Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/p7GK1Es9G969Ot7ye1SNsaIgAH0.roa
File: p7GK1Es9G969Ot7ye1SNsaIgAH0.roa (raw, json)
Hash identifier: w9xZ18vNhgX3UB3W1NNxUB2YfdXl1Be/498ngCTrf6k=
Subject key identifier: A7:B1:8A:D4:4B:3D:1B:DE:BD:3A:DE:F2:7B:54:8D:B1:A2:20:00:7D
Certificate issuer: /CN=1fe90fde9784a91d93a7a2af59d4d043f1171fba
Certificate serial: 0187149CB55A3D60402172192AE90734008C
Authority key identifier: 1F:E9:0F:DE:97:84:A9:1D:93:A7:A2:AF:59:D4:D0:43:F1:17:1F:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H-kP3peEqR2Tp6KvWdTQQ_EXH7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/p7GK1Es9G969Ot7ye1SNsaIgAH0.roa
Signing time: Fri 24 Mar 2023 17:13:46 +0000
ROA not before: Fri 24 Mar 2023 17:13:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 40123
IP address blocks: 83.126.56.0/24 maxlen: 24
83.126.16.0/23 maxlen: 24
83.126.17.0/24 maxlen: 24
83.126.22.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:30:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:14:9c:b5:5a:3d:60:40:21:72:19:2a:e9:07:34:00:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1fe90fde9784a91d93a7a2af59d4d043f1171fba
Validity
Not Before: Mar 24 17:13:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a7b18ad44b3d1bdebd3adef27b548db1a220007d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:93:84:de:f6:b8:8f:6d:25:6a:e0:12:dc:86:
f3:1d:d3:34:cc:79:38:1d:35:4d:9f:0f:42:04:54:
eb:1c:57:0d:35:67:0d:81:0f:d0:af:50:3b:67:78:
26:d9:54:a2:3c:d5:05:73:23:db:95:06:a3:c1:5e:
45:80:d5:65:7c:cd:f5:04:97:03:bf:ed:e7:e6:29:
9c:61:c1:a1:43:d8:9f:25:f6:d4:48:dc:b9:09:27:
29:bd:aa:16:61:ff:c5:21:fa:e1:14:17:32:78:30:
41:c1:84:6b:f0:ae:12:14:60:d4:f2:22:bc:55:8f:
cc:6b:08:5a:a8:9a:3c:c2:63:a2:84:91:2f:0d:a1:
f6:d8:09:1e:06:13:12:94:95:58:33:72:b4:06:e1:
70:e5:67:f1:2e:31:2b:04:36:f7:d1:ec:31:11:98:
6c:4f:ae:38:33:b5:2c:c6:2a:cd:84:5f:1f:5d:67:
1a:84:cb:8d:f8:dd:e7:c6:79:b6:cc:a4:2e:dd:c8:
c2:4a:9d:77:08:ab:28:59:a1:a3:ad:49:ae:9a:97:
b8:d0:82:53:05:9e:61:80:94:d2:00:db:55:bb:c5:
6c:30:40:64:dd:ad:68:a1:27:e4:ff:fe:eb:3d:2f:
39:e9:7f:a2:90:a9:4b:77:e9:a8:f2:cf:12:a3:66:
52:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:B1:8A:D4:4B:3D:1B:DE:BD:3A:DE:F2:7B:54:8D:B1:A2:20:00:7D
X509v3 Authority Key Identifier:
keyid:1F:E9:0F:DE:97:84:A9:1D:93:A7:A2:AF:59:D4:D0:43:F1:17:1F:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H-kP3peEqR2Tp6KvWdTQQ_EXH7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/p7GK1Es9G969Ot7ye1SNsaIgAH0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/H-kP3peEqR2Tp6KvWdTQQ_EXH7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.126.16.0/23
