Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/a1597b-6ef2-4430-aa56-82451f33f4ca/1/rEgkf4sgP17EP8zTsse0VB8muds.roa
File: rEgkf4sgP17EP8zTsse0VB8muds.roa (raw, json)
Hash identifier: 0IVdgirqwJBJJNtxPxkKZM/9ZlgMprzWinFIdJWVxPw=
Subject key identifier: AC:48:24:7F:8B:20:3F:5E:C4:3F:CC:D3:B2:C7:B4:54:1F:26:B9:DB
Certificate issuer: /CN=66feef09c450990af34779ce701be6cd54b3d924
Certificate serial: 018943E0C583CF72F4EDFAE29119908DB84A
Authority key identifier: 66:FE:EF:09:C4:50:99:0A:F3:47:79:CE:70:1B:E6:CD:54:B3:D9:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zv7vCcRQmQrzR3nOcBvmzVSz2SQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/a1597b-6ef2-4430-aa56-82451f33f4ca/1/rEgkf4sgP17EP8zTsse0VB8muds.roa
Signing time: Tue 11 Jul 2023 07:35:51 +0000
ROA not before: Tue 11 Jul 2023 07:35:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202520
IP address blocks: 83.168.105.0/24 maxlen: 24
83.168.106.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:43:e0:c5:83:cf:72:f4:ed:fa:e2:91:19:90:8d:b8:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66feef09c450990af34779ce701be6cd54b3d924
Validity
Not Before: Jul 11 07:35:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ac48247f8b203f5ec43fccd3b2c7b4541f26b9db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:e0:39:37:98:71:91:e9:52:98:64:a5:ae:79:
db:fd:ee:e2:df:5f:9d:76:4e:d2:68:5d:26:ec:48:
95:54:7c:d2:bb:5e:2d:e0:70:52:8f:1f:ee:74:1a:
37:2c:cd:1e:e5:99:4c:c4:01:97:3f:7d:36:3a:f2:
3f:a8:dc:1b:12:19:fd:37:6a:25:bf:f4:33:fd:8d:
eb:74:d9:0e:43:c4:a0:8b:f3:55:af:81:b3:e1:02:
16:eb:3f:d0:93:21:20:86:e7:01:75:5a:8e:3c:c5:
39:ae:15:36:b5:bd:e2:76:e3:f3:a9:67:9d:f1:51:
a5:b2:85:f6:ce:68:d5:ff:1a:40:13:49:ad:bf:27:
45:88:50:be:8e:71:62:f7:7a:47:06:e2:b3:7c:18:
b3:b9:43:2f:e1:13:67:2c:09:5e:b5:1a:46:40:dc:
0e:73:20:ed:8a:6c:69:3a:2f:67:aa:ff:9f:1e:ee:
f2:94:c6:a0:af:25:d0:62:9f:d4:a1:8b:61:3b:34:
99:97:99:9b:90:b3:6f:c7:f2:55:b2:6a:c2:72:f4:
09:6b:6b:06:b1:d7:ae:6e:2d:16:c2:75:02:ce:7d:
ae:75:7d:9e:95:cf:0a:0a:8d:b2:ff:dd:d5:93:1a:
23:4c:f5:4d:1d:c2:c1:24:40:1d:e4:fe:88:fe:f6:
85:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:48:24:7F:8B:20:3F:5E:C4:3F:CC:D3:B2:C7:B4:54:1F:26:B9:DB
X509v3 Authority Key Identifier:
keyid:66:FE:EF:09:C4:50:99:0A:F3:47:79:CE:70:1B:E6:CD:54:B3:D9:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zv7vCcRQmQrzR3nOcBvmzVSz2SQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/a1597b-6ef2-4430-aa56-82451f33f4ca/1/rEgkf4sgP17EP8zTsse0VB8muds.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/a1597b-6ef2-4430-aa56-82451f33f4ca/1/Zv7vCcRQmQrzR3nOcBvmzVSz2SQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.168.105.0-83.168.106.255
