Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/1cbc1e-4d46-4b5b-b249-3208de39c09d/1/yEfQlRYGf4N8ic11k567s8lGnnE.roa
File: yEfQlRYGf4N8ic11k567s8lGnnE.roa (raw, json)
Hash identifier: sI7MeJttHg6xLICscFfg2xPWmA/tuYhn3/TtOO2WNhk=
Subject key identifier: C8:47:D0:95:16:06:7F:83:7C:89:CD:75:93:9E:BB:B3:C9:46:9E:71
Certificate issuer: /CN=96e6f77cbda101987d9dfc84be90b6fba66adc9f
Certificate serial: 01904641DA6A855423F27D49DC35E073C186
Authority key identifier: 96:E6:F7:7C:BD:A1:01:98:7D:9D:FC:84:BE:90:B6:FB:A6:6A:DC:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lub3fL2hAZh9nfyEvpC2-6Zq3J8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/1cbc1e-4d46-4b5b-b249-3208de39c09d/1/yEfQlRYGf4N8ic11k567s8lGnnE.roa
Signing time: Sun 23 Jun 2024 18:00:39 +0000
ROA not before: Sun 23 Jun 2024 18:00:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 31595
IP address blocks: 83.167.160.0/19 maxlen: 19
83.167.160.0/20 maxlen: 20
2001:4be8::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 24 Jun 2024 06:14:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:46:41:da:6a:85:54:23:f2:7d:49:dc:35:e0:73:c1:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96e6f77cbda101987d9dfc84be90b6fba66adc9f
Validity
Not Before: Jun 23 18:00:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c847d09516067f837c89cd75939ebbb3c9469e71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:c3:1b:2a:2f:58:6f:aa:f1:8d:a6:c7:b6:82:
3e:18:4a:31:72:68:c9:14:71:eb:75:1a:9d:27:82:
88:91:d8:4b:e1:9c:55:87:e1:1b:f0:72:ad:78:83:
fa:94:b1:17:4e:6b:6b:7c:73:09:55:b4:c5:80:ab:
1c:ce:48:24:9c:50:1f:93:21:9f:86:80:cf:11:a1:
48:21:cb:ee:aa:63:90:05:6a:73:b5:b8:4b:e2:da:
be:9d:34:21:9c:f9:b9:2b:48:f3:a9:35:39:dc:e7:
40:94:d6:a2:a0:27:c3:8e:fa:eb:b6:52:2a:47:07:
75:5c:c6:63:56:e7:1b:a6:97:ed:6a:78:af:0c:85:
f2:5b:47:40:2a:3e:72:e1:bb:bf:6c:12:13:de:c7:
04:f7:37:c6:23:6f:6d:c0:fd:3f:2c:70:1f:35:38:
b0:1a:98:40:d8:55:fe:5f:2a:8c:8c:b5:de:a0:8b:
f2:05:e1:b9:7c:3f:bd:ce:b2:d2:dd:19:6d:80:30:
49:69:b8:41:e4:33:bc:6c:6a:5b:db:e8:87:12:03:
39:a3:4a:6f:a1:03:a3:a1:fc:36:bb:4b:a8:8a:7c:
0f:d1:34:24:67:5c:3b:7c:d3:16:e6:71:d0:bd:9e:
e2:03:ab:b7:57:70:9c:78:7c:21:eb:f5:7f:12:f0:
58:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:47:D0:95:16:06:7F:83:7C:89:CD:75:93:9E:BB:B3:C9:46:9E:71
X509v3 Authority Key Identifier:
keyid:96:E6:F7:7C:BD:A1:01:98:7D:9D:FC:84:BE:90:B6:FB:A6:6A:DC:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lub3fL2hAZh9nfyEvpC2-6Zq3J8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/1cbc1e-4d46-4b5b-b249-3208de39c09d/1/yEfQlRYGf4N8ic11k567s8lGnnE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/1cbc1e-4d46-4b5b-b249-3208de39c09d/1/lub3fL2hAZh9nfyEvpC2-6Zq3J8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.167.160.0/19
