Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/6107e4-4393-4cbe-a6c2-27c1a35976de/1/sa01hrm1ZWcMIlmyMbiACtl8rr0.roa
File: sa01hrm1ZWcMIlmyMbiACtl8rr0.roa (raw, json)
Hash identifier: EvoR2FIjJ0338bjzuFOG7H6hVwOjGcjo3cz9QT5W+nM=
Subject key identifier: B1:AD:35:86:B9:B5:65:67:0C:22:59:B2:31:B8:80:0A:D9:7C:AE:BD
Certificate issuer: /CN=2940b694bba095344e4bdb99f51e1f1023be57ce
Certificate serial: 018CC64B85CDF292ACB37E1FEDA53E3440FF
Authority key identifier: 29:40:B6:94:BB:A0:95:34:4E:4B:DB:99:F5:1E:1F:10:23:BE:57:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KUC2lLuglTROS9uZ9R4fECO-V84.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/6107e4-4393-4cbe-a6c2-27c1a35976de/1/sa01hrm1ZWcMIlmyMbiACtl8rr0.roa
Signing time: Mon 01 Jan 2024 18:31:27 +0000
ROA not before: Mon 01 Jan 2024 18:31:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206766
IP address blocks: 83.217.4.0/22 maxlen: 22
Validation: Failed, certificate revoked on Thu 29 Feb 2024 12:03:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4b:85:cd:f2:92:ac:b3:7e:1f:ed:a5:3e:34:40:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2940b694bba095344e4bdb99f51e1f1023be57ce
Validity
Not Before: Jan 1 18:31:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b1ad3586b9b565670c2259b231b8800ad97caebd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:d2:a4:7d:f2:2e:2d:0f:4e:a5:06:6e:b0:ab:
cb:b0:74:15:3d:95:62:7b:ab:92:f5:c3:f4:83:72:
38:d8:f5:14:3d:50:1f:8e:ca:29:76:1c:68:f2:71:
49:c9:9f:54:7d:5d:d5:99:ff:a9:1b:da:77:37:0c:
be:85:dc:83:5f:12:fa:a0:5f:7b:6a:d9:44:f3:f4:
60:90:0b:e0:c7:d2:2c:c5:05:07:de:36:42:69:cd:
9a:a6:d3:77:b3:7e:e2:2f:2e:a3:d4:e1:2d:aa:18:
29:84:18:f5:b2:23:d0:25:d1:22:3c:7f:e5:e5:6f:
c8:d6:ad:7b:7a:bf:55:05:67:32:4a:4e:8e:27:1b:
96:30:03:25:48:0c:3b:68:8d:fa:87:35:b0:37:58:
63:e4:24:cb:fd:44:af:1e:2e:67:5f:ee:22:7a:56:
7b:f5:ff:84:af:4d:28:7c:27:20:b8:94:42:bf:eb:
38:7c:74:7e:85:25:3c:cf:1e:37:78:a4:bf:e0:48:
71:6a:2e:4e:2c:fd:86:f6:03:04:9a:00:f6:16:79:
f5:bc:c1:07:a4:5d:ac:54:8f:c7:6e:e7:aa:0b:cb:
49:fb:69:fe:36:0f:1b:f7:bf:47:0f:1b:9c:ca:ef:
66:ff:7f:ea:a7:d3:ea:27:68:43:e3:74:37:65:21:
6e:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:AD:35:86:B9:B5:65:67:0C:22:59:B2:31:B8:80:0A:D9:7C:AE:BD
X509v3 Authority Key Identifier:
keyid:29:40:B6:94:BB:A0:95:34:4E:4B:DB:99:F5:1E:1F:10:23:BE:57:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KUC2lLuglTROS9uZ9R4fECO-V84.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/6107e4-4393-4cbe-a6c2-27c1a35976de/1/sa01hrm1ZWcMIlmyMbiACtl8rr0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/6107e4-4393-4cbe-a6c2-27c1a35976de/1/KUC2lLuglTROS9uZ9R4fECO-V84.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.217.4.0/22
