Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/d3rERroOOQZTOR6f9_qJEwFfXps.roa
File: d3rERroOOQZTOR6f9_qJEwFfXps.roa (raw, json)
Hash identifier: H4UXudYURykxc18xrJbQlGhJBkejvJXWb3QhS2emr1Y=
Subject key identifier: 77:7A:C4:46:BA:0E:39:06:53:39:1E:9F:F7:FA:89:13:01:5F:5E:9B
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 0185708CE81218EA36F9D6A1966EE2150854
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/d3rERroOOQZTOR6f9_qJEwFfXps.roa
Signing time: Mon 02 Jan 2023 03:36:00 +0000
ROA not before: Mon 02 Jan 2023 03:36:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202492
IP address blocks: 83.147.196.0/22 maxlen: 22
83.147.195.0/24 maxlen: 24
94.241.188.0/22 maxlen: 22
83.147.200.0/22 maxlen: 22
83.147.204.0/22 maxlen: 22
83.147.208.0/24 maxlen: 24
83.147.210.0/24 maxlen: 24
83.147.211.0/24 maxlen: 24
83.147.209.0/24 maxlen: 24
83.147.218.0/23 maxlen: 23
83.147.220.0/23 maxlen: 23
83.147.224.0/22 maxlen: 22
83.147.228.0/22 maxlen: 22
83.147.236.0/22 maxlen: 22
178.253.0.0/21 maxlen: 21
94.241.144.0/21 maxlen: 21
178.253.14.0/23 maxlen: 23
178.253.17.0/24 maxlen: 24
178.253.20.0/23 maxlen: 23
178.253.24.0/23 maxlen: 23
178.253.28.0/23 maxlen: 24
178.253.30.0/24 maxlen: 24
178.253.36.0/23 maxlen: 23
178.253.34.0/23 maxlen: 23
178.253.46.0/23 maxlen: 23
178.253.54.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 06 Jul 2023 16:42:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:8c:e8:12:18:ea:36:f9:d6:a1:96:6e:e2:15:08:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Jan 2 03:36:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=777ac446ba0e390653391e9ff7fa8913015f5e9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:a0:7d:96:1b:4e:87:c6:0a:2d:97:34:49:1e:
b6:98:05:67:7b:6a:e7:60:fc:7d:8e:bb:d6:67:71:
b2:f2:78:3e:c6:7a:8f:f2:ba:26:7a:d6:40:b0:53:
58:a0:9d:27:64:f8:f6:22:43:1c:0b:1d:d9:d6:3c:
52:88:f4:aa:af:71:81:1e:e6:b6:08:c6:3a:55:fb:
60:53:18:40:21:ff:67:b4:31:64:06:26:9c:43:34:
a5:02:46:27:82:5a:5b:68:98:86:a3:ac:f2:fc:74:
25:83:b7:ce:34:91:08:cd:58:88:fd:a7:2d:6d:72:
f0:00:3b:f0:0c:16:60:a7:b1:5a:40:9c:0b:fb:4a:
a2:16:03:21:59:fb:ad:98:4e:f6:7e:88:d7:8d:77:
09:6f:8f:49:dd:cc:71:9b:a2:2a:13:c6:2e:9d:43:
9f:30:28:84:c7:63:b4:4a:3d:c0:51:d1:d8:07:9b:
3d:3b:37:22:f1:7c:a9:9c:a2:9a:87:9b:24:6d:68:
db:37:c2:43:ed:7b:7f:b1:af:18:75:83:e7:94:2a:
9e:6a:95:da:31:b3:98:52:3b:99:c7:b4:42:19:07:
70:67:ee:84:b1:81:89:60:73:22:e7:2e:8a:04:ad:
53:e9:eb:44:5f:ee:40:e3:42:d4:10:91:26:a9:ad:
f9:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:7A:C4:46:BA:0E:39:06:53:39:1E:9F:F7:FA:89:13:01:5F:5E:9B
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/d3rERroOOQZTOR6f9_qJEwFfXps.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.195.0-83.147.211.255
83.147.218.0-83.147.221.255
83.147.224.0/21
83.147.236.0/22
94.241.144.0/21
94.241.188.0/22
178.253.0.0/21
178.253.14.0/23
178.253.17.0/24
178.253.20.0/23
178.253.24.0/23
178.253.28.0-178.253.30.255
178.253.34.0-178.253.37.255
178.253.46.0/23
178.253.54.0/24
Signature Algorithm: sha256WithRSAEncryption
43:a3:14:39:2c:f9:95:af:06:f4:a9:a9:87:fa:43:37:09:97:
6f:60:01:95:98:a5:0a:f6:7b:8f:e1:82:5b:09:ba:67:35:3f:
2e:91:35:57:de:ab:13:aa:5e:6f:c5:2c:a8:6b:e3:fd:fb:1e:
3f:4e:da:13:7f:da:e1:e4:26:8a:93:68:43:6b:f0:9a:a7:42:
b6:be:25:29:75:b1:c4:2a:3c:26:e0:d2:cb:14:63:fa:a1:bf:
41:4f:e8:6f:1f:f8:88:6e:46:f0:5a:c3:d2:a3:1d:aa:0a:35:
1b:b5:57:4b:5c:c0:e5:2e:d6:e9:90:8c:45:75:5e:98:1a:91:
1f:f4:c8:36:fb:48:16:72:7d:b5:3f:ad:02:42:61:c5:54:64:
53:c9:7f:10:d7:39:62:7c:9a:2b:87:0a:d2:c5:e7:ef:1a:3c:
d7:0a:3c:b5:a6:b9:63:44:8c:5b:2a:74:b8:03:56:91:9b:bd:
06:40:4a:d9:1c:6e:b6:9f:ce:6e:42:32:3b:ea:f3:c8:01:13:
db:ff:38:65:12:67:f7:e9:9e:70:fa:1e:f8:46:4f:27:00:78:
70:24:4e:4f:f6:d1:61:6e:99:32:b3:16:e1:83:94:5f:3f:d4:
42:91:fb:07:b6:a7:c4:13:f1:a9:98:ab:24:3b:fd:59:fe:5f:
f1:2c:9a:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:09 2024 by rpki-client on console-fra.rpki-client.org