Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/c2f61a-15f9-4c6b-90e5-ef4b659eff8d/1/5YnqbCHFfajEYpEf-glYIkR2sdY.roa
File: 5YnqbCHFfajEYpEf-glYIkR2sdY.roa (raw, json)
Hash identifier: zL0nLVFak7fUZHQ+ShGFi2eXmRvb7qUjWejRqmnzbT4=
Subject key identifier: E5:89:EA:6C:21:C5:7D:A8:C4:62:91:1F:FA:09:58:22:44:76:B1:D6
Certificate issuer: /CN=ced755733e91203a17c3093ca5d9cb0392d94f61
Certificate serial: 0189C0AD20671F6D9D289F893309E2754AFB
Authority key identifier: CE:D7:55:73:3E:91:20:3A:17:C3:09:3C:A5:D9:CB:03:92:D9:4F:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ztdVcz6RIDoXwwk8pdnLA5LZT2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/c2f61a-15f9-4c6b-90e5-ef4b659eff8d/1/5YnqbCHFfajEYpEf-glYIkR2sdY.roa
Signing time: Fri 04 Aug 2023 13:11:58 +0000
ROA not before: Fri 04 Aug 2023 13:11:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21320
IP address blocks: 83.97.88.0/21 maxlen: 21
2001:799::/32 maxlen: 32
2001:798::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 07 Aug 2023 09:19:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:c0:ad:20:67:1f:6d:9d:28:9f:89:33:09:e2:75:4a:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ced755733e91203a17c3093ca5d9cb0392d94f61
Validity
Not Before: Aug 4 13:11:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e589ea6c21c57da8c462911ffa0958224476b1d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:97:7b:01:62:aa:0a:ad:23:0b:f0:20:9f:bb:
53:e5:91:76:1d:d6:a0:39:56:cd:8e:0a:a2:85:c5:
ac:72:85:6d:82:73:79:e5:2f:97:0e:f6:62:4f:a3:
4d:37:fb:b2:aa:0b:c2:b1:83:0c:f3:6e:33:b2:b4:
17:df:13:f0:6e:63:53:c9:dc:4e:9e:62:51:72:df:
04:b5:91:57:6d:32:cd:e0:81:90:a1:05:32:b8:f6:
45:4e:46:08:49:46:b3:60:e3:5d:3a:82:21:fa:b3:
36:af:0b:3f:02:6e:66:af:3d:9e:cc:2c:5a:39:10:
f8:ba:2f:29:13:74:34:53:15:fa:44:76:09:e8:4f:
a5:33:4b:79:9d:e3:94:d7:70:83:1f:21:20:19:15:
7d:c3:8c:0e:1c:54:ff:ef:cb:87:a7:ff:f5:57:46:
c6:00:5d:9c:d7:69:d4:60:e9:6c:05:d1:d3:78:b5:
c0:dd:22:d1:84:7b:87:51:17:86:8a:a9:1e:6d:5e:
00:b1:f0:c4:79:90:e3:3c:29:16:03:7c:f8:a4:38:
ea:e6:a7:d6:a7:8e:4f:67:00:cc:14:5c:8a:5f:9c:
75:bb:4a:67:a9:87:94:14:2a:6a:93:eb:67:bb:f8:
e8:cb:6c:61:20:b0:05:8c:e9:91:7f:fd:1a:7c:b3:
d1:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:89:EA:6C:21:C5:7D:A8:C4:62:91:1F:FA:09:58:22:44:76:B1:D6
X509v3 Authority Key Identifier:
keyid:CE:D7:55:73:3E:91:20:3A:17:C3:09:3C:A5:D9:CB:03:92:D9:4F:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ztdVcz6RIDoXwwk8pdnLA5LZT2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/c2f61a-15f9-4c6b-90e5-ef4b659eff8d/1/5YnqbCHFfajEYpEf-glYIkR2sdY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/c2f61a-15f9-4c6b-90e5-ef4b659eff8d/1/ztdVcz6RIDoXwwk8pdnLA5LZT2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.97.88.0/21
