Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/EIvhz7lvOWtS9hCNz4yxfFp_RZs.roa
File: EIvhz7lvOWtS9hCNz4yxfFp_RZs.roa (raw, json)
Hash identifier: a0Tz1pREwSwidRk0xkWBJV3mydPgkCv9P8Yix0GgefA=
Subject key identifier: 10:8B:E1:CF:B9:6F:39:6B:52:F6:10:8D:CF:8C:B1:7C:5A:7F:45:9B
Certificate issuer: /CN=073b4c1248c4bcf22b0577dfca9b14d9063c28c0
Certificate serial: 018CB04AC10B9D8F2532F790D3AF30C9673E
Authority key identifier: 07:3B:4C:12:48:C4:BC:F2:2B:05:77:DF:CA:9B:14:D9:06:3C:28:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BztMEkjEvPIrBXffypsU2QY8KMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/EIvhz7lvOWtS9hCNz4yxfFp_RZs.roa
Signing time: Thu 28 Dec 2023 11:58:58 +0000
ROA not before: Thu 28 Dec 2023 11:58:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216127
IP address blocks: 193.37.71.0/24 maxlen: 24
80.66.87.0/24 maxlen: 24
87.251.89.0/24 maxlen: 24
87.251.88.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 29 Dec 2023 12:38:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:b0:4a:c1:0b:9d:8f:25:32:f7:90:d3:af:30:c9:67:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=073b4c1248c4bcf22b0577dfca9b14d9063c28c0
Validity
Not Before: Dec 28 11:58:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=108be1cfb96f396b52f6108dcf8cb17c5a7f459b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:c5:34:df:cd:49:59:0b:be:58:f1:45:f7:54:
43:38:25:5b:0a:86:d8:a7:dc:e4:f7:73:90:4b:fb:
c4:f8:1e:f6:5b:fa:ef:12:b9:7e:dd:e9:2f:10:f9:
00:45:b8:6b:b0:48:68:41:39:4b:6c:d2:61:6c:bf:
14:9c:78:cc:3a:fe:8c:35:ff:6a:f9:46:6d:1d:02:
7c:03:4d:08:d3:7e:2d:26:26:34:dc:01:17:5e:08:
2d:0a:67:26:6d:c5:d4:66:f9:ed:5b:9e:52:01:bf:
2e:60:dd:e1:73:65:28:72:fd:92:a1:15:6d:1a:0b:
45:21:aa:83:ce:2b:90:d1:15:6f:a4:c5:1f:35:71:
7c:04:28:66:21:2b:bb:be:17:fa:38:a4:61:eb:cb:
09:41:49:f5:96:ed:0b:2b:ac:e1:7c:11:bd:f3:27:
b1:95:e9:1c:59:75:cc:ad:b1:c2:fe:1f:4e:97:c4:
7a:d1:90:16:16:47:39:06:31:c9:88:af:8d:fc:e8:
4b:f4:19:1d:93:57:25:86:a2:e1:05:66:b4:56:e2:
ca:56:cc:bb:33:bd:64:d0:09:81:9e:29:a0:28:80:
c4:2b:69:c5:80:b6:b2:52:d6:81:c3:ff:0e:ed:19:
a5:62:58:fa:68:2b:29:6d:6e:30:e2:f1:66:ec:d7:
0d:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:8B:E1:CF:B9:6F:39:6B:52:F6:10:8D:CF:8C:B1:7C:5A:7F:45:9B
X509v3 Authority Key Identifier:
keyid:07:3B:4C:12:48:C4:BC:F2:2B:05:77:DF:CA:9B:14:D9:06:3C:28:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BztMEkjEvPIrBXffypsU2QY8KMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/EIvhz7lvOWtS9hCNz4yxfFp_RZs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/BztMEkjEvPIrBXffypsU2QY8KMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.66.87.0/24
