Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/4f05ce-a382-49a0-9999-e52f70c06c29/1/Hhih_f9UdQfas3GTFPX_XTu2ZGo.roa
File: Hhih_f9UdQfas3GTFPX_XTu2ZGo.roa (raw, json)
Hash identifier: RJi1kDt6reZZG5TAdcW1YUcqRgsJySbQPYlA1Z6xT8o=
Subject key identifier: 1E:18:A1:FD:FF:54:75:07:DA:B3:71:93:14:F5:FF:5D:3B:B6:64:6A
Certificate issuer: /CN=9de783e9acd56992f5835fb4882183500ca03c83
Certificate serial: 018D5AFE6C3CA109404D2DF8AA80DAEF7A73
Authority key identifier: 9D:E7:83:E9:AC:D5:69:92:F5:83:5F:B4:88:21:83:50:0C:A0:3C:83
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/neeD6azVaZL1g1-0iCGDUAygPIM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/4f05ce-a382-49a0-9999-e52f70c06c29/1/Hhih_f9UdQfas3GTFPX_XTu2ZGo.roa
Signing time: Tue 30 Jan 2024 15:30:39 +0000
ROA not before: Tue 30 Jan 2024 15:30:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 14618
IP address blocks: 83.97.96.0/21 maxlen: 21
83.97.96.0/24 maxlen: 24
83.97.97.0/24 maxlen: 24
83.97.98.0/24 maxlen: 24
83.97.99.0/24 maxlen: 24
83.97.100.0/24 maxlen: 24
83.97.101.0/24 maxlen: 24
83.97.102.0/24 maxlen: 24
83.97.103.0/24 maxlen: 24
89.47.52.0/24 maxlen: 24
89.47.252.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 01 Feb 2024 15:38:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:5a:fe:6c:3c:a1:09:40:4d:2d:f8:aa:80:da:ef:7a:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9de783e9acd56992f5835fb4882183500ca03c83
Validity
Not Before: Jan 30 15:30:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1e18a1fdff547507dab3719314f5ff5d3bb6646a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:8e:61:3e:78:33:da:65:52:49:d0:bb:40:f4:
56:fa:48:39:54:7c:36:93:3a:ee:d0:49:2b:80:82:
c9:64:fc:b2:9b:ea:9c:f3:49:c6:3b:9e:6b:e1:1b:
34:c3:15:4a:0e:93:82:9c:27:18:ab:46:2f:dc:a5:
9c:4d:39:7a:74:ec:4f:ec:f7:ea:eb:be:c2:89:14:
98:d7:f1:65:7d:55:e9:64:48:84:65:fb:09:9f:51:
ff:87:29:98:b1:6b:fd:21:c9:dc:95:21:36:c9:44:
b2:3c:0c:ad:52:24:79:55:81:24:81:0c:ff:ae:ee:
3d:c9:80:4c:4d:b9:5a:68:7c:5f:59:cd:8a:27:81:
02:a7:36:1a:df:7f:9c:ce:83:94:c7:97:f3:fc:c3:
d8:17:25:78:90:db:74:a8:56:b3:f1:6b:f6:90:43:
8d:eb:e8:e0:f5:f8:93:59:3d:19:cb:ab:77:7a:77:
e6:2e:90:ac:b5:73:c1:1d:9b:e2:16:e4:3b:c0:d0:
ec:3d:5f:7e:c7:b4:4c:4e:92:a0:7a:8c:8d:9a:0b:
fd:76:60:95:5d:a2:07:24:23:d2:f4:21:8c:db:6d:
c1:56:e6:fa:e9:43:02:04:50:e7:3c:35:d2:1b:83:
a3:29:b4:8f:20:58:3a:64:bb:b2:d0:6a:68:6d:f8:
48:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:18:A1:FD:FF:54:75:07:DA:B3:71:93:14:F5:FF:5D:3B:B6:64:6A
X509v3 Authority Key Identifier:
keyid:9D:E7:83:E9:AC:D5:69:92:F5:83:5F:B4:88:21:83:50:0C:A0:3C:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/neeD6azVaZL1g1-0iCGDUAygPIM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/4f05ce-a382-49a0-9999-e52f70c06c29/1/Hhih_f9UdQfas3GTFPX_XTu2ZGo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/4f05ce-a382-49a0-9999-e52f70c06c29/1/neeD6azVaZL1g1-0iCGDUAygPIM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.97.96.0/21
89.47.52.0/24
89.47.252.0/24
Signature Algorithm: sha256WithRSAEncryption
c2:ca:4f:4b:16:63:f1:c0:57:4f:da:29:13:96:4a:b1:96:77:
42:d7:d7:e2:6a:9e:c7:ea:de:f6:3c:35:c2:54:2c:ca:0e:b1:
af:12:b9:fa:f7:34:c7:f2:10:bc:d3:0d:8d:25:c5:93:e7:ca:
f4:07:72:92:7e:6b:8e:b2:f8:91:28:37:3b:bf:86:e0:18:39:
24:21:54:fe:c6:dc:49:7d:7b:8e:6d:40:5e:b9:12:0e:21:77:
4f:a7:d0:12:a3:3a:5d:4c:5a:49:50:dc:ea:19:79:ae:96:f2:
47:80:10:5f:1e:f1:f5:35:d4:a8:60:48:06:2b:b4:66:47:6c:
c8:e7:f9:9f:25:65:1b:42:b8:e8:7c:5b:6e:20:b4:03:2c:70:
14:2d:9b:d4:37:79:ac:2d:99:09:69:e7:31:b8:39:44:63:e4:
8e:cb:05:7c:cb:46:75:3e:c6:87:9b:43:f4:aa:0c:a1:da:15:
aa:e7:7b:0b:c1:3a:9d:ee:20:5c:04:0a:b9:38:92:67:32:5a:
55:ec:a4:92:3b:a9:a7:fa:5c:51:de:84:39:9a:8d:77:11:f6:
7e:d6:33:eb:ce:26:c8:6d:e6:f2:eb:18:e9:02:d6:dd:34:a1:
9d:3e:68:c1:48:b5:73:ac:a2:8e:a1:5c:13:52:59:10:cb:70:
81:69:02:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:59 2024 by rpki-client on console-ams.rpki-client.org