Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/81719d-467c-4af7-a824-46a0df774fe1/1/Jk53xYcqQZ-p9FF0ev1uzShrKYE.roa
File: Jk53xYcqQZ-p9FF0ev1uzShrKYE.roa (raw, json)
Hash identifier: vcBiWT4AYdWv0y/wmYMReVPdymuFLLXoeVYCG38zHYI=
Subject key identifier: 26:4E:77:C5:87:2A:41:9F:A9:F4:51:74:7A:FD:6E:CD:28:6B:29:81
Certificate issuer: /CN=89b332d57ce14fab1ebd746817dd701062c74a88
Certificate serial: 018CC79513314AC292EFB4A7778C5E5A82A2
Authority key identifier: 89:B3:32:D5:7C:E1:4F:AB:1E:BD:74:68:17:DD:70:10:62:C7:4A:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ibMy1XzhT6sevXRoF91wEGLHSog.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/81719d-467c-4af7-a824-46a0df774fe1/1/Jk53xYcqQZ-p9FF0ev1uzShrKYE.roa
Signing time: Tue 02 Jan 2024 00:31:24 +0000
ROA not before: Tue 02 Jan 2024 00:31:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42308
IP address blocks: 83.173.127.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 31 Jan 2024 16:49:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:95:13:31:4a:c2:92:ef:b4:a7:77:8c:5e:5a:82:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89b332d57ce14fab1ebd746817dd701062c74a88
Validity
Not Before: Jan 2 00:31:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=264e77c5872a419fa9f451747afd6ecd286b2981
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:55:79:ec:39:3b:e2:d4:06:1b:1d:50:04:29:
28:fa:9f:42:bb:23:ba:af:69:f8:ac:c7:76:d6:7b:
aa:e0:a2:6f:dd:d2:f7:54:b3:31:76:3b:96:44:95:
98:fd:74:9c:08:ca:3a:5d:70:29:a1:75:6a:80:7b:
78:b3:38:05:16:ed:e6:b6:29:b0:43:f3:36:03:c0:
f4:ec:3b:77:ab:8e:25:6b:7b:c1:0b:a5:94:3c:ac:
0c:4b:6f:b4:6c:c8:d6:27:3e:dc:20:bc:ae:d8:c9:
a8:7a:8c:1c:81:8d:da:0a:21:c1:a7:0a:ad:c3:e5:
74:55:7e:54:ce:58:08:7c:08:fd:69:7b:34:cd:7b:
da:7f:f9:f1:75:df:ea:07:87:7b:d6:58:53:0f:4a:
52:3b:0f:82:81:92:81:f5:0a:ed:94:9d:3a:57:c0:
bb:48:e8:75:31:a6:64:74:cc:1f:ed:cd:2d:e7:1e:
4b:97:aa:bc:2c:81:0b:73:5e:71:f1:92:a7:08:8f:
03:80:5e:35:2b:7a:50:3e:0e:0a:22:da:88:b8:60:
2e:2a:39:84:c2:c0:b4:f0:c9:93:88:70:7e:e1:dc:
93:f8:60:a7:25:1e:d7:fe:85:a8:c9:dd:17:24:50:
e2:57:a1:f5:8a:fc:f4:66:9c:58:e1:ef:8f:c0:0a:
94:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:4E:77:C5:87:2A:41:9F:A9:F4:51:74:7A:FD:6E:CD:28:6B:29:81
X509v3 Authority Key Identifier:
keyid:89:B3:32:D5:7C:E1:4F:AB:1E:BD:74:68:17:DD:70:10:62:C7:4A:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ibMy1XzhT6sevXRoF91wEGLHSog.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/81719d-467c-4af7-a824-46a0df774fe1/1/Jk53xYcqQZ-p9FF0ev1uzShrKYE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/81719d-467c-4af7-a824-46a0df774fe1/1/ibMy1XzhT6sevXRoF91wEGLHSog.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.173.127.0/24
