Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/1-B9jozst-F9iQm0XP2o0dmLIUgQ.roa
File: 1-B9jozst-F9iQm0XP2o0dmLIUgQ.roa (raw, json)
Hash identifier: w81CwTMNV4ewUFevfTNVXPjXn5g2Jkl0frqM7iEgT20=
Subject key identifier: F8:1F:63:A3:3B:2D:F8:5F:62:42:6D:17:3F:6A:34:76:62:C8:52:04
Certificate issuer: /CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Certificate serial: 018BFAB18BACC634AB6D8B9AF063D997091C
Authority key identifier: 81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/1-B9jozst-F9iQm0XP2o0dmLIUgQ.roa
Signing time: Thu 23 Nov 2023 05:40:21 +0000
ROA not before: Thu 23 Nov 2023 05:40:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 83.147.52.0/22 maxlen: 24
83.147.12.0/22 maxlen: 24
83.147.20.0/23 maxlen: 24
83.147.23.0/24 maxlen: 24
83.147.28.0/22 maxlen: 24
83.147.26.0/23 maxlen: 24
Validation: Failed, certificate revoked on Fri 24 Nov 2023 05:41:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:fa:b1:8b:ac:c6:34:ab:6d:8b:9a:f0:63:d9:97:09:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Validity
Not Before: Nov 23 05:40:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f81f63a33b2df85f62426d173f6a347662c85204
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:d7:1c:ab:35:3f:bd:5d:6f:54:3b:74:a3:66:
4f:9a:59:31:29:51:59:73:c1:81:ee:ff:3d:1c:87:
e2:ef:21:cc:fc:c4:3c:57:1f:45:db:7a:1c:af:f2:
e1:a6:ff:8f:63:3d:15:ad:69:f3:53:de:f9:eb:94:
72:c2:a6:8a:83:0d:9d:81:a9:8f:2e:d4:91:23:8d:
69:1f:93:bc:f8:50:75:9c:e8:04:21:7b:9a:de:9a:
42:9d:92:58:e1:dd:3b:ef:44:94:ee:45:33:68:4f:
c9:3b:4c:2c:81:c3:11:90:a0:32:46:0e:c2:a4:73:
d2:22:10:02:8f:a9:a2:7b:54:f7:d9:92:ad:ab:5d:
83:2c:8e:c3:3f:4a:42:5f:32:ee:8c:f5:6d:52:45:
f3:fc:c2:b0:bc:94:0c:29:c3:e2:a8:eb:24:31:63:
90:0e:b7:da:78:64:67:87:2a:95:97:ea:8b:ec:66:
ee:48:d0:49:e3:10:49:f0:c2:46:0c:5b:64:4a:d2:
57:4f:d8:00:47:41:83:73:4b:72:41:73:92:8c:bc:
ca:7d:a5:76:07:a4:38:60:9e:24:36:69:22:af:c5:
0e:89:0b:61:00:ff:d1:df:f6:c0:83:b2:3a:4b:3e:
1a:58:fc:8f:db:95:55:20:d2:e4:9c:c0:45:26:30:
6e:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:1F:63:A3:3B:2D:F8:5F:62:42:6D:17:3F:6A:34:76:62:C8:52:04
X509v3 Authority Key Identifier:
keyid:81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/1-B9jozst-F9iQm0XP2o0dmLIUgQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/gZP_6ds3YmsT-F18xFeq1cHzDJ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.12.0/22
83.147.20.0/23
83.147.23.0/24
83.147.26.0-83.147.31.255
83.147.52.0/22
Signature Algorithm: sha256WithRSAEncryption
bf:67:c7:55:c1:00:8e:f7:31:86:5d:fb:a4:af:d0:eb:c1:a3:
cb:aa:67:0e:db:ee:d7:a6:33:23:bb:40:cf:9e:68:44:fe:06:
6f:b3:08:55:78:f3:2a:15:88:6a:62:36:0d:52:4e:10:a9:d9:
ee:66:a5:bf:ad:23:b8:a9:4d:58:1f:98:5a:98:35:fb:cf:e1:
da:52:54:3f:a8:14:59:95:1d:52:e4:0f:1f:44:e5:e8:db:35:
d2:cc:4c:0e:0c:0d:97:6d:0f:f3:b9:bd:6c:2e:f2:92:b5:67:
5b:5a:0a:9a:fc:7a:53:28:50:90:a8:19:99:ed:69:3f:bc:f4:
98:5e:7d:02:dd:11:63:57:9f:06:6a:51:fa:20:5c:a7:d0:e4:
cf:c9:2e:e9:e7:62:b5:fb:c2:21:99:f8:03:04:55:02:83:9d:
9d:fa:04:62:26:63:3c:b0:7c:c3:bd:6d:49:2f:40:f5:06:6c:
8e:a4:1f:ee:e7:33:2b:5a:80:fa:a1:6e:b7:7b:ce:62:a2:7f:
02:ed:34:4d:d6:73:eb:81:22:4a:86:d2:e0:40:41:26:d5:bc:
06:cc:15:8a:ce:76:dc:9c:73:14:c8:14:82:07:8f:1f:26:16:
95:0e:c0:16:47:e8:dc:0c:fb:16:98:9d:a8:a5:c5:df:d4:a4:
32:15:87:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:50 2024 by rpki-client on console-fra.rpki-client.org