IPv6:
2001:798::/31
Signature Algorithm: sha256WithRSAEncryption
3e:8c:68:88:d5:a0:e0:c3:8f:eb:78:14:5c:40:28:5b:47:60:
00:66:2a:21:a7:cc:cc:98:00:7f:16:16:7f:15:0b:35:7b:62:
b4:42:8d:c6:d7:43:25:20:e5:80:ea:83:ea:a3:6b:75:ce:19:
6f:79:7a:0c:d4:d6:67:e8:43:a7:c3:83:46:1f:d6:b2:cc:60:
7d:40:53:c8:e1:3a:2e:cf:38:d3:cc:00:7c:6a:f4:b1:25:30:
71:82:0c:dd:c9:65:fd:f3:44:85:b5:b2:9a:c4:6c:c5:e4:4a:
2e:d5:a1:c7:00:10:64:78:bd:9a:4a:ee:28:f6:fe:d1:ed:92:
f5:72:5a:2d:12:86:33:b2:49:ba:1c:e1:70:f6:69:ac:95:ca:
ce:f0:1d:7f:6e:a7:05:57:6d:f9:78:2c:2a:19:50:e0:ef:32:
88:e3:80:ac:3f:ea:3a:26:b7:9d:1b:97:f5:a2:ff:02:5a:25:
d6:97:a5:0a:68:3e:57:5d:0d:83:01:45:45:66:31:1d:d7:ac:
f0:db:21:b1:df:9c:a2:ef:c9:69:2a:99:2f:40:96:d0:69:56:
13:69:15:0a:9b:33:43:d5:da:05:23:2d:aa:88:49:b7:01:02:
5f:9c:14:66:3a:c8:3d:00:be:2f:d9:c2:3e:f1:41:dc:b2:fb:
2e:2e:15:70
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYnArSBnH22dKJ+JMwnidUr7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNlZDc1NTczM2U5MTIwM2ExN2MzMDkzY2E1ZDljYjAzOTJk
OTRmNjEwHhcNMjMwODA0MTMxMTU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlNTg5ZWE2YzIxYzU3ZGE4YzQ2MjkxMWZmYTA5NTgyMjQ0NzZiMWQ2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhZd7AWKqCq0jC/Agn7tT5ZF2Hdag
OVbNjgqihcWscoVtgnN55S+XDvZiT6NNN/uyqgvCsYMM824zsrQX3xPwbmNTydxO
nmJRct8EtZFXbTLN4IGQoQUyuPZFTkYISUazYONdOoIh+rM2rws/Am5mrz2ezCxa
ORD4ui8pE3Q0UxX6RHYJ6E+lM0t5neOU13CDHyEgGRV9w4wOHFT/78uHp//1V0bG
AF2c12nUYOlsBdHTeLXA3SLRhHuHUReGiqkebV4AsfDEeZDjPCkWA3z4pDjq5qfW
p45PZwDMFFyKX5x1u0pnqYeUFCpqk+tnu/joy2xhILAFjOmRf/0afLPRwQIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFOWJ6mwhxX2oxGKRH/oJWCJEdrHWMB8GA1UdIwQY
MBaAFM7XVXM+kSA6F8MJPKXZywOS2U9hMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvenRkVmN6NlJJRG9Yd3drOHBkbkxBNUxaVDJFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYi9jMmY2MWEtMTVmOS00YzZiLTkwZTUt
ZWY0YjY1OWVmZjhkLzEvNVlucWJDSEZmYWpFWXBFZi1nbFlJa1Iyc2RZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYi9jMmY2MWEtMTVmOS00YzZiLTkwZTUtZWY0YjY1OWVmZjhk
LzEvenRkVmN6NlJJRG9Yd3drOHBkbkxBNUxaVDJFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQDU2FYMA0E
AgACMAcDBQEgAQeYMA0GCSqGSIb3DQEBCwUAA4IBAQA+jGiI1aDgw4/reBRcQChb
R2AAZiohp8zMmAB/FhZ/FQs1e2K0Qo3G10MlIOWA6oPqo2t1zhlveXoM1NZn6EOn
w4NGH9ayzGB9QFPI4TouzzjTzAB8avSxJTBxggzdyWX980SFtbKaxGzF5Eou1aHH
ABBkeL2aSu4o9v7R7ZL1clotEoYzskm6HOFw9mmslcrO8B1/bqcFV235eCwqGVDg
7zKI44CsP+o6JredG5f1ov8CWiXWl6UKaD5XXQ2DAUVFZjEd16zw2yGx35yi78lp
KpkvQJbQaVYTaRUKmzND1doFIy2qiEm3AQJfnBRmOsg9AL4v2cI+8UHcsvsuLhVw
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:39 2024 by rpki-client on console-fra.rpki-client.org