Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/q0KS9UA2xX2F6jZRl0J-VwBLWPg.roa
File: q0KS9UA2xX2F6jZRl0J-VwBLWPg.roa (raw, json)
Hash identifier: jiwkDuqFxhPETMU1eHmdaN2/2eqYyfFEUcMJeeZfbFg=
Subject key identifier: AB:42:92:F5:40:36:C5:7D:85:EA:36:51:97:42:7E:57:00:4B:58:F8
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 018A5CDEE0551C05BB748F374F3506C4009B
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/q0KS9UA2xX2F6jZRl0J-VwBLWPg.roa
Signing time: Sun 03 Sep 2023 21:07:04 +0000
ROA not before: Sun 03 Sep 2023 21:07:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201575
IP address blocks: 83.147.223.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:31:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:5c:de:e0:55:1c:05:bb:74:8f:37:4f:35:06:c4:00:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Sep 3 21:07:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ab4292f54036c57d85ea365197427e57004b58f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:41:f1:d4:96:85:db:5d:e9:de:b6:6c:9d:8c:
c3:5b:66:4b:85:5b:50:76:1c:01:9f:6c:2c:42:24:
d3:a2:b2:e8:a7:17:2f:2a:c2:6d:d6:fe:d3:7e:d3:
62:3f:ee:21:25:40:2a:f5:16:d5:26:d4:80:02:3d:
4c:82:f2:4f:6f:58:17:3c:79:aa:d5:90:57:ba:91:
a0:c9:d2:f6:cb:79:f5:e9:e4:1b:29:bd:e7:2c:a2:
a9:7f:a1:e2:ed:83:23:86:6e:7e:f5:44:09:15:8a:
27:bd:8d:8a:10:24:47:7a:de:66:83:6c:51:5f:02:
aa:c3:90:83:d7:b8:50:bd:bd:12:b3:b0:60:1d:a9:
b6:5f:f0:2b:a8:f3:4f:2a:1e:ce:08:c6:11:f0:11:
3e:9d:87:7e:20:c2:7a:e0:05:d8:2c:45:d9:c6:90:
b9:31:c2:f5:84:5a:bf:6f:e7:e4:26:3c:ec:9f:ac:
78:ad:3a:07:c1:c8:a4:1e:a5:ac:cb:08:2c:ad:3d:
0e:d6:2d:33:2a:62:17:87:c4:92:ed:16:dd:72:f1:
d1:f3:73:cc:7b:8b:1e:f2:c2:13:13:a5:3b:28:3f:
b7:34:9f:3f:9a:ef:be:0c:fe:fd:a3:a6:fa:0b:3e:
10:36:b9:8d:d9:60:54:d7:41:8f:37:f0:1f:69:6a:
1c:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:42:92:F5:40:36:C5:7D:85:EA:36:51:97:42:7E:57:00:4B:58:F8
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/q0KS9UA2xX2F6jZRl0J-VwBLWPg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.223.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:0a:23:13:51:71:dc:6f:83:3b:f2:46:7c:f7:b2:6b:f5:68:
46:21:c3:65:95:82:84:54:1f:61:6f:b2:08:11:97:2c:e9:80:
11:1f:ef:fe:47:4e:03:31:8b:e2:5a:f0:38:bb:87:d1:ee:7d:
28:b7:af:1f:b6:80:78:67:ca:e1:29:e3:a6:28:30:40:6d:6b:
17:75:d7:11:8d:35:69:3b:3b:cc:d4:44:07:14:28:29:cd:d6:
e9:97:84:72:0a:13:bc:c3:6d:5d:92:5d:49:87:d2:84:fc:f8:
45:a7:c2:e0:32:cf:7a:6f:62:43:cb:da:dd:17:0c:fc:60:28:
ad:83:bc:fb:8b:31:78:3a:cd:ae:68:23:97:53:68:bc:48:7f:
b4:da:3d:50:c6:0d:e0:f8:70:70:ef:65:a6:d0:c5:e7:bd:a2:
53:83:91:57:5d:5c:ec:4c:62:c9:ff:8c:4b:42:f1:65:3b:4b:
20:25:c7:29:c9:7f:25:d5:9b:d3:6b:a2:8e:d8:19:70:16:e3:
88:01:61:32:73:2a:52:13:4f:5a:83:7c:07:c1:be:4c:c8:69:
04:5a:95:4b:1b:54:f9:00:cd:38:f1:a2:e0:f0:68:19:52:13:
7a:a5:8f:e9:56:39:32:6a:a2:5b:29:22:0c:fd:9f:2c:87:fe:
72:b9:4a:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:10 2024 by rpki-client on console-fra.rpki-client.org