Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/6107e4-4393-4cbe-a6c2-27c1a35976de/1/12v_aDwn7N4zuMJUsxWlKv-AFZQ.roa
File: 12v_aDwn7N4zuMJUsxWlKv-AFZQ.roa (raw, json)
Hash identifier: APqfJq//J3J35JVdF7NvKO28PVtmDETje9RpNZ0PGHU=
Subject key identifier: D7:6B:FF:68:3C:27:EC:DE:33:B8:C2:54:B3:15:A5:2A:FF:80:15:94
Certificate issuer: /CN=2940b694bba095344e4bdb99f51e1f1023be57ce
Certificate serial: 018CC64B85975DF3C2E9AC101840BD8672DC
Authority key identifier: 29:40:B6:94:BB:A0:95:34:4E:4B:DB:99:F5:1E:1F:10:23:BE:57:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KUC2lLuglTROS9uZ9R4fECO-V84.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/6107e4-4393-4cbe-a6c2-27c1a35976de/1/12v_aDwn7N4zuMJUsxWlKv-AFZQ.roa
Signing time: Mon 01 Jan 2024 18:31:27 +0000
ROA not before: Mon 01 Jan 2024 18:31:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60651
IP address blocks: 83.217.8.0/24 maxlen: 32
Validation: Failed, certificate revoked on Thu 21 Mar 2024 05:34:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4b:85:97:5d:f3:c2:e9:ac:10:18:40:bd:86:72:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2940b694bba095344e4bdb99f51e1f1023be57ce
Validity
Not Before: Jan 1 18:31:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d76bff683c27ecde33b8c254b315a52aff801594
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:b7:36:2f:a6:51:4c:fc:02:89:cd:be:c3:2c:
a8:89:05:60:6c:d1:2f:4d:40:cf:83:4b:44:25:8c:
9b:70:2e:5a:12:5e:af:ea:41:1e:c6:60:d6:38:16:
fd:a4:dc:65:b3:e4:91:78:64:f7:11:07:b9:d3:73:
ab:9d:51:49:03:a6:d8:df:fa:28:00:69:58:af:ec:
b0:a6:32:02:21:45:65:67:2d:be:12:c7:58:cb:da:
45:eb:73:b7:02:97:2e:de:23:90:cc:8d:24:32:6c:
07:f1:2b:4e:be:2b:4b:40:66:ef:92:5b:ec:cd:c7:
71:dd:4b:5c:a9:f1:b5:f2:f6:20:cb:3f:92:26:42:
c6:6d:b1:45:6a:4f:06:f2:90:7a:93:32:e9:d2:ff:
1b:1b:7f:10:31:b3:ce:34:86:2a:8b:2d:fe:fb:8a:
91:9e:87:24:a3:a5:64:cb:88:bd:76:69:9c:22:9a:
e2:91:5c:3b:eb:4b:a6:8e:29:c6:78:e6:6c:ba:2e:
60:06:01:96:6d:4f:d8:b8:93:3e:c6:07:eb:e1:29:
3c:ac:7f:7f:f8:b0:62:60:fd:14:da:a9:49:a6:14:
01:07:f9:02:fc:e1:cd:f5:1b:6e:63:5c:f0:ca:01:
ed:2e:2a:95:c2:fb:4d:9b:84:74:da:67:af:80:bd:
2c:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:6B:FF:68:3C:27:EC:DE:33:B8:C2:54:B3:15:A5:2A:FF:80:15:94
X509v3 Authority Key Identifier:
keyid:29:40:B6:94:BB:A0:95:34:4E:4B:DB:99:F5:1E:1F:10:23:BE:57:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KUC2lLuglTROS9uZ9R4fECO-V84.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/6107e4-4393-4cbe-a6c2-27c1a35976de/1/12v_aDwn7N4zuMJUsxWlKv-AFZQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/6107e4-4393-4cbe-a6c2-27c1a35976de/1/KUC2lLuglTROS9uZ9R4fECO-V84.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.217.8.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:7c:43:96:bf:60:1f:90:75:0f:0e:e0:dd:2c:f9:05:7b:b0:
a5:04:96:8b:9c:e3:d9:00:c7:a0:c7:9b:e1:cb:2a:f1:a2:a0:
b9:e0:cb:2c:8c:19:99:9b:8f:a4:43:b9:b8:6e:50:29:ef:ae:
ee:8e:b8:6a:6d:de:d5:d7:3c:d8:63:29:d5:b0:38:2a:b6:be:
14:0f:0e:a4:d1:ea:2c:8b:f9:59:ec:10:ac:cf:d9:0b:86:14:
e6:ba:55:68:06:2c:eb:e3:2a:d3:26:38:df:0b:89:c2:ba:10:
94:87:08:ed:62:80:84:53:8b:87:ea:56:20:29:ae:50:f5:92:
0a:cb:6f:ba:9a:5f:33:21:0a:d8:fb:0a:b5:86:70:58:72:ab:
a9:12:17:8c:19:4b:6d:c5:20:b4:32:5c:d3:b8:0f:f1:15:42:
85:1f:37:b9:83:ef:c4:8f:43:1b:91:eb:4b:04:31:ee:cf:64:
fd:1e:72:cb:82:d6:da:38:56:98:9e:38:46:21:21:01:4d:5c:
c1:61:22:28:17:52:59:44:9a:b7:13:f3:9b:c3:a1:c8:29:3d:
52:d0:75:17:25:0c:b8:20:a1:75:56:d9:b1:4a:26:73:ee:92:
25:aa:55:8a:3e:76:48:66:dc:eb:b2:10:ea:96:94:11:dc:4e:
16:3d:9d:3a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzGS4WXXfPC6awQGEC9hnLcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI5NDBiNjk0YmJhMDk1MzQ0ZTRiZGI5OWY1MWUxZjEwMjNi
ZTU3Y2UwHhcNMjQwMTAxMTgzMTI3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkNzZiZmY2ODNjMjdlY2RlMzNiOGMyNTRiMzE1YTUyYWZmODAxNTk0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAirc2L6ZRTPwCic2+wyyoiQVgbNEv
TUDPg0tEJYybcC5aEl6v6kEexmDWOBb9pNxls+SReGT3EQe503OrnVFJA6bY3/oo
AGlYr+ywpjICIUVlZy2+EsdYy9pF63O3Apcu3iOQzI0kMmwH8StOvitLQGbvklvs
zcdx3UtcqfG18vYgyz+SJkLGbbFFak8G8pB6kzLp0v8bG38QMbPONIYqiy3++4qR
nocko6Vky4i9dmmcIprikVw760umjinGeOZsui5gBgGWbU/YuJM+xgfr4Sk8rH9/
+LBiYP0U2qlJphQBB/kC/OHN9RtuY1zwygHtLiqVwvtNm4R02mevgL0sRQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNdr/2g8J+zeM7jCVLMVpSr/gBWUMB8GA1UdIwQY
MBaAFClAtpS7oJU0TkvbmfUeHxAjvlfOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS1VDMmxMdWdsVFJPUzl1WjlSNGZFQ08tVjg0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZi82MTA3ZTQtNDM5My00Y2JlLWE2YzIt
MjdjMWEzNTk3NmRlLzEvMTJ2X2FEd243TjR6dU1KVXN4V2xLdi1BRlpRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lZi82MTA3ZTQtNDM5My00Y2JlLWE2YzItMjdjMWEzNTk3NmRl
LzEvS1VDMmxMdWdsVFJPUzl1WjlSNGZFQ08tVjg0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAU9kIMA0G
CSqGSIb3DQEBCwUAA4IBAQAsfEOWv2AfkHUPDuDdLPkFe7ClBJaLnOPZAMegx5vh
yyrxoqC54MssjBmZm4+kQ7m4blAp767ujrhqbd7V1zzYYynVsDgqtr4UDw6k0eos
i/lZ7BCsz9kLhhTmulVoBizr4yrTJjjfC4nCuhCUhwjtYoCEU4uH6lYgKa5Q9ZIK
y2+6ml8zIQrY+wq1hnBYcqupEheMGUttxSC0MlzTuA/xFUKFHze5g+/Ej0MbketL
BDHuz2T9HnLLgtbaOFaYnjhGISEBTVzBYSIoF1JZRJq3E/Obw6HIKT1S0HUXJQy4
IKF1VtmxSiZz7pIlqlWKPnZIZtzrshDqlpQR3E4WPZ06
-----END CERTIFICATE-----
Generated at Thu Mar 21 08:04:10 2024 by rpki-client on console-ams.rpki-client.org