Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/0d53X6SY1gKwGkNW78wxn0hLOYA.roa
File: 0d53X6SY1gKwGkNW78wxn0hLOYA.roa (raw, json)
Hash identifier: 1fI4mSsir3UhYYnhmwV55xq08K9WY9yELigM6UnDxDo=
Subject key identifier: D1:DE:77:5F:A4:98:D6:02:B0:1A:43:56:EF:CC:31:9F:48:4B:39:80
Certificate issuer: /CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Certificate serial: 01856CE6382DCA2C4D1FD0BF3C4C3630C128
Authority key identifier: 81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/0d53X6SY1gKwGkNW78wxn0hLOYA.roa
Signing time: Sun 01 Jan 2023 10:35:05 +0000
ROA not before: Sun 01 Jan 2023 10:35:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 54252
IP address blocks: 83.147.44.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 14 Jun 2023 04:32:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:e6:38:2d:ca:2c:4d:1f:d0:bf:3c:4c:36:30:c1:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Validity
Not Before: Jan 1 10:35:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d1de775fa498d602b01a4356efcc319f484b3980
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:65:39:f2:82:c5:24:29:24:88:10:e9:7e:0f:
d2:8e:05:da:a5:14:4d:dc:46:27:57:80:0d:9e:06:
4a:96:34:99:40:d7:61:e5:81:7d:7d:20:8e:79:77:
aa:2d:e3:ab:1d:de:f3:74:e0:a9:51:62:5d:4f:93:
b6:5f:12:4c:22:87:6d:d2:3c:d0:a2:b9:fc:31:dd:
25:e4:51:e5:55:f9:80:d6:f0:6b:43:06:af:bd:3d:
2b:74:80:11:e1:e3:c5:1d:e2:85:fa:b5:43:14:e9:
a3:83:2f:47:e9:96:76:d3:05:d4:e2:4c:95:a4:f3:
c0:d1:6d:36:1a:d1:44:ff:bf:33:ac:d9:a2:2c:e1:
29:ab:7f:ed:b1:a8:44:a7:a6:dc:e3:16:9e:a0:b2:
d2:2b:49:84:1e:7a:3a:26:d7:0f:ec:0d:14:2b:85:
47:bd:48:a5:93:53:10:5a:97:dd:a4:07:13:c6:cd:
1c:89:1f:14:6a:60:bd:a5:1d:31:d2:7c:a8:ad:c6:
15:e9:82:cb:3c:15:95:76:a4:40:83:1f:fc:91:a7:
32:5b:53:dc:94:32:34:67:30:f3:2c:a3:2a:b4:8a:
79:19:df:fb:ea:64:c2:73:a0:04:f9:c2:1a:c6:06:
73:f4:7a:7e:4a:21:64:50:67:84:42:66:de:cb:e2:
5f:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:DE:77:5F:A4:98:D6:02:B0:1A:43:56:EF:CC:31:9F:48:4B:39:80
X509v3 Authority Key Identifier:
keyid:81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/0d53X6SY1gKwGkNW78wxn0hLOYA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/gZP_6ds3YmsT-F18xFeq1cHzDJ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.44.0/22
Signature Algorithm: sha256WithRSAEncryption
2a:20:b9:af:d7:e9:fc:50:0e:73:85:a4:5d:97:ed:28:d1:37:
2d:fe:9c:cf:96:a0:50:34:96:9c:1e:28:d3:3c:30:0e:5d:63:
