Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/161c3f-b83d-45b1-aa8e-d1bb6b4dd701/1/83z7lXOoD0RlaX9HOzPFKaMpZoE.roa
File: 83z7lXOoD0RlaX9HOzPFKaMpZoE.roa (raw, json)
Hash identifier: waPq66DUJfdVrMKM+XvcjpM1HqLbJuH7NrIlT31nbU8=
Subject key identifier: F3:7C:FB:95:73:A8:0F:44:65:69:7F:47:3B:33:C5:29:A3:29:66:81
Certificate issuer: /CN=14bee0ebd06b4b812f9e13716e25f1c3c3d14cc6
Certificate serial: 018FBF8DA6D891B4C57B30CAB60F4561CBB9
Authority key identifier: 14:BE:E0:EB:D0:6B:4B:81:2F:9E:13:71:6E:25:F1:C3:C3:D1:4C:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FL7g69BrS4EvnhNxbiXxw8PRTMY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/161c3f-b83d-45b1-aa8e-d1bb6b4dd701/1/83z7lXOoD0RlaX9HOzPFKaMpZoE.roa
Signing time: Tue 28 May 2024 14:14:42 +0000
ROA not before: Tue 28 May 2024 14:14:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 213035
IP address blocks: 37.0.13.0/24 maxlen: 24
85.202.170.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 20 Aug 2024 13:36:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:bf:8d:a6:d8:91:b4:c5:7b:30:ca:b6:0f:45:61:cb:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=14bee0ebd06b4b812f9e13716e25f1c3c3d14cc6
Validity
Not Before: May 28 14:14:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f37cfb9573a80f4465697f473b33c529a3296681
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:f8:a8:b7:93:b8:18:86:f0:fe:02:2f:4d:00:
0b:e9:27:e8:b1:63:26:9d:d1:a2:ba:81:7b:74:0f:
54:53:69:d3:be:dc:c5:87:a8:c7:13:0a:fa:df:07:
89:6a:72:c2:d8:19:33:7d:aa:42:f3:79:b6:70:a8:
57:3d:81:6e:f8:09:f0:51:74:26:97:0a:1c:1e:53:
be:28:21:e1:f6:5b:c4:11:af:c1:23:d8:1e:5c:8e:
e2:30:06:56:d5:ec:01:c3:53:a0:63:a9:e1:83:96:
99:6c:66:6b:9b:29:ce:78:a5:00:3e:18:7c:41:51:
83:2d:ea:42:a1:49:70:c9:e6:1e:a3:6d:c7:f2:b0:
97:4e:dc:91:6a:d7:91:8e:30:f8:26:8f:b9:6b:f3:
27:ff:90:61:af:fd:c1:df:66:9e:b6:38:68:5f:88:
7c:55:3d:8c:28:78:0a:1b:ef:1a:ae:17:3a:ff:3b:
92:8b:0d:7c:b2:7d:55:43:5e:d8:53:bf:79:06:3e:
41:75:c3:44:7b:64:77:6e:0e:d2:75:3b:ba:c3:8e:
38:93:f6:cc:51:5c:b6:35:56:18:74:42:09:a6:6e:
dd:e8:f6:14:2a:9e:94:91:71:58:5c:d3:d6:92:c3:
29:c8:14:26:03:ab:ee:69:cc:e0:3c:04:e4:00:97:
2b:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:7C:FB:95:73:A8:0F:44:65:69:7F:47:3B:33:C5:29:A3:29:66:81
X509v3 Authority Key Identifier:
keyid:14:BE:E0:EB:D0:6B:4B:81:2F:9E:13:71:6E:25:F1:C3:C3:D1:4C:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FL7g69BrS4EvnhNxbiXxw8PRTMY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/161c3f-b83d-45b1-aa8e-d1bb6b4dd701/1/83z7lXOoD0RlaX9HOzPFKaMpZoE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/161c3f-b83d-45b1-aa8e-d1bb6b4dd701/1/FL7g69BrS4EvnhNxbiXxw8PRTMY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.0.13.0/24
