Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/a1597b-6ef2-4430-aa56-82451f33f4ca/1/hYtU_Mbx6Agk2Nz_HDXJFO4UACw.roa
File: hYtU_Mbx6Agk2Nz_HDXJFO4UACw.roa (raw, json)
Hash identifier: mOqsUGNIr+6GQRMfciPK0S2OSBcT0PNXe42a+Fte3/I=
Subject key identifier: 85:8B:54:FC:C6:F1:E8:08:24:D8:DC:FF:1C:35:C9:14:EE:14:00:2C
Certificate issuer: /CN=66feef09c450990af34779ce701be6cd54b3d924
Certificate serial: 018CC9BC97DAFCB45D3C0B23F93987A137D3
Authority key identifier: 66:FE:EF:09:C4:50:99:0A:F3:47:79:CE:70:1B:E6:CD:54:B3:D9:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zv7vCcRQmQrzR3nOcBvmzVSz2SQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/a1597b-6ef2-4430-aa56-82451f33f4ca/1/hYtU_Mbx6Agk2Nz_HDXJFO4UACw.roa
Signing time: Tue 02 Jan 2024 10:33:49 +0000
ROA not before: Tue 02 Jan 2024 10:33:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202520
IP address blocks: 83.168.105.0/24 maxlen: 24
83.168.106.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 18 Jan 2024 10:50:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:97:da:fc:b4:5d:3c:0b:23:f9:39:87:a1:37:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66feef09c450990af34779ce701be6cd54b3d924
Validity
Not Before: Jan 2 10:33:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=858b54fcc6f1e80824d8dcff1c35c914ee14002c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:75:10:7f:d4:8a:dd:00:45:d8:80:50:41:a4:
68:ca:50:d0:78:bc:12:6e:c5:a0:af:a1:4f:e9:d1:
6b:da:43:5f:00:d2:94:62:25:92:f9:61:77:c3:de:
8b:69:86:8f:9a:de:01:2a:3c:e1:18:09:14:f2:49:
5f:6b:d8:8e:fe:c7:4f:78:89:f1:89:27:d9:00:98:
bb:ff:60:8f:15:03:81:5e:af:6d:c8:ef:b7:0a:a5:
a0:5e:9a:88:2f:07:e7:8a:ca:7e:20:32:7f:cd:4b:
dd:0d:bb:d2:46:4b:fd:9c:4c:86:8f:09:1b:41:99:
b8:fb:23:81:a2:fb:b1:d3:3f:c2:82:8f:00:22:7e:
c4:6a:21:97:bb:bf:9f:e5:7b:b6:3c:ad:f4:da:bc:
aa:67:fb:20:cb:fe:e9:ce:62:91:f4:11:27:15:85:
bf:6d:2e:84:da:90:79:0a:85:17:c1:61:63:4d:b9:
7e:f3:8c:85:b3:de:eb:4f:80:4d:f3:85:1f:b3:df:
3a:19:fc:02:b0:bb:e1:95:37:00:f4:f9:ce:e2:8f:
9a:de:b1:6d:25:77:a7:97:08:20:ab:30:85:40:e9:
e1:1d:d8:9a:46:cd:0b:c4:8e:c9:22:d3:22:18:24:
52:8c:14:e2:ad:a4:eb:dc:b0:b3:d5:25:50:cc:db:
0b:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:8B:54:FC:C6:F1:E8:08:24:D8:DC:FF:1C:35:C9:14:EE:14:00:2C
X509v3 Authority Key Identifier:
keyid:66:FE:EF:09:C4:50:99:0A:F3:47:79:CE:70:1B:E6:CD:54:B3:D9:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zv7vCcRQmQrzR3nOcBvmzVSz2SQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/a1597b-6ef2-4430-aa56-82451f33f4ca/1/hYtU_Mbx6Agk2Nz_HDXJFO4UACw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/a1597b-6ef2-4430-aa56-82451f33f4ca/1/Zv7vCcRQmQrzR3nOcBvmzVSz2SQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.168.105.0-83.168.106.255
Signature Algorithm: sha256WithRSAEncryption
57:c5:f5:dd:6d:7a:73:67:9d:28:2e:36:a3:cd:56:78:95:57:
9e:0e:0b:c3:1c:e4:49:3d:75:67:ee:25:4d:41:5c:45:ad:92:
0e:0c:ae:ac:b1:79:b5:79:8c:bc:85:6a:eb:0f:14:7c:fe:07:
a0:41:83:6c:19:ca:48:41:81:58:cd:9b:ab:18:e0:f9:57:8e:
be:84:8a:98:a7:9a:45:84:97:1a:ee:a6:a4:3d:8b:c7:c2:9e:
13:b8:aa:bf:84:82:df:83:47:6d:3f:28:7b:b5:a4:10:17:c4:
70:57:96:36:dd:07:93:a5:25:68:a5:4a:1d:f9:d7:b2:d0:d0:
57:ed:79:30:fa:b4:28:c9:88:08:1c:b9:f5:bc:71:2a:d3:b3:
18:d7:46:fb:32:a7:ff:d1:53:ff:74:48:1a:79:78:cf:46:1a:
5c:98:d9:ea:66:3b:84:44:89:a8:cf:0e:79:93:e1:30:04:27:
3d:ce:23:37:81:d4:6e:72:fe:e2:32:ef:e9:bb:28:fb:88:ea:
56:f0:c8:11:e1:ee:f2:12:7c:b1:77:61:11:98:4c:b2:79:47:
ec:57:e6:80:de:33:0f:9b:f7:45:69:fc:01:ff:f8:27:de:c0:
43:0a:8b:4e:cd:5a:78:c3:4e:7f:4f:ac:27:d7:4c:43:7d:7f:
19:66:5d:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:38 2024 by rpki-client on console-fra.rpki-client.org