Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/a1597b-6ef2-4430-aa56-82451f33f4ca/1/GG3TwTFvUhX0ZZdHzyhc6D4MKRo.roa
File: GG3TwTFvUhX0ZZdHzyhc6D4MKRo.roa (raw, json)
Hash identifier: ARE03Fg9exVOGOTms4PVnzVZPcorGeYLvtr9JGeqZak=
Subject key identifier: 18:6D:D3:C1:31:6F:52:15:F4:65:97:47:CF:28:5C:E8:3E:0C:29:1A
Certificate issuer: /CN=66feef09c450990af34779ce701be6cd54b3d924
Certificate serial: 0189C6097ED8EFE3366AA2CFA45E78F50899
Authority key identifier: 66:FE:EF:09:C4:50:99:0A:F3:47:79:CE:70:1B:E6:CD:54:B3:D9:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zv7vCcRQmQrzR3nOcBvmzVSz2SQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/a1597b-6ef2-4430-aa56-82451f33f4ca/1/GG3TwTFvUhX0ZZdHzyhc6D4MKRo.roa
Signing time: Sat 05 Aug 2023 14:10:58 +0000
ROA not before: Sat 05 Aug 2023 14:10:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 83.168.124.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:c6:09:7e:d8:ef:e3:36:6a:a2:cf:a4:5e:78:f5:08:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66feef09c450990af34779ce701be6cd54b3d924
Validity
Not Before: Aug 5 14:10:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=186dd3c1316f5215f4659747cf285ce83e0c291a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:f2:4f:47:bd:3e:04:b5:3e:9f:1d:19:75:e1:
32:30:50:ba:77:d9:88:97:8e:02:82:74:74:42:e5:
c3:e1:e5:b5:a1:f6:48:c7:f3:c4:cf:e8:a2:95:2d:
7a:49:1b:67:60:63:57:9b:d3:af:b1:e9:31:dc:90:
fb:63:02:97:29:4e:82:53:70:07:83:eb:bf:74:c5:
9a:4e:a9:96:83:fe:9f:7e:a0:af:a6:a2:d2:2a:86:
8e:cd:39:e2:a7:b7:d0:39:a3:00:48:8c:30:e1:0e:
7a:f9:4a:4a:d4:15:26:40:ba:4f:31:8b:1a:5a:0b:
29:e2:23:23:1f:f3:58:79:2a:98:25:84:96:08:13:
af:9d:9a:80:77:d7:d8:a3:95:60:40:55:a5:e8:f3:
f1:9a:25:00:46:fd:c3:74:4e:85:a8:b6:86:fa:cb:
b7:f1:44:30:ce:16:18:cc:25:9b:bb:61:55:90:f6:
06:67:27:5f:33:7e:a1:2c:c5:ed:a2:6d:50:81:ce:
25:07:be:6f:0d:0e:e2:83:22:b1:ee:6b:82:56:e7:
89:d3:61:2e:23:75:5e:28:01:79:ca:50:52:a7:dc:
e1:a0:4e:1d:38:23:ce:7d:8b:60:a8:83:5e:84:d8:
1f:a3:4c:91:c3:08:81:26:f5:2a:2d:a1:2b:56:9e:
a1:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:6D:D3:C1:31:6F:52:15:F4:65:97:47:CF:28:5C:E8:3E:0C:29:1A
X509v3 Authority Key Identifier:
keyid:66:FE:EF:09:C4:50:99:0A:F3:47:79:CE:70:1B:E6:CD:54:B3:D9:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zv7vCcRQmQrzR3nOcBvmzVSz2SQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/a1597b-6ef2-4430-aa56-82451f33f4ca/1/GG3TwTFvUhX0ZZdHzyhc6D4MKRo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/a1597b-6ef2-4430-aa56-82451f33f4ca/1/Zv7vCcRQmQrzR3nOcBvmzVSz2SQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.168.124.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:af:3d:be:6d:c8:97:c9:9c:26:ba:18:43:f7:4c:9c:ee:56:
b0:8f:f7:b9:1e:95:ee:e1:dc:d8:c8:25:5a:aa:1a:53:94:e0:
ac:14:e6:e0:d4:45:bf:71:df:f3:e2:2a:ad:54:ad:42:4a:c8:
5c:9c:b6:ec:e3:59:dd:74:86:25:bd:04:c7:37:01:a8:ee:a1:
57:79:2d:ce:56:3b:d8:71:2e:6a:28:f9:3a:97:d2:d5:20:4a:
01:c2:e3:63:e7:7e:80:ef:e5:de:a0:b4:43:90:35:0a:ea:3d:
bb:7d:46:51:ac:9e:fd:9f:6d:7c:f2:f1:c5:bb:54:c2:be:fd:
de:f1:c2:ba:eb:5a:31:99:c6:42:b6:6e:47:ff:b9:0f:6f:d4:
1f:bb:c2:3c:c4:3c:48:0e:93:38:43:78:69:b9:ae:60:ce:8a:
23:09:b6:31:85:10:f5:3e:64:be:ae:a6:38:06:16:af:ce:2a:
93:18:fe:c7:00:d5:3d:61:d0:41:22:04:e1:39:4b:be:3b:13:
89:9f:a8:8b:da:c3:dc:48:e3:4e:39:63:1d:7c:ec:f7:5e:bf:
63:f4:08:42:f4:13:09:28:b7:47:33:7f:a1:de:27:ab:15:c5:
90:0b:c1:33:21:10:40:45:1e:55:a3:57:aa:44:f0:fc:91:fd:
6c:bd:39:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 7 16:36:28 2023 by rpki-client on console-fra.rpki-client.org