Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/a1597b-6ef2-4430-aa56-82451f33f4ca/1/jCy8Cjdeyjde5vYfe3qkc0nqM3w.roa
File: jCy8Cjdeyjde5vYfe3qkc0nqM3w.roa (raw, json)
Hash identifier: J1IGGUBf+ghqSjpq5qQkubzpSWgHLaOedovFLAkbZNY=
Subject key identifier: 8C:2C:BC:0A:37:5E:CA:37:5E:E6:F6:1F:7B:7A:A4:73:49:EA:33:7C
Certificate issuer: /CN=66feef09c450990af34779ce701be6cd54b3d924
Certificate serial: 018880EFB0A701530BA2420EE153D83739F3
Authority key identifier: 66:FE:EF:09:C4:50:99:0A:F3:47:79:CE:70:1B:E6:CD:54:B3:D9:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zv7vCcRQmQrzR3nOcBvmzVSz2SQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/a1597b-6ef2-4430-aa56-82451f33f4ca/1/jCy8Cjdeyjde5vYfe3qkc0nqM3w.roa
Signing time: Sat 03 Jun 2023 11:06:11 +0000
ROA not before: Sat 03 Jun 2023 11:06:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200088
IP address blocks: 83.168.112.0/24 maxlen: 24
83.168.113.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 21 Aug 2023 12:21:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:80:ef:b0:a7:01:53:0b:a2:42:0e:e1:53:d8:37:39:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66feef09c450990af34779ce701be6cd54b3d924
Validity
Not Before: Jun 3 11:06:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8c2cbc0a375eca375ee6f61f7b7aa47349ea337c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:9e:84:3c:61:5f:e7:3c:8c:04:ca:0c:96:ec:
d0:79:24:bf:0a:aa:06:82:6e:9a:e4:be:6a:ed:1b:
1d:d4:55:14:da:f0:b3:ea:77:f5:cc:00:20:1c:c2:
74:2b:9b:f3:00:26:3e:0e:cf:00:12:e7:49:6e:7c:
1c:ad:ed:01:41:7e:72:84:c1:3b:c7:c4:5f:4f:34:
aa:ac:1d:74:83:75:05:13:10:83:4d:21:89:44:d1:
39:14:a9:12:45:3e:39:56:bb:09:54:b7:db:cd:7e:
5d:63:48:07:ef:36:1f:09:6f:cf:3e:00:0c:4a:d8:
30:f4:26:4f:f5:48:97:0d:da:2f:36:f8:35:b3:97:
40:99:7f:de:dd:13:18:5b:d3:71:e4:a2:3b:1e:c9:
62:72:b8:b8:4b:0b:23:69:0c:1a:33:8b:bd:be:d4:
c3:4d:99:78:4a:5f:b3:a7:7e:57:be:12:d9:da:c4:
52:9a:5d:fd:e9:d7:51:c4:67:7e:82:fc:59:b3:14:
ed:a2:07:be:35:3f:15:37:fb:a2:1e:c1:d4:c8:ff:
6e:88:ae:c6:60:61:3d:7b:4e:87:db:da:aa:e4:83:
b6:99:e2:2b:27:fe:77:64:fd:4c:be:c2:a2:2a:7e:
e2:36:ea:19:05:56:80:61:97:ad:88:37:cf:ce:77:
f4:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:2C:BC:0A:37:5E:CA:37:5E:E6:F6:1F:7B:7A:A4:73:49:EA:33:7C
X509v3 Authority Key Identifier:
keyid:66:FE:EF:09:C4:50:99:0A:F3:47:79:CE:70:1B:E6:CD:54:B3:D9:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zv7vCcRQmQrzR3nOcBvmzVSz2SQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/a1597b-6ef2-4430-aa56-82451f33f4ca/1/jCy8Cjdeyjde5vYfe3qkc0nqM3w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/a1597b-6ef2-4430-aa56-82451f33f4ca/1/Zv7vCcRQmQrzR3nOcBvmzVSz2SQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.168.112.0/23
Signature Algorithm: sha256WithRSAEncryption
5f:35:eb:83:be:df:04:c8:12:2a:c4:92:e1:2c:7e:cf:c8:71:
1e:96:67:93:05:54:bb:61:91:db:79:d4:cc:45:dc:7c:c8:1f:
ce:72:4c:29:80:bc:5d:37:78:7b:41:79:cc:01:89:96:09:cf:
b8:88:e8:21:68:05:0e:03:d3:b9:f6:f8:bd:d4:3b:3e:0a:ed:
f9:32:f7:47:d8:8f:55:95:3d:37:6d:35:86:2f:a1:7b:59:1b:
46:94:7e:3a:cc:81:9b:e2:90:9b:78:8f:bc:cb:96:b8:34:72:
30:01:63:a3:b1:05:cf:31:1b:02:80:d3:49:25:3a:34:60:34:
a1:b5:6d:fa:b5:dd:a3:d7:b0:ac:db:c1:ec:49:d8:88:80:c6:
46:59:86:13:6d:e2:6b:14:5c:78:5c:90:32:60:1d:4e:fd:ec:
91:c1:bf:4c:dd:d5:2e:70:39:23:de:4a:d2:17:f0:fe:58:e0:
85:13:09:9e:fc:50:2c:fd:70:b1:21:ee:b4:cf:ac:ad:68:5d:
ce:66:68:74:28:fb:c3:c1:cd:b9:9a:62:23:9d:5d:55:05:33:
5b:72:ff:b0:74:d0:a7:ac:45:f9:58:01:47:f0:bc:b1:93:8e:
26:73:e4:76:1d:36:c5:53:c1:ff:88:07:f5:1f:8a:65:a8:04:
8f:67:5e:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:38 2024 by rpki-client on console-fra.rpki-client.org