Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/8hew_TkZTbaEoJJv10ZuhJDNnFQ.roa
File: 8hew_TkZTbaEoJJv10ZuhJDNnFQ.roa (raw, json)
Hash identifier: tuUW6t+g2m+oVdzdDMOzM9QAKP5mt08xJbvII4CbnkM=
Subject key identifier: F2:17:B0:FD:39:19:4D:B6:84:A0:92:6F:D7:46:6E:84:90:CD:9C:54
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 018665BA0D0C33514C29B52018E00986FA6A
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/8hew_TkZTbaEoJJv10ZuhJDNnFQ.roa
Signing time: Sat 18 Feb 2023 18:12:17 +0000
ROA not before: Sat 18 Feb 2023 18:12:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61595
IP address blocks: 83.147.223.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 15 Mar 2023 07:02:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:65:ba:0d:0c:33:51:4c:29:b5:20:18:e0:09:86:fa:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Feb 18 18:12:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f217b0fd39194db684a0926fd7466e8490cd9c54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:cb:2a:35:4b:df:d1:0f:4a:a3:29:63:4c:20:
3b:f3:52:61:79:9f:e3:15:47:a9:41:7a:f6:59:03:
4f:88:b7:2f:70:11:e9:e6:44:f5:f2:4c:03:9c:c9:
c2:b5:c9:2d:09:5d:de:6d:b2:8b:ba:a0:70:46:d1:
28:1e:9d:f7:e5:6d:ef:47:c0:42:58:20:ac:ba:74:
b0:0a:68:82:84:5f:85:a1:8e:7c:e0:e9:c9:ad:aa:
1e:fd:64:25:9d:1a:23:f4:71:01:29:04:38:7a:50:
5d:09:be:b8:ca:37:3d:71:27:ab:f9:2b:ba:f3:06:
a0:d0:de:5e:17:e2:1e:50:68:4d:e8:39:15:36:8b:
f4:61:83:00:66:b1:54:2e:37:79:12:ba:44:50:b4:
0e:ba:67:25:e6:93:e5:ca:ff:7e:e5:32:b3:92:a2:
e5:57:da:eb:40:c1:92:01:9a:db:3c:fe:ae:ce:bd:
c2:46:98:31:9f:19:97:48:3a:ea:15:ea:3b:2e:2c:
53:f7:94:73:d6:cd:a4:6a:1a:26:ed:8e:eb:71:12:
54:c1:cb:26:a4:11:db:91:0b:28:8e:40:b3:62:48:
15:40:c9:b2:db:53:4c:2b:15:81:00:ae:2c:e6:aa:
82:42:e3:58:6d:6e:4d:d7:05:c2:df:7c:3b:86:0a:
43:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:17:B0:FD:39:19:4D:B6:84:A0:92:6F:D7:46:6E:84:90:CD:9C:54
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/8hew_TkZTbaEoJJv10ZuhJDNnFQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.223.0/24
Signature Algorithm: sha256WithRSAEncryption
54:5b:c8:6b:2f:a8:05:4a:d9:e6:d3:84:b2:49:30:f4:01:6b:
a1:60:85:98:e3:a1:80:54:91:e1:48:0c:ac:66:e9:9c:12:ec:
fe:b7:c8:c0:ce:d0:40:e2:12:e6:52:9a:6e:2e:f2:83:41:7c:
66:e1:07:ec:ef:6f:16:26:f6:65:1f:15:42:02:0f:46:1b:6f:
b2:ba:ac:c7:25:0c:ce:3d:80:b6:dd:d1:ac:08:10:b1:d5:f7:
1d:8d:0d:7e:d6:62:37:08:90:6e:aa:b0:c3:2d:52:e2:72:02:
41:b3:80:79:1a:42:76:a6:13:7d:70:e2:87:74:b0:98:45:10:
5e:93:1d:e8:73:34:3c:62:49:b4:9a:31:82:7f:7d:8e:aa:69:
8d:01:e1:22:9c:a4:48:f6:8b:df:45:30:aa:31:e8:4b:a6:88:
df:90:9c:52:aa:00:5c:86:1f:44:41:8f:b2:d8:67:dc:82:56:
8c:92:12:c8:a1:58:a7:dc:0b:d6:4e:6c:50:1f:26:79:97:a4:
33:37:29:a3:57:0d:03:09:1e:64:c3:3a:49:e3:96:53:8e:7f:
60:8f:a9:54:f7:02:37:70:46:d3:db:e9:bd:fa:c0:fc:66:fe:
4b:52:61:a6:81:02:4a:15:f2:f9:08:73:fd:7e:ae:fc:d3:0e:
55:6e:1c:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:18 2024 by rpki-client on console-ams.rpki-client.org