83.126.22.0/24
83.126.56.0/24
Signature Algorithm: sha256WithRSAEncryption
34:c8:df:92:0a:64:03:1a:39:d6:06:e5:16:ac:5a:f2:a2:57:
24:bd:be:78:f8:b5:cf:c1:5c:90:ad:2d:74:38:6a:55:b9:91:
75:02:c5:b1:6a:16:41:57:f5:a8:90:73:31:ae:25:8f:83:00:
4e:36:ff:77:1c:2f:ec:73:0a:6e:ca:ae:18:84:41:96:62:93:
0d:2c:fc:f8:7f:7c:19:7d:f1:32:0e:aa:01:09:ac:4d:7b:25:
e5:ce:99:56:ec:92:38:6f:78:2c:8b:30:8d:6e:02:3b:a1:f0:
f6:63:af:44:a9:df:c3:de:5c:84:ad:7d:28:0c:8d:a9:85:31:
ed:2e:62:6a:c9:8d:7c:75:85:03:9a:47:6a:95:70:be:74:f0:
93:15:a2:8f:e4:b3:41:e1:b5:a8:ba:57:86:05:1b:2f:e2:e7:
a5:c9:60:86:ad:bd:fd:80:f8:52:f1:40:a5:d8:82:ed:9a:6c:
32:bd:65:f3:18:fa:45:df:bc:c6:de:11:8a:11:31:e6:2d:f0:
0c:57:7f:ae:a5:9d:0d:e8:94:09:6b:17:ba:64:dc:00:6e:30:
3e:68:d9:1d:00:a9:f9:5a:5e:06:a2:1e:1d:19:9c:f4:9c:72:
c6:89:f5:52:e8:6f:cc:b4:fd:f5:a3:e9:d2:d4:15:d2:9d:75:
fe:89:be:da
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAYcUnLVaPWBAIXIZKukHNACMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFmZTkwZmRlOTc4NGE5MWQ5M2E3YTJhZjU5ZDRkMDQzZjEx
NzFmYmEwHhcNMjMwMzI0MTcxMzQ2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhN2IxOGFkNDRiM2QxYmRlYmQzYWRlZjI3YjU0OGRiMWEyMjAwMDdkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi5OE3va4j20lauAS3IbzHdM0zHk4
HTVNnw9CBFTrHFcNNWcNgQ/Qr1A7Z3gm2VSiPNUFcyPblQajwV5FgNVlfM31BJcD
v+3n5imcYcGhQ9ifJfbUSNy5CScpvaoWYf/FIfrhFBcyeDBBwYRr8K4SFGDU8iK8
VY/MawhaqJo8wmOihJEvDaH22AkeBhMSlJVYM3K0BuFw5WfxLjErBDb30ewxEZhs
T644M7UsxirNhF8fXWcahMuN+N3nxnm2zKQu3cjCSp13CKsoWaGjrUmumpe40IJT
BZ5hgJTSANtVu8VsMEBk3a1ooSfk//7rPS856X+ikKlLd+mo8s8So2ZSaQIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFKexitRLPRvevTre8ntUjbGiIAB9MB8GA1UdIwQY
MBaAFB/pD96XhKkdk6eir1nU0EPxFx+6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSC1rUDNwZUVxUjJUcDZLdldkVFFRX0VYSDdvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMi9hOTQ1ZjctNTNiMy00ZGI1LWFlMDQt
MjM3NzJlN2Y5MmUzLzEvcDdHSzFFczlHOTY5T3Q3eWUxU05zYUlnQUgwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMi9hOTQ1ZjctNTNiMy00ZGI1LWFlMDQtMjM3NzJlN2Y5MmUz
LzEvSC1rUDNwZUVxUjJUcDZLdldkVFFRX0VYSDdvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQBU34QAwQA
U34WAwQAU344MA0GCSqGSIb3DQEBCwUAA4IBAQA0yN+SCmQDGjnWBuUWrFryolck
vb54+LXPwVyQrS10OGpVuZF1AsWxahZBV/WokHMxriWPgwBONv93HC/scwpuyq4Y
hEGWYpMNLPz4f3wZffEyDqoBCaxNeyXlzplW7JI4b3gsizCNbgI7ofD2Y69Eqd/D
3lyErX0oDI2phTHtLmJqyY18dYUDmkdqlXC+dPCTFaKP5LNB4bWouleGBRsv4uel
yWCGrb39gPhS8UCl2ILtmmwyvWXzGPpF37zG3hGKETHmLfAMV3+upZ0N6JQJaxe6
ZNwAbjA+aNkdAKn5Wl4Goh4dGZz0nHLGifVS6G/MtP31o+nS1BXSnXX+ib7a
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:06 2024 by rpki-client on console-fra.rpki-client.org