Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/Y-3MfH5fgE6ZnImWRELFOOKtqns.roa
File: Y-3MfH5fgE6ZnImWRELFOOKtqns.roa (raw, json)
Hash identifier: eNFbPDtEOPg6Y95Lg2pE2m0p8kZagT+2ocwyywVX0/4=
Subject key identifier: 63:ED:CC:7C:7E:5F:80:4E:99:9C:89:96:44:42:C5:38:E2:AD:AA:7B
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 018CC9BA932A7F23AB29FE4A6236F5528610
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/Y-3MfH5fgE6ZnImWRELFOOKtqns.roa
Signing time: Tue 02 Jan 2024 10:31:36 +0000
ROA not before: Tue 02 Jan 2024 10:31:36 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 1239
IP address blocks: 83.147.232.0/22 maxlen: 24
83.147.248.0/22 maxlen: 24
Validation: Failed, certificate revoked on Thu 01 Feb 2024 04:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:ba:93:2a:7f:23:ab:29:fe:4a:62:36:f5:52:86:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Jan 2 10:31:36 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=63edcc7c7e5f804e999c89964442c538e2adaa7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:ee:d7:6f:d0:1e:ef:ee:05:4b:c7:5c:7e:a4:
55:fb:2c:37:a9:95:9c:90:75:50:cb:d8:bc:60:63:
d1:ce:ce:72:90:21:cc:d7:ec:28:6e:15:69:ef:b8:
63:fc:20:a5:76:88:24:68:78:5a:9e:46:84:32:2b:
40:54:e9:a8:15:ef:04:45:e2:c7:06:8c:94:60:92:
5c:cf:48:58:53:5c:84:e6:eb:5f:c5:25:a4:e1:8f:
98:f1:af:b7:86:2f:a7:77:b5:7d:1a:60:fd:6b:bd:
6b:74:59:ff:6e:22:2f:17:15:a2:05:23:de:8b:f4:
32:b2:c4:9f:0c:63:bb:8a:5a:2b:34:cd:03:a6:06:
98:ad:3a:15:bf:73:c9:99:9c:60:af:6f:f8:f4:9c:
14:ec:ff:7c:6f:dd:92:a3:f7:97:a4:f6:e3:78:5c:
d1:04:4e:b3:ad:98:f1:ea:1f:4d:55:1c:d3:83:ab:
40:79:c7:ef:df:08:bb:56:c9:98:56:23:0c:71:00:
3a:19:90:80:a0:8d:d1:57:05:71:29:fd:1c:35:20:
df:65:f9:d2:2a:b1:f3:47:a1:0d:d7:d5:99:5b:f5:
f6:78:93:fd:55:77:72:30:a8:a3:f6:05:3f:52:c9:
80:cf:e7:1f:3a:61:75:08:b5:3f:2b:98:17:62:d2:
0d:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:ED:CC:7C:7E:5F:80:4E:99:9C:89:96:44:42:C5:38:E2:AD:AA:7B
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/Y-3MfH5fgE6ZnImWRELFOOKtqns.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.232.0/22
83.147.248.0/22
Signature Algorithm: sha256WithRSAEncryption
9c:2e:5f:7f:6b:57:b4:8f:2f:d8:d1:f0:8a:9b:00:8b:cb:54:
82:e5:4b:ef:4c:3d:91:71:fa:23:1c:ce:be:6d:97:1b:35:c6:
02:1a:87:20:fc:88:cb:14:e0:47:3b:d4:99:b5:27:da:b9:60:
ab:47:ab:30:2e:af:1d:be:d0:eb:d6:4a:96:88:5b:26:82:90:
62:14:65:5a:5f:b9:09:ee:cd:ba:e9:34:07:9d:eb:29:ef:44:
49:04:cd:1f:d7:2f:8c:6e:aa:fe:13:08:2d:a4:9b:79:bd:69:
eb:a3:b2:8c:02:3e:25:2a:fa:64:fd:48:85:36:bb:b1:c6:ba:
20:d1:56:3a:d6:73:7f:d9:b9:1c:ad:66:ba:e2:c6:a6:cc:e1:
f3:5c:97:06:74:24:59:06:23:fd:05:87:c9:28:f8:ab:fc:19:
ad:50:df:0e:c6:b8:6f:c9:9e:13:d5:82:67:11:89:6d:81:97:
79:d7:18:04:d1:39:88:a8:4b:05:2b:02:9d:7e:8a:cc:36:34:
90:2c:93:26:54:8d:55:e3:d4:4c:7a:f1:a1:75:32:cc:6a:0a:
88:59:ca:bc:d2:68:53:3b:d3:c4:3c:db:74:c0:b3:cd:41:ab:
77:b9:3c:be:c5:1e:78:2c:b6:21:b9:d0:26:b8:c9:23:a9:db:
0f:51:0c:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 1 05:18:58 2024 by rpki-client on console-ams.rpki-client.org