69:d2:dc:c3:6e:2c:15:48:e0:2e:b7:6e:d1:38:4d:b2:ba:44:
9a:09:b5:8c:af:5d:09:7d:28:d2:55:6b:89:d7:4b:b9:4f:55:
de:2e:89:14:ed:68:b6:c8:ca:7d:68:7b:f3:cc:6f:1e:57:47:
13:1f:64:13:e4:7f:d4:ba:13:74:8d:2a:de:f3:db:a2:a6:69:
36:e8:fc:50:d8:52:a2:53:52:38:73:90:b6:6b:9b:e1:85:0a:
79:8b:14:0c:b2:6e:42:98:39:7e:5e:1b:26:b6:a9:bd:9b:bb:
13:68:18:30:19:c9:66:de:48:fd:48:2c:09:1a:12:ec:01:42:
c1:cf:57:29:e1:e3:ed:49:69:a8:f3:f6:17:16:d6:47:1d:ca:
8e:e1:04:96:e9:db:c6:91:f7:12:a3:e6:bc:54:96:ed:c6:c9:
8a:5f:09:75:b6:2d:d4:1e:d4:75:67:f8:28:b7:74:35:89:0a:
02:ae:9b:a3:84:ad:66:64:d6:e9:71:ff:22:61:a5:e0:91:a4:
a6:d0:90:6b:34:96:a1:62:9c:1f:22:31:fe:07:50:94:91:5d:
fc:c9:8f:e2
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVs5jgtyixNH9C/PEw2MMEoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgxOTNmZmU5ZGIzNzYyNmIxM2Y4NWQ3Y2M0NTdhYWQ1YzFm
MzBjOWYwHhcNMjMwMTAxMTAzNTA1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkMWRlNzc1ZmE0OThkNjAyYjAxYTQzNTZlZmNjMzE5ZjQ4NGIzOTgwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr2U58oLFJCkkiBDpfg/SjgXapRRN
3EYnV4ANngZKljSZQNdh5YF9fSCOeXeqLeOrHd7zdOCpUWJdT5O2XxJMIodt0jzQ
orn8Md0l5FHlVfmA1vBrQwavvT0rdIAR4ePFHeKF+rVDFOmjgy9H6ZZ20wXU4kyV
pPPA0W02GtFE/78zrNmiLOEpq3/tsahEp6bc4xaeoLLSK0mEHno6JtcP7A0UK4VH
vUilk1MQWpfdpAcTxs0ciR8UamC9pR0x0nyorcYV6YLLPBWVdqRAgx/8kacyW1Pc
lDI0ZzDzLKMqtIp5Gd/76mTCc6AE+cIaxgZz9Hp+SiFkUGeEQmbey+JfrQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNHed1+kmNYCsBpDVu/MMZ9ISzmAMB8GA1UdIwQY
MBaAFIGT/+nbN2JrE/hdfMRXqtXB8wyfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ1pQXzZkczNZbXNULUYxOHhGZXExY0h6REo4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNy83NmJjMWUtYjZmNC00MDhhLWJiODkt
MDhkMTI3MGMyZTcxLzEvMGQ1M1g2U1kxZ0t3R2tOVzc4d3huMGhMT1lBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNy83NmJjMWUtYjZmNC00MDhhLWJiODktMDhkMTI3MGMyZTcx
LzEvZ1pQXzZkczNZbXNULUYxOHhGZXExY0h6REo4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCU5MsMA0G
CSqGSIb3DQEBCwUAA4IBAQAqILmv1+n8UA5zhaRdl+0o0Tct/pzPlqBQNJacHijT
PDAOXWNp0tzDbiwVSOAut27ROE2yukSaCbWMr10JfSjSVWuJ10u5T1XeLokU7Wi2
yMp9aHvzzG8eV0cTH2QT5H/UuhN0jSre89uipmk26PxQ2FKiU1I4c5C2a5vhhQp5
ixQMsm5CmDl+Xhsmtqm9m7sTaBgwGclm3kj9SCwJGhLsAULBz1cp4ePtSWmo8/YX
FtZHHcqO4QSW6dvGkfcSo+a8VJbtxsmKXwl1ti3UHtR1Z/got3Q1iQoCrpujhK1m
ZNbpcf8iYaXgkaSm0JBrNJahYpwfIjH+B1CUkV38yY/i
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:01 2024 by rpki-client on console-ams.rpki-client.org