Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/a1597b-6ef2-4430-aa56-82451f33f4ca/1/cWwGpQpi-tqI4A5NpDrLwY1_taU.roa
File: cWwGpQpi-tqI4A5NpDrLwY1_taU.roa (raw, json)
Hash identifier: 3vp1uyWVUUyVuJZz4rZvj98AmR1RdtQzofHDmib+rlw=
Subject key identifier: 71:6C:06:A5:0A:62:FA:DA:88:E0:0E:4D:A4:3A:CB:C1:8D:7F:B5:A5
Certificate issuer: /CN=66feef09c450990af34779ce701be6cd54b3d924
Certificate serial: 0189AB60D4339B35609DDE47477E359D78D9
Authority key identifier: 66:FE:EF:09:C4:50:99:0A:F3:47:79:CE:70:1B:E6:CD:54:B3:D9:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zv7vCcRQmQrzR3nOcBvmzVSz2SQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/a1597b-6ef2-4430-aa56-82451f33f4ca/1/cWwGpQpi-tqI4A5NpDrLwY1_taU.roa
Signing time: Mon 31 Jul 2023 09:56:36 +0000
ROA not before: Mon 31 Jul 2023 09:56:36 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200482
IP address blocks: 83.168.123.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 16 Aug 2023 10:12:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:ab:60:d4:33:9b:35:60:9d:de:47:47:7e:35:9d:78:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66feef09c450990af34779ce701be6cd54b3d924
Validity
Not Before: Jul 31 09:56:36 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=716c06a50a62fada88e00e4da43acbc18d7fb5a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:e2:d5:32:14:25:0a:75:a9:07:a0:dc:19:3e:
ec:9e:64:fd:e7:29:73:75:dd:33:d3:24:60:8c:ac:
b5:8b:66:44:fd:64:89:0c:a9:c9:fb:67:72:63:b1:
4c:25:09:46:cb:38:7c:31:c3:51:c1:82:87:3c:ae:
ed:b5:a6:9a:5b:5d:94:84:98:b8:a1:2d:6c:1e:5d:
22:7d:0c:27:71:3e:71:e9:b8:b3:07:1a:1f:07:d0:
1a:af:8d:ca:ba:12:de:d1:a6:cb:17:a8:f4:91:5f:
9e:c7:79:ba:7f:df:fc:6d:4a:5c:41:40:b3:a7:65:
48:82:48:5d:a5:03:f3:65:2a:d1:8b:38:3a:ed:73:
99:84:d2:e8:75:fa:11:21:e5:68:ed:a2:5b:81:ff:
34:b9:40:71:99:ea:af:bd:96:df:d9:10:c7:63:0b:
ba:20:8f:5b:3a:ef:e3:99:d2:d6:5e:4f:f1:a7:08:
1b:bd:2c:d7:bc:97:2a:ff:db:0b:21:17:b7:7a:33:
ae:fe:af:65:ec:8f:19:8d:10:d2:02:e1:04:77:ab:
bd:87:b8:2a:01:37:7e:f9:36:fa:26:98:19:63:a6:
e8:5e:f3:06:9f:2c:88:9c:c2:43:40:cc:64:3b:da:
14:5f:0b:36:2e:43:b7:e7:51:32:09:89:98:6a:1f:
12:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:6C:06:A5:0A:62:FA:DA:88:E0:0E:4D:A4:3A:CB:C1:8D:7F:B5:A5
X509v3 Authority Key Identifier:
keyid:66:FE:EF:09:C4:50:99:0A:F3:47:79:CE:70:1B:E6:CD:54:B3:D9:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zv7vCcRQmQrzR3nOcBvmzVSz2SQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/a1597b-6ef2-4430-aa56-82451f33f4ca/1/cWwGpQpi-tqI4A5NpDrLwY1_taU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/a1597b-6ef2-4430-aa56-82451f33f4ca/1/Zv7vCcRQmQrzR3nOcBvmzVSz2SQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.168.123.0/24
Signature Algorithm: sha256WithRSAEncryption
53:d9:0e:51:6d:27:2c:97:5d:13:c3:15:90:39:01:13:47:f5:
c2:2e:2f:69:65:bc:b4:8c:1b:9c:a8:a9:ad:d1:c2:43:3b:2b:
cc:bc:dc:f1:9a:25:68:39:bf:c3:97:82:dd:a3:ce:94:96:ea:
8d:6d:00:24:ab:9c:fb:f3:eb:9a:00:bf:b9:01:14:c7:24:10:
3a:18:f0:26:a5:1f:46:fd:47:56:4f:e2:ea:4b:5d:67:1c:23:
e3:82:dd:b1:f7:b0:72:8f:c6:52:d2:d4:12:3e:c4:ca:e3:10:
59:77:da:9f:e0:e4:ed:34:62:26:12:3a:74:14:6f:28:cb:d7:
39:6b:58:35:31:1d:9c:f9:f4:e6:ca:8f:ff:5d:c0:51:94:00:
eb:be:b2:a0:b1:75:22:3a:c8:67:74:2c:19:13:7e:3f:35:1b:
8a:22:88:ba:af:06:e6:9a:e2:1e:3f:f2:5c:d0:9d:85:92:bf:
51:42:46:25:de:7e:d6:bb:b5:2a:ca:7c:0a:be:e4:7a:94:2f:
49:d5:13:7c:9d:6f:75:96:ed:80:0a:11:88:94:bf:36:43:75:
b9:aa:8c:d5:7d:d3:d6:c8:23:b1:e6:f9:68:93:71:9c:a8:81:
f5:c3:a6:51:ff:00:5c:b3:9c:a5:f9:f5:c5:aa:17:cc:1d:b4:
8a:5f:49:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:01 2024 by rpki-client on console-ams.rpki-client.org