Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/Vhz7HgWIWbKQgjvsE0I1NEvMFZU.roa
File: Vhz7HgWIWbKQgjvsE0I1NEvMFZU.roa (raw, json)
Hash identifier: CAdbu8kvXUfc8neXqxIswoCAaLeSiu4sAEnGDK2/Rm8=
Subject key identifier: 56:1C:FB:1E:05:88:59:B2:90:82:3B:EC:13:42:35:34:4B:CC:15:95
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 018571E7A7B99CC8EA38B8D2BABF55D6A347
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/Vhz7HgWIWbKQgjvsE0I1NEvMFZU.roa
Signing time: Mon 02 Jan 2023 09:54:45 +0000
ROA not before: Mon 02 Jan 2023 09:54:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 64267
IP address blocks: 83.137.152.0/24 maxlen: 24
88.209.203.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 09 Feb 2023 08:21:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:e7:a7:b9:9c:c8:ea:38:b8:d2:ba:bf:55:d6:a3:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: Jan 2 09:54:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=561cfb1e058859b290823bec134235344bcc1595
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:9c:7e:03:6a:58:21:e5:49:2f:21:ea:f7:b7:
c4:b5:af:4a:ba:84:a4:47:96:7e:ea:34:cd:34:4b:
61:f9:4b:ff:1c:e7:19:a9:04:80:21:4e:49:bf:75:
3c:58:f6:cb:2e:ed:35:d1:f0:2f:91:32:7c:5c:9c:
a9:a9:1f:a2:be:cf:24:f0:7a:58:bc:a9:bc:6c:99:
07:88:ef:03:af:37:81:ce:ee:c4:4d:b4:ed:8f:39:
5f:90:05:42:bd:93:20:cf:86:94:c3:a7:32:6e:9e:
a0:15:a2:c7:d7:c8:4c:44:d3:70:16:9a:3b:15:0b:
24:da:e7:3a:ed:54:05:5d:2a:87:8b:2b:9c:a0:e3:
61:bf:7c:f1:64:79:4e:15:ac:2f:78:96:b6:06:e4:
90:2c:08:36:15:6b:a1:8b:05:46:1d:f8:02:92:59:
15:71:54:aa:da:ef:aa:c1:2b:10:50:0a:32:31:2d:
51:df:24:93:7c:7d:77:00:53:54:b0:2c:80:bd:37:
f2:49:ee:79:0d:76:1e:b5:26:f9:ca:2d:45:24:6a:
67:e7:d4:ac:e5:fc:8e:6a:4b:7e:f3:4c:b5:14:ea:
e3:ff:ba:c8:7a:5c:1c:00:ee:1c:b4:d3:04:93:f9:
c5:da:81:db:a8:2a:8d:01:91:06:aa:74:aa:93:5f:
1c:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:1C:FB:1E:05:88:59:B2:90:82:3B:EC:13:42:35:34:4B:CC:15:95
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/Vhz7HgWIWbKQgjvsE0I1NEvMFZU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.137.152.0/24
88.209.203.0/24
Signature Algorithm: sha256WithRSAEncryption
60:ef:81:7d:df:0b:28:cc:05:c8:f9:40:ba:06:da:13:0b:37:
af:70:97:14:dd:84:66:63:ce:5a:a1:ef:bf:dc:4a:2c:3a:75:
35:8c:80:62:1f:92:22:bc:42:b2:2e:e5:fd:d7:9c:76:b9:79:
54:7c:a6:c3:dd:ba:6b:92:15:42:b4:38:d0:15:8f:f6:14:51:
f5:0b:1e:88:c2:14:d5:2d:0f:c7:6c:4c:99:71:ab:09:32:a8:
c3:5e:e4:cc:29:94:b0:c0:b0:ca:01:63:7f:e5:c4:19:5a:f4:
f3:94:58:1b:04:8a:40:9a:79:3d:7b:b1:c2:5c:af:3b:09:06:
62:8a:da:f2:51:4c:30:6b:97:c1:c0:f3:dc:76:09:46:e9:ec:
62:ab:57:bb:cd:2e:19:a3:3b:cc:eb:de:57:05:61:3c:1d:a4:
b7:ed:c2:ed:e3:9c:bb:d7:e2:9c:08:26:cd:ae:dc:70:d8:14:
be:c0:2c:50:de:21:05:21:25:fd:24:5d:c5:89:09:ff:ce:ca:
81:65:1b:eb:0e:4c:fc:e9:ec:e8:08:4c:03:5a:a6:6d:4a:65:
55:ea:cc:3d:73:11:09:f4:64:05:13:99:67:75:c9:85:27:92:
62:ad:ce:41:57:b1:aa:72:2d:18:4b:5d:63:63:8e:13:41:39:
75:83:8a:57
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYVx56e5nMjqOLjSur9V1qNHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNkYWFhMGUwODIzNjAzNjBhY2RhMzQ3NjY0ZWI4MzE0ZWIx
MWRhMTAwHhcNMjMwMTAyMDk1NDQ1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1NjFjZmIxZTA1ODg1OWIyOTA4MjNiZWMxMzQyMzUzNDRiY2MxNTk1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApJx+A2pYIeVJLyHq97fEta9KuoSk
R5Z+6jTNNEth+Uv/HOcZqQSAIU5Jv3U8WPbLLu010fAvkTJ8XJypqR+ivs8k8HpY
vKm8bJkHiO8DrzeBzu7ETbTtjzlfkAVCvZMgz4aUw6cybp6gFaLH18hMRNNwFpo7
FQsk2uc67VQFXSqHiyucoONhv3zxZHlOFawveJa2BuSQLAg2FWuhiwVGHfgCklkV
cVSq2u+qwSsQUAoyMS1R3ySTfH13AFNUsCyAvTfySe55DXYetSb5yi1FJGpn59Ss
5fyOakt+80y1FOrj/7rIelwcAO4ctNMEk/nF2oHbqCqNAZEGqnSqk18cpQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFFYc+x4FiFmykII77BNCNTRLzBWVMB8GA1UdIwQY
MBaAFM2qoOCCNgNgrNo0dmTrgxTrEdoQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvemFxZzRJSTJBMkNzMmpSMlpPdURGT3NSMmhBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC81ODkxMjctMTA5Ni00YzkxLTk2Y2Mt
N2U0ZDZmNmY2ZTY2LzEvVmh6N0hnV0lXYktRZ2p2c0UwSTFORXZNRlpVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZC81ODkxMjctMTA5Ni00YzkxLTk2Y2MtN2U0ZDZmNmY2ZTY2
LzEvemFxZzRJSTJBMkNzMmpSMlpPdURGT3NSMmhBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAU4mYAwQA
WNHLMA0GCSqGSIb3DQEBCwUAA4IBAQBg74F93wsozAXI+UC6BtoTCzevcJcU3YRm
Y85aoe+/3EosOnU1jIBiH5IivEKyLuX915x2uXlUfKbD3bprkhVCtDjQFY/2FFH1
Cx6IwhTVLQ/HbEyZcasJMqjDXuTMKZSwwLDKAWN/5cQZWvTzlFgbBIpAmnk9e7HC
XK87CQZiitryUUwwa5fBwPPcdglG6exiq1e7zS4ZozvM695XBWE8HaS37cLt45y7
1+KcCCbNrtxw2BS+wCxQ3iEFISX9JF3FiQn/zsqBZRvrDkz86ezoCEwDWqZtSmVV
6sw9cxEJ9GQFE5lndcmFJ5Jirc5BV7Gqci0YS11jY44TQTl1g4pX
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:27 2024 by rpki-client on console-fra.rpki-client.org