Signature Algorithm: sha256WithRSAEncryption
57:1f:7f:f4:62:3e:0a:1d:8b:bd:c2:bb:3e:88:07:d9:cc:3e:
e7:74:6f:3f:3b:ab:99:c3:1c:e9:b9:5f:32:f2:30:71:26:a6:
ad:30:bc:18:a7:85:7b:1d:57:fd:7f:12:ab:52:32:d8:63:92:
a4:95:14:7f:f2:b2:2f:ac:50:80:b4:d7:66:0b:93:e1:18:ee:
26:f9:0f:db:93:76:ec:c1:c8:8a:fe:03:38:50:7b:29:c7:07:
40:d0:99:d4:8b:c5:e3:8f:1b:af:cc:2c:e8:d9:f8:bd:0f:92:
19:e6:81:dd:f1:29:db:77:cf:25:1c:a0:32:1f:54:be:2b:c7:
7e:f3:83:4c:38:36:c9:1e:05:e7:7f:c7:db:ba:56:91:dc:1e:
1a:97:2d:98:04:d6:83:58:aa:98:78:1b:14:a1:12:93:95:be:
62:56:c3:cb:f8:1d:73:88:2f:00:92:d9:04:ad:70:99:5d:97:
b2:e0:a0:bc:db:3d:e3:32:23:48:95:de:2f:88:04:1a:b5:82:
dc:31:f7:a4:07:d4:e7:67:01:8f:9b:6a:13:cd:71:d5:67:bd:
46:1b:9b:a0:5d:3e:55:19:89:4e:95:62:37:0f:e4:52:30:18:
24:38:b6:a1:92:c5:9a:34:18:d0:43:ac:e6:29:db:39:53:ff:
0a:a0:fc:b4
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzGS4XN8pKss34f7aU+NED/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI5NDBiNjk0YmJhMDk1MzQ0ZTRiZGI5OWY1MWUxZjEwMjNi
ZTU3Y2UwHhcNMjQwMTAxMTgzMTI3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMWFkMzU4NmI5YjU2NTY3MGMyMjU5YjIzMWI4ODAwYWQ5N2NhZWJkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjNKkffIuLQ9OpQZusKvLsHQVPZVi
e6uS9cP0g3I42PUUPVAfjsopdhxo8nFJyZ9UfV3Vmf+pG9p3Nwy+hdyDXxL6oF97
atlE8/RgkAvgx9IsxQUH3jZCac2aptN3s37iLy6j1OEtqhgphBj1siPQJdEiPH/l
5W/I1q17er9VBWcySk6OJxuWMAMlSAw7aI36hzWwN1hj5CTL/USvHi5nX+4ielZ7
9f+Er00ofCcguJRCv+s4fHR+hSU8zx43eKS/4Ehxai5OLP2G9gMEmgD2Fnn1vMEH
pF2sVI/HbueqC8tJ+2n+Ng8b979HDxucyu9m/3/qp9PqJ2hD43Q3ZSFu0QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLGtNYa5tWVnDCJZsjG4gArZfK69MB8GA1UdIwQY
MBaAFClAtpS7oJU0TkvbmfUeHxAjvlfOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS1VDMmxMdWdsVFJPUzl1WjlSNGZFQ08tVjg0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZi82MTA3ZTQtNDM5My00Y2JlLWE2YzIt
MjdjMWEzNTk3NmRlLzEvc2EwMWhybTFaV2NNSWxteU1iaUFDdGw4cnIwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lZi82MTA3ZTQtNDM5My00Y2JlLWE2YzItMjdjMWEzNTk3NmRl
LzEvS1VDMmxMdWdsVFJPUzl1WjlSNGZFQ08tVjg0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCU9kEMA0G
CSqGSIb3DQEBCwUAA4IBAQBXH3/0Yj4KHYu9wrs+iAfZzD7ndG8/O6uZwxzpuV8y
8jBxJqatMLwYp4V7HVf9fxKrUjLYY5KklRR/8rIvrFCAtNdmC5PhGO4m+Q/bk3bs
wciK/gM4UHspxwdA0JnUi8XjjxuvzCzo2fi9D5IZ5oHd8Snbd88lHKAyH1S+K8d+
84NMODbJHgXnf8fbulaR3B4aly2YBNaDWKqYeBsUoRKTlb5iVsPL+B1ziC8AktkE
rXCZXZey4KC82z3jMiNIld4viAQatYLcMfekB9TnZwGPm2oTzXHVZ71GG5ugXT5V
GYlOlWI3D+RSMBgkOLahksWaNBjQQ6zmKds5U/8KoPy0
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:58 2024 by rpki-client on console-fra.rpki-client.org