87.251.88.0/23
193.37.71.0/24
Signature Algorithm: sha256WithRSAEncryption
37:db:ca:ea:a9:d3:2b:b5:2a:34:85:91:08:02:f1:04:98:07:
94:24:13:ca:7a:99:bb:ff:5e:fe:4c:13:e6:15:c2:b8:80:10:
ae:3f:ec:6a:c3:6f:26:c2:6d:0e:e4:7e:58:af:18:08:61:be:
ce:09:9f:62:fc:02:ca:f5:35:74:be:76:c4:0a:9d:46:e0:55:
9c:5b:c2:02:87:ef:71:cd:63:b9:fe:56:f9:9b:b6:39:ef:2d:
66:5b:e2:88:16:a4:15:eb:8d:28:6d:9d:a3:0a:0a:cd:de:99:
de:82:01:82:8c:71:38:20:4b:0a:1c:d0:a8:d6:71:37:37:3c:
a1:a6:20:6f:2a:1d:55:b8:fd:40:5a:3c:5d:62:57:02:bc:65:
96:14:25:7b:df:3d:55:b6:ca:f8:17:fb:23:00:21:b3:76:1e:
02:b6:e3:d3:24:f5:9f:a9:7d:af:fc:27:47:2d:7d:ff:e3:18:
7c:4f:93:27:43:33:79:2a:36:59:7d:bc:ab:56:65:52:42:b9:
4e:ba:49:27:94:06:53:75:e6:5d:3b:1f:ac:a6:9e:e2:19:8e:
f1:dd:01:44:83:36:db:2c:38:71:c6:13:40:ae:7e:ea:81:1b:
fa:41:90:c3:11:10:a1:d0:94:da:7f:fb:00:80:33:8e:74:3c:
50:02:a4:97
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAYywSsELnY8lMveQ068wyWc+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA3M2I0YzEyNDhjNGJjZjIyYjA1NzdkZmNhOWIxNGQ5MDYz
YzI4YzAwHhcNMjMxMjI4MTE1ODU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMDhiZTFjZmI5NmYzOTZiNTJmNjEwOGRjZjhjYjE3YzVhN2Y0NTliMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApsU0381JWQu+WPFF91RDOCVbCobY
p9zk93OQS/vE+B72W/rvErl+3ekvEPkARbhrsEhoQTlLbNJhbL8UnHjMOv6MNf9q
+UZtHQJ8A00I034tJiY03AEXXggtCmcmbcXUZvntW55SAb8uYN3hc2Uocv2SoRVt
GgtFIaqDziuQ0RVvpMUfNXF8BChmISu7vhf6OKRh68sJQUn1lu0LK6zhfBG98yex
lekcWXXMrbHC/h9Ol8R60ZAWFkc5BjHJiK+N/OhL9Bkdk1clhqLhBWa0VuLKVsy7
M71k0AmBnimgKIDEK2nFgLayUtaBw/8O7RmlYlj6aCspbW4w4vFm7NcN2QIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFBCL4c+5bzlrUvYQjc+MsXxaf0WbMB8GA1UdIwQY
MBaAFAc7TBJIxLzyKwV338qbFNkGPCjAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQnp0TUVrakV2UElyQlhmZnlwc1UyUVk4S01BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy82M2RiZTUtNWFhMy00ZjE5LThkYTQt
YThkMzYxY2U2NGFhLzEvRUl2aHo3bHZPV3RTOWhDTno0eXhmRnBfUlpzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yy82M2RiZTUtNWFhMy00ZjE5LThkYTQtYThkMzYxY2U2NGFh
LzEvQnp0TUVrakV2UElyQlhmZnlwc1UyUVk4S01BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQAUEJXAwQB
V/tYAwQAwSVHMA0GCSqGSIb3DQEBCwUAA4IBAQA328rqqdMrtSo0hZEIAvEEmAeU
JBPKepm7/17+TBPmFcK4gBCuP+xqw28mwm0O5H5YrxgIYb7OCZ9i/ALK9TV0vnbE
Cp1G4FWcW8ICh+9xzWO5/lb5m7Y57y1mW+KIFqQV640obZ2jCgrN3pneggGCjHE4
IEsKHNCo1nE3NzyhpiBvKh1VuP1AWjxdYlcCvGWWFCV73z1Vtsr4F/sjACGzdh4C
tuPTJPWfqX2v/CdHLX3/4xh8T5MnQzN5KjZZfbyrVmVSQrlOukknlAZTdeZdOx+s
pp7iGY7x3QFEgzbbLDhxxhNArn7qgRv6QZDDERCh0JTaf/sAgDOOdDxQAqSX
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:50 2024 by rpki-client on console-ams.rpki-client.org