e0:df:a9:c8:34:3f:6f:85:f4:1f:e3:be:9e:1a:f0:
9a:42:9d:ba:6c:f8:80:e2:df:39:a7:28:25:6e:fb:
9b:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:72:A8:4E:5F:DE:B7:F8:DE:C6:6C:8D:5F:F5:9F:B5:B9:C8:F0:37
X509v3 Authority Key Identifier:
keyid:FB:98:72:44:61:1B:52:30:53:67:44:B6:A8:9F:04:4F:32:F4:62:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-5hyRGEbUjBTZ0S2qJ8ETzL0Yuo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/319d7c-7e76-4308-bc00-be5832d5f7aa/1/83KoTl_et_jexmyNX_WftbnI8Dc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/319d7c-7e76-4308-bc00-be5832d5f7aa/1/1-5hyRGEbUjBTZ0S2qJ8ETzL0Yuo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.135.156.0/23
82.135.228.0/22
Signature Algorithm: sha256WithRSAEncryption
1e:00:48:e2:d3:8e:c5:32:6a:95:1d:69:fe:05:40:c1:d0:84:
ba:46:68:53:5a:e4:44:8c:46:7a:cf:f1:0d:6f:f8:d1:a8:36:
5c:e9:f7:6c:db:9c:65:07:ad:b6:6e:49:46:63:9e:6d:81:a2:
a2:84:4e:e8:0b:0a:30:a4:8a:ff:f5:e9:cd:57:97:b8:1a:8d:
43:73:6e:1b:56:c5:1c:0f:ce:2f:07:a6:40:10:77:67:75:54:
37:01:03:33:db:9d:4f:4f:8b:8b:7b:95:c7:ac:e9:b9:73:9b:
2e:d5:9f:21:ae:d6:f4:e5:16:91:1e:7b:6c:7f:f0:b5:cf:cf:
ab:6d:27:ef:c3:48:0b:38:81:c4:4a:82:83:c6:95:75:39:5f:
21:d8:74:82:c1:50:87:65:c3:95:02:3e:b4:d8:5f:9a:78:d3:
34:dc:df:62:6b:6e:e5:12:5c:c4:16:5e:d5:ed:2b:01:6c:f6:
97:89:6f:4d:46:39:af:d2:d6:1a:48:42:3a:72:25:94:f5:49:
a9:88:0c:99:5e:6a:74:a8:73:c9:4e:2a:b5:78:31:f2:15:53:
49:62:d5:ef:bc:df:8b:5a:da:98:aa:3f:28:9d:06:7e:5c:ed:
ab:85:53:a5:94:b8:1c:f9:9d:32:02:91:bc:7a:05:9d:58:86:
0f:9c:08:f1
-----BEGIN CERTIFICATE-----
MIIFBTCCA+2gAwIBAgISAYVw51CQ6ZipVE3sD5QUm5Z2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZiOTg3MjQ0NjExYjUyMzA1MzY3NDRiNmE4OWYwNDRmMzJm
NDYyZWEwHhcNMjMwMTAyMDUxNDQ1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmMzcyYTg0ZTVmZGViN2Y4ZGVjNjZjOGQ1ZmY1OWZiNWI5YzhmMDM3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAotwZsfekVfOqpeIMxhClM+Mikkns
lU7Q7xmkF1NoUtgof7n0WO+oaCsLrmVe6rsv2mmuPQMWbYUKULqKL0P28zQRIhvI
IZx6LxHeNV/7uI4t2S0bfa1ug/C1ZrQqdpMlxLSANgxBmx6t4DHtLH5U4nXgQDAD
/LDdbT+yAjEYsY85CWmg2/8SQpop3p0YDDyCPb9qW2nUyGNOZy2ym3kGHeulwiSe
cm4SDElI/T0K4V8rBwEraRLBMWQuddIss82f95QSFe6PG646uZsrA1H4G9HpnlrC
Up2TX+44ZE6jDKTg36nIND9vhfQf476eGvCaQp26bPiA4t85pyglbvub8QIDAQAB
o4ICETCCAg0wHQYDVR0OBBYEFPNyqE5f3rf43sZsjV/1n7W5yPA3MB8GA1UdIwQY
MBaAFPuYckRhG1IwU2dEtqifBE8y9GLqMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS01aHlSR0ViVWpCVFowUzJxSjhFVHpMMFl1by5jZXIw
gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDQvMzE5ZDdjLTdlNzYtNDMwOC1iYzAw
LWJlNTgzMmQ1ZjdhYS8xLzgzS29UbF9ldF9qZXhteU5YX1dmdGJuSThEYy5yb2Ew
gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvNDQvMzE5ZDdjLTdlNzYtNDMwOC1iYzAwLWJlNTgzMmQ1Zjdh
YS8xLzEtNWh5UkdFYlVqQlRaMFMycUo4RVR6TDBZdW8uY3JsMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwJQYIKwYBBQUHAQcBAf8EFjAUMBIEAgABMAwDBAFSh5wD
BAJSh+QwDQYJKoZIhvcNAQELBQADggEBAB4ASOLTjsUyapUdaf4FQMHQhLpGaFNa
5ESMRnrP8Q1v+NGoNlzp92zbnGUHrbZuSUZjnm2BoqKETugLCjCkiv/16c1Xl7ga
jUNzbhtWxRwPzi8HpkAQd2d1VDcBAzPbnU9Pi4t7lces6blzmy7VnyGu1vTlFpEe
e2x/8LXPz6ttJ+/DSAs4gcRKgoPGlXU5XyHYdILBUIdlw5UCPrTYX5p40zTc32Jr
buUSXMQWXtXtKwFs9peJb01GOa/S1hpIQjpyJZT1SamIDJleanSoc8lOKrV4MfIV
U0li1e+834ta2piqPyidBn5c7auFU6WUuBz5nTICkbx6BZ1Yhg+cCPE=
-----END CERTIFICATE-----
Generated at Tue Jan 2 04:09:43 2024 by rpki-client on console-ams.rpki-client.org