Signature Algorithm: sha256WithRSAEncryption
6e:c7:67:e7:9e:8b:85:71:51:94:84:0e:12:4c:c2:bb:11:20:
5c:ac:cf:0a:b3:2c:78:6c:80:da:02:7c:56:d2:b0:20:e1:13:
61:a1:e0:6c:f5:57:28:8d:df:57:fa:6b:39:fc:99:c2:fb:a9:
e8:d9:3e:9d:0b:be:4a:49:06:11:15:f8:78:59:39:5b:0e:84:
fb:cf:d0:32:89:62:fe:2b:82:08:06:41:29:90:fd:81:75:c1:
de:1f:56:74:08:f1:a0:04:4f:12:45:37:28:03:84:d5:5e:68:
84:17:66:c7:b4:fe:57:f9:ce:3b:96:a6:9a:d0:bf:c4:2b:aa:
e3:b0:c8:c4:52:68:1a:6d:60:90:f8:a7:2a:5b:0c:97:2e:1a:
e6:7c:e6:87:6b:68:50:99:b4:38:a0:5e:5e:06:49:8b:38:b5:
91:7c:f1:41:b6:39:f1:f4:5c:a6:66:fe:a9:14:3a:95:e1:4a:
34:ec:60:ff:0e:ae:4e:98:dd:db:83:da:3d:6b:a9:fa:7e:e3:
1d:f9:b9:f6:a8:c1:b5:a1:26:59:7c:c4:a8:12:af:cb:11:6d:
60:93:8d:5f:fe:7b:5a:0f:98:f9:71:43:31:f9:6f:42:5e:40:
b6:cf:77:9a:f3:ad:09:5c:d1:35:ad:fe:a7:bb:4f:9d:b5:85:
36:33:8a:1b
-----BEGIN CERTIFICATE-----
MIIFBTCCA+2gAwIBAgISAYlD4MWDz3L07frikRmQjbhKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY2ZmVlZjA5YzQ1MDk5MGFmMzQ3NzljZTcwMWJlNmNkNTRi
M2Q5MjQwHhcNMjMwNzExMDczNTUxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhYzQ4MjQ3ZjhiMjAzZjVlYzQzZmNjZDNiMmM3YjQ1NDFmMjZiOWRiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs+A5N5hxkelSmGSlrnnb/e7i31+d
dk7SaF0m7EiVVHzSu14t4HBSjx/udBo3LM0e5ZlMxAGXP302OvI/qNwbEhn9N2ol
v/Qz/Y3rdNkOQ8Sgi/NVr4Gz4QIW6z/QkyEghucBdVqOPMU5rhU2tb3iduPzqWed
8VGlsoX2zmjV/xpAE0mtvydFiFC+jnFi93pHBuKzfBizuUMv4RNnLAletRpGQNwO
cyDtimxpOi9nqv+fHu7ylMagryXQYp/UoYthOzSZl5mbkLNvx/JVsmrCcvQJa2sG
sdeubi0WwnUCzn2udX2elc8KCo2y/93VkxojTPVNHcLBJEAd5P6I/vaFjwIDAQAB
o4ICETCCAg0wHQYDVR0OBBYEFKxIJH+LID9exD/M07LHtFQfJrnbMB8GA1UdIwQY
MBaAFGb+7wnEUJkK80d5znAb5s1Us9kkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWnY3dkNjUlFtUXJ6UjNuT2NCdm16VlN6MlNRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yy9hMTU5N2ItNmVmMi00NDMwLWFhNTYt
ODI0NTFmMzNmNGNhLzEvckVna2Y0c2dQMTdFUDh6VHNzZTBWQjhtdWRzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Yy9hMTU5N2ItNmVmMi00NDMwLWFhNTYtODI0NTFmMzNmNGNh
LzEvWnY3dkNjUlFtUXJ6UjNuT2NCdm16VlN6MlNRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBABTqGkD
BABTqGowDQYJKoZIhvcNAQELBQADggEBAG7HZ+eei4VxUZSEDhJMwrsRIFyszwqz
LHhsgNoCfFbSsCDhE2Gh4Gz1VyiN31f6azn8mcL7qejZPp0LvkpJBhEV+HhZOVsO
hPvP0DKJYv4rgggGQSmQ/YF1wd4fVnQI8aAETxJFNygDhNVeaIQXZse0/lf5zjuW
pprQv8QrquOwyMRSaBptYJD4pypbDJcuGuZ85odraFCZtDigXl4GSYs4tZF88UG2
OfH0XKZm/qkUOpXhSjTsYP8Ork6Y3duD2j1rqfp+4x35ufaowbWhJll8xKgSr8sR
bWCTjV/+e1oPmPlxQzH5b0JeQLbPd5rzrQlc0TWt/qe7T521hTYzihs=
-----END CERTIFICATE-----
Generated at Tue Jan 2 14:37:03 2024 by rpki-client on console-fra.rpki-client.org