85.202.170.0/23
Signature Algorithm: sha256WithRSAEncryption
86:a0:2c:46:4a:6a:78:6c:e5:d7:71:6c:9a:4e:d7:51:8a:0a:
2a:d6:64:52:ea:0e:2e:8d:95:f4:85:aa:23:cc:58:9d:09:06:
70:37:55:51:0d:31:a2:fb:6e:0f:4e:54:74:52:53:7e:c6:a8:
c2:31:3c:c9:04:12:67:02:39:be:3f:2c:32:53:d4:a6:b6:ee:
0e:0d:d8:6c:6c:f7:aa:6e:42:41:06:a8:56:b1:70:33:8a:95:
83:83:3a:e4:88:f7:98:db:bf:aa:c9:8c:9a:58:33:60:f6:ed:
05:08:70:f8:0d:18:f9:bd:c5:44:83:04:9a:4a:13:80:14:7e:
b7:57:f5:8b:5a:d6:9c:90:37:9e:d9:57:47:59:04:57:16:74:
91:eb:c3:af:67:4c:dc:90:92:d3:d0:c3:8a:86:f5:ad:c6:dc:
b6:4f:6a:97:2e:26:ba:a3:2a:bc:8e:bf:36:af:cc:5b:76:21:
eb:f9:41:5b:6c:b7:8a:ae:89:b0:30:c1:a9:48:04:91:1a:bc:
b0:5c:65:a1:90:4c:44:08:5f:7c:f1:16:0d:00:7e:71:f2:e2:
c3:37:90:cc:0d:b4:d1:28:43:90:28:34:4d:18:4f:7d:e8:71:
50:e0:b5:bb:48:79:c8:d1:9a:fb:97:75:1c:a7:49:ec:38:46:
e4:cf:f4:45
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAY+/jabYkbTFezDKtg9FYcu5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE0YmVlMGViZDA2YjRiODEyZjllMTM3MTZlMjVmMWMzYzNk
MTRjYzYwHhcNMjQwNTI4MTQxNDQyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmMzdjZmI5NTczYTgwZjQ0NjU2OTdmNDczYjMzYzUyOWEzMjk2NjgxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu/iot5O4GIbw/gIvTQAL6SfosWMm
ndGiuoF7dA9UU2nTvtzFh6jHEwr63weJanLC2BkzfapC83m2cKhXPYFu+AnwUXQm
lwocHlO+KCHh9lvEEa/BI9geXI7iMAZW1ewBw1OgY6nhg5aZbGZrmynOeKUAPhh8
QVGDLepCoUlwyeYeo23H8rCXTtyRateRjjD4Jo+5a/Mn/5Bhr/3B32aetjhoX4h8
VT2MKHgKG+8arhc6/zuSiw18sn1VQ17YU795Bj5BdcNEe2R3bg7SdTu6w444k/bM
UVy2NVYYdEIJpm7d6PYUKp6UkXFYXNPWksMpyBQmA6vuaczgPATkAJcrGQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFPN8+5VzqA9EZWl/RzszxSmjKWaBMB8GA1UdIwQY
MBaAFBS+4OvQa0uBL54TcW4l8cPD0UzGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRkw3ZzY5QnJTNEV2bmhOeGJpWHh3OFBSVE1ZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS8xNjFjM2YtYjgzZC00NWIxLWFhOGUt
ZDFiYjZiNGRkNzAxLzEvODN6N2xYT29EMFJsYVg5SE96UEZLYU1wWm9FLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS8xNjFjM2YtYjgzZC00NWIxLWFhOGUtZDFiYjZiNGRkNzAx
LzEvRkw3ZzY5QnJTNEV2bmhOeGJpWHh3OFBSVE1ZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAJQANAwQB
VcqqMA0GCSqGSIb3DQEBCwUAA4IBAQCGoCxGSmp4bOXXcWyaTtdRigoq1mRS6g4u
jZX0haojzFidCQZwN1VRDTGi+24PTlR0UlN+xqjCMTzJBBJnAjm+PywyU9Smtu4O
DdhsbPeqbkJBBqhWsXAzipWDgzrkiPeY27+qyYyaWDNg9u0FCHD4DRj5vcVEgwSa
ShOAFH63V/WLWtackDee2VdHWQRXFnSR68OvZ0zckJLT0MOKhvWtxty2T2qXLia6
oyq8jr82r8xbdiHr+UFbbLeKromwMMGpSASRGrywXGWhkExECF988RYNAH5x8uLD
N5DMDbTRKEOQKDRNGE996HFQ4LW7SHnI0Zr7l3Ucp0nsOEbkz/RF
-----END CERTIFICATE-----
Generated at Tue Aug 20 17:10:13 2024 by rpki-client on console-ams.rpki-client.org