Signature Algorithm: sha256WithRSAEncryption
75:a4:f6:37:5a:4d:38:dd:d5:45:7c:1a:3d:67:d8:7f:a5:6c:
d0:32:5e:36:f4:c3:e2:29:73:b3:9e:25:e5:6e:92:ef:33:55:
3c:03:c2:94:86:38:ed:b3:4c:07:ff:7e:ac:fb:b6:1d:74:06:
ca:88:4c:e0:31:73:82:2a:53:ee:f0:46:98:47:7c:a5:b5:27:
21:21:1d:5e:bb:06:b3:0d:55:35:33:82:e1:8b:db:f1:f5:90:
89:6e:55:c3:d9:38:7e:37:cb:c1:aa:60:04:d9:71:40:20:0a:
98:81:db:90:a5:d1:69:c1:8c:86:56:59:b2:15:2c:db:8a:b2:
fd:d3:2f:8e:ad:3a:57:e6:eb:b2:a9:df:43:66:52:40:27:fa:
0e:5c:53:ed:0f:bb:f5:15:62:40:c9:6f:01:6f:92:da:f4:c4:
01:fe:2c:4f:fd:1e:ab:65:dc:62:59:4f:c5:19:c1:a9:0a:66:
35:5e:6c:64:88:dc:d3:e1:2a:28:c5:2d:d8:71:96:b3:16:20:
d3:79:e1:0b:93:f2:19:5c:67:8f:c9:12:85:52:2b:f7:1f:be:
ce:d9:75:ad:76:9b:0c:7b:62:6c:52:6c:e8:c5:31:ee:9f:4b:
cc:9e:83:46:32:c0:f4:82:d3:df:fb:e0:ae:7c:75:6c:30:bc:
7c:dd:fd:e1
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzHlRMxSsKS77Snd4xeWoKiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg5YjMzMmQ1N2NlMTRmYWIxZWJkNzQ2ODE3ZGQ3MDEwNjJj
NzRhODgwHhcNMjQwMTAyMDAzMTI0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyNjRlNzdjNTg3MmE0MTlmYTlmNDUxNzQ3YWZkNmVjZDI4NmIyOTgxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoVV57Dk74tQGGx1QBCko+p9CuyO6
r2n4rMd21nuq4KJv3dL3VLMxdjuWRJWY/XScCMo6XXApoXVqgHt4szgFFu3mtimw
Q/M2A8D07Dt3q44la3vBC6WUPKwMS2+0bMjWJz7cILyu2MmoeowcgY3aCiHBpwqt
w+V0VX5UzlgIfAj9aXs0zXvaf/nxdd/qB4d71lhTD0pSOw+CgZKB9QrtlJ06V8C7
SOh1MaZkdMwf7c0t5x5Ll6q8LIELc15x8ZKnCI8DgF41K3pQPg4KItqIuGAuKjmE
wsC08MmTiHB+4dyT+GCnJR7X/oWoyd0XJFDiV6H1ivz0ZpxY4e+PwAqU1QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCZOd8WHKkGfqfRRdHr9bs0oaymBMB8GA1UdIwQY
MBaAFImzMtV84U+rHr10aBfdcBBix0qIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaWJNeTFYemhUNnNldlhSb0Y5MXdFR0xIU29nLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMC84MTcxOWQtNDY3Yy00YWY3LWE4MjQt
NDZhMGRmNzc0ZmUxLzEvSms1M3hZY3FRWi1wOUZGMGV2MXV6U2hyS1lFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMC84MTcxOWQtNDY3Yy00YWY3LWE4MjQtNDZhMGRmNzc0ZmUx
LzEvaWJNeTFYemhUNnNldlhSb0Y5MXdFR0xIU29nLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAU61/MA0G
CSqGSIb3DQEBCwUAA4IBAQB1pPY3Wk043dVFfBo9Z9h/pWzQMl429MPiKXOzniXl
bpLvM1U8A8KUhjjts0wH/36s+7YddAbKiEzgMXOCKlPu8EaYR3yltSchIR1euwaz
DVU1M4Lhi9vx9ZCJblXD2Th+N8vBqmAE2XFAIAqYgduQpdFpwYyGVlmyFSzbirL9
0y+OrTpX5uuyqd9DZlJAJ/oOXFPtD7v1FWJAyW8Bb5La9MQB/ixP/R6rZdxiWU/F
GcGpCmY1XmxkiNzT4SooxS3YcZazFiDTeeELk/IZXGePyRKFUiv3H77O2XWtdpsM
e2JsUmzoxTHun0vMnoNGMsD0gtPf++CufHVsMLx83f3h
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:53 2024 by rpki-client on console-fra.rpki-client.org