Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/a1597b-6ef2-4430-aa56-82451f33f4ca/1/YxJqInsKdA0q4BakkOXZA4qrh-M.roa
File: YxJqInsKdA0q4BakkOXZA4qrh-M.roa (raw, json)
Hash identifier: fWcVcNCicJPQCiXG+JHlqY/sB4D+I1WdK2Z1CSF0Q/w=
Subject key identifier: 63:12:6A:22:7B:0A:74:0D:2A:E0:16:A4:90:E5:D9:03:8A:AB:87:E3
Certificate issuer: /CN=66feef09c450990af34779ce701be6cd54b3d924
Certificate serial: 0189D0B919A45547AC1616450ED48C3F121F
Authority key identifier: 66:FE:EF:09:C4:50:99:0A:F3:47:79:CE:70:1B:E6:CD:54:B3:D9:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zv7vCcRQmQrzR3nOcBvmzVSz2SQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/a1597b-6ef2-4430-aa56-82451f33f4ca/1/YxJqInsKdA0q4BakkOXZA4qrh-M.roa
Signing time: Mon 07 Aug 2023 15:58:58 +0000
ROA not before: Mon 07 Aug 2023 15:58:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1299
IP address blocks: 83.168.124.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:d0:b9:19:a4:55:47:ac:16:16:45:0e:d4:8c:3f:12:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66feef09c450990af34779ce701be6cd54b3d924
Validity
Not Before: Aug 7 15:58:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=63126a227b0a740d2ae016a490e5d9038aab87e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:76:64:14:a6:b6:35:ec:68:cf:98:02:dd:f8:
6c:b0:b5:68:19:93:f3:e8:00:d9:cd:2b:ef:b1:92:
9e:33:a3:77:bd:f2:5f:75:3d:89:98:d9:79:18:0c:
4a:34:ae:89:85:17:2c:db:f7:d0:38:dc:66:3a:15:
55:b6:e8:4d:7b:b0:36:3e:7f:70:45:49:fb:7c:a0:
1b:d7:64:c2:e6:76:b0:b2:e4:75:5a:e4:ae:72:e6:
07:6e:3e:40:df:76:ae:d4:1f:8f:e6:72:b0:2d:c8:
19:cc:b4:d8:fe:c2:cc:05:55:1a:f6:28:5d:ad:85:
78:5a:a9:27:94:df:7b:d7:9e:cd:10:fc:7c:5d:6b:
94:b1:58:4f:de:52:c2:b6:70:c2:fd:44:e0:af:55:
85:37:13:07:3b:79:fa:7f:d9:66:67:6f:ba:9c:f6:
85:0a:79:99:c6:53:03:35:4f:4e:f7:c2:c6:0b:32:
41:ce:d7:35:2b:48:fc:3b:c8:f3:58:18:c2:81:9a:
55:78:cc:18:e9:ba:99:54:65:f1:6a:1f:76:cb:6b:
01:91:d3:6d:78:ac:77:36:e7:cd:60:3e:20:db:b4:
25:e0:7f:0c:b8:88:5c:07:e1:96:eb:86:3f:bf:9d:
4c:cd:93:67:12:3d:c8:b9:f7:10:48:89:dd:a3:6c:
42:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:12:6A:22:7B:0A:74:0D:2A:E0:16:A4:90:E5:D9:03:8A:AB:87:E3
X509v3 Authority Key Identifier:
keyid:66:FE:EF:09:C4:50:99:0A:F3:47:79:CE:70:1B:E6:CD:54:B3:D9:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zv7vCcRQmQrzR3nOcBvmzVSz2SQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/a1597b-6ef2-4430-aa56-82451f33f4ca/1/YxJqInsKdA0q4BakkOXZA4qrh-M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/a1597b-6ef2-4430-aa56-82451f33f4ca/1/Zv7vCcRQmQrzR3nOcBvmzVSz2SQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.168.124.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:6e:07:2b:6a:69:d5:14:e6:14:2e:72:21:3e:f5:76:06:8c:
ea:5b:a2:fa:20:84:8f:9e:37:f5:e9:45:48:ba:7e:31:5c:12:
2f:97:ba:69:94:d9:90:ad:65:31:e4:b5:6b:d7:76:cb:4d:44:
64:38:ff:44:93:c7:09:22:e3:1d:26:82:44:0e:be:fc:3f:ff:
2c:5a:dc:78:cb:61:d9:e8:d1:38:7f:7e:55:fa:97:b9:c6:95:
4a:2d:c5:4b:74:8e:ec:51:d8:15:57:8d:c2:8a:a8:4c:c3:8f:
f9:da:db:7b:c9:8b:fc:e5:62:e1:b8:c0:b3:e0:5a:bb:05:b4:
7b:d8:fd:19:a3:21:a0:55:c5:3e:29:93:16:cf:28:ab:51:74:
19:ce:36:c5:55:b8:dd:0b:4a:43:a4:8e:fc:e0:1c:0e:47:9a:
fd:37:95:94:3a:55:9a:be:3e:60:24:40:2e:70:9f:ca:8a:71:
63:4c:7e:cd:86:28:bf:75:93:65:b5:95:bf:aa:50:23:83:bc:
f3:bc:61:9a:91:07:63:79:b0:38:0c:2e:ef:41:c6:51:73:be:
63:2d:76:e5:7f:eb:4f:16:19:81:52:e8:29:60:11:ac:c9:b6:
5c:ac:d9:1b:57:16:a0:d5:71:f9:c5:87:8d:d0:50:72:6e:c5:
62:a0:ea:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 14:37:03 2024 by rpki-client on console-fra.rpki-client.org