IPv6:
2001:4be8::/32
Signature Algorithm: sha256WithRSAEncryption
19:18:94:f6:1e:0f:80:ac:21:26:7c:c4:29:64:5e:76:e3:76:
7f:c9:1a:cf:91:ce:c1:23:52:78:51:c8:7c:94:8e:71:af:2a:
61:5a:30:0c:7e:ce:eb:0d:25:eb:12:86:f9:87:c7:a6:6f:bc:
2b:d7:ae:f9:5b:29:0b:32:7c:eb:7b:d6:2f:57:a2:71:99:a0:
34:cb:e8:98:2e:3b:9f:1b:73:48:90:90:77:5b:d9:37:e0:b0:
0c:e9:87:23:a6:03:21:d1:da:a1:02:b4:2e:9e:a6:35:26:c2:
1e:bd:d9:45:76:e3:b7:00:ca:f0:c7:ad:3c:f7:cd:53:b3:0e:
73:7d:67:2f:38:47:2a:79:fa:48:86:6c:30:45:59:6d:d1:c4:
c4:b7:80:26:7e:30:f0:68:fe:07:37:e8:82:bf:8f:3b:0d:e2:
ec:d1:c0:d2:56:6a:bf:cd:85:81:78:c1:4e:f6:a1:b0:74:c4:
07:11:21:3e:5e:d1:bc:ad:16:76:f2:76:63:e8:cc:30:c8:bf:
be:6b:c7:9b:64:01:2f:ee:74:bc:6a:66:15:56:e8:88:39:50:
a0:62:c2:e9:5c:0f:0b:b9:73:fa:05:77:b3:28:f6:b3:89:f0:
88:48:55:b8:22:7b:80:5d:38:82:91:06:5b:0a:aa:5e:38:cc:
d4:44:e9:3b
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAZBGQdpqhVQj8n1J3DXgc8GGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk2ZTZmNzdjYmRhMTAxOTg3ZDlkZmM4NGJlOTBiNmZiYTY2
YWRjOWYwHhcNMjQwNjIzMTgwMDM5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjODQ3ZDA5NTE2MDY3ZjgzN2M4OWNkNzU5MzllYmJiM2M5NDY5ZTcxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA58MbKi9Yb6rxjabHtoI+GEoxcmjJ
FHHrdRqdJ4KIkdhL4ZxVh+Eb8HKteIP6lLEXTmtrfHMJVbTFgKsczkgknFAfkyGf
hoDPEaFIIcvuqmOQBWpztbhL4tq+nTQhnPm5K0jzqTU53OdAlNaioCfDjvrrtlIq
Rwd1XMZjVucbppftanivDIXyW0dAKj5y4bu/bBIT3scE9zfGI29twP0/LHAfNTiw
GphA2FX+XyqMjLXeoIvyBeG5fD+9zrLS3RltgDBJabhB5DO8bGpb2+iHEgM5o0pv
oQOjofw2u0uoinwP0TQkZ1w7fNMW5nHQvZ7iA6u3V3CceHwh6/V/EvBYgQIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFMhH0JUWBn+DfInNdZOeu7PJRp5xMB8GA1UdIwQY
MBaAFJbm93y9oQGYfZ38hL6QtvumatyfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbHViM2ZMMmhBWmg5bmZ5RXZwQzItNlpxM0o4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi8xY2JjMWUtNGQ0Ni00YjViLWIyNDkt
MzIwOGRlMzljMDlkLzEveUVmUWxSWUdmNE44aWMxMWs1NjdzOGxHbm5FLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yi8xY2JjMWUtNGQ0Ni00YjViLWIyNDktMzIwOGRlMzljMDlk
LzEvbHViM2ZMMmhBWmg5bmZ5RXZwQzItNlpxM0o4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQFU6egMA0E
AgACMAcDBQAgAUvoMA0GCSqGSIb3DQEBCwUAA4IBAQAZGJT2Hg+ArCEmfMQpZF52
43Z/yRrPkc7BI1J4Uch8lI5xryphWjAMfs7rDSXrEob5h8emb7wr1675WykLMnzr
e9YvV6JxmaA0y+iYLjufG3NIkJB3W9k34LAM6YcjpgMh0dqhArQunqY1JsIevdlF
duO3AMrwx608981Tsw5zfWcvOEcqefpIhmwwRVlt0cTEt4AmfjDwaP4HN+iCv487
DeLs0cDSVmq/zYWBeMFO9qGwdMQHESE+XtG8rRZ28nZj6MwwyL++a8ebZAEv7nS8
amYVVuiIOVCgYsLpXA8LuXP6BXezKPazifCISFW4InuAXTiCkQZbCqpeOMzUROk7
-----END CERTIFICATE-----
Generated at Sun Apr 20 03:34:05 2025 by rpki-client