Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/2uS2DIeyLShgsq5LuDhSupRaJ-k.roa
File: 2uS2DIeyLShgsq5LuDhSupRaJ-k.roa (raw, json)
Hash identifier: JvR4vViiBhifu8+og3ff5fmfo4/EJnUWYknnupqwLrI=
Subject key identifier: DA:E4:B6:0C:87:B2:2D:28:60:B2:AE:4B:B8:38:52:BA:94:5A:27:E9
Certificate issuer: /CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Certificate serial: 018C19E92F7F4CDF2298BC1417D43785F4CB
Authority key identifier: 81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/2uS2DIeyLShgsq5LuDhSupRaJ-k.roa
Signing time: Wed 29 Nov 2023 07:09:21 +0000
ROA not before: Wed 29 Nov 2023 07:09:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 83.147.62.0/24 maxlen: 24
83.147.22.0/24 maxlen: 24
83.147.32.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:29:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:19:e9:2f:7f:4c:df:22:98:bc:14:17:d4:37:85:f4:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Validity
Not Before: Nov 29 07:09:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dae4b60c87b22d2860b2ae4bb83852ba945a27e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:07:e8:38:7d:c9:16:af:74:53:81:ac:0b:fb:
79:f6:a8:50:31:96:61:46:96:d9:f9:2a:bc:73:d1:
36:ed:d0:b2:09:ef:83:17:0c:b1:40:8a:f0:5d:b5:
80:19:a7:11:76:15:34:4a:50:0a:49:d4:27:aa:0d:
fb:1d:b0:85:99:83:ab:6d:ee:64:39:14:1c:fd:43:
0a:6e:a5:e5:c7:4d:2b:d4:75:1a:5b:59:86:02:e4:
02:32:db:34:5a:a9:3c:36:88:a5:3e:e1:49:22:4f:
b2:70:7d:21:43:7b:1b:90:94:57:30:e5:19:a8:b0:
12:a0:52:e1:a6:73:19:e5:d2:73:8e:70:14:cb:6f:
9a:31:8c:d4:cc:41:86:7f:0a:58:72:fb:21:d3:e8:
a0:9b:4a:93:2c:0e:5e:05:d5:99:15:90:b1:4a:10:
28:fe:ca:ad:0a:8f:be:b4:0a:e7:d4:03:8c:9f:ae:
72:d8:76:fc:c1:27:ef:e0:d0:df:31:b7:51:df:4e:
27:cd:3c:d5:40:45:6d:02:29:ea:b7:fc:ba:e2:a3:
a5:c7:05:71:53:c3:d6:df:fb:bf:5c:28:a2:87:44:
4d:e4:dc:a9:50:89:e0:4a:2a:9f:21:a1:a9:c4:21:
ba:a1:4d:90:2c:51:4b:cd:69:c4:e2:f1:1d:65:b2:
12:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:E4:B6:0C:87:B2:2D:28:60:B2:AE:4B:B8:38:52:BA:94:5A:27:E9
X509v3 Authority Key Identifier:
keyid:81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/2uS2DIeyLShgsq5LuDhSupRaJ-k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/gZP_6ds3YmsT-F18xFeq1cHzDJ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.22.0/24
83.147.32.0/22
83.147.62.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:c8:95:ac:da:9f:38:44:ae:e7:1b:89:e3:27:03:43:46:26:
92:6a:fd:6e:14:21:d0:21:49:cb:48:52:d7:65:61:63:84:60:
26:5d:92:bd:94:c2:dd:35:39:96:31:7c:33:7f:3e:e4:62:60:
3b:0a:c0:bd:46:08:d2:d8:44:4e:f1:63:89:75:e2:ba:ea:a8:
b8:f5:db:d2:9a:6b:83:8e:4b:b9:cf:ec:8a:35:6f:16:59:b3:
f0:c0:a2:97:c7:05:00:e8:f9:83:13:5a:34:7d:49:2e:24:fa:
14:51:5a:a1:d1:56:c6:35:ee:38:20:2a:6b:7f:79:25:1e:c1:
51:80:b8:53:59:fa:e2:52:57:eb:dc:d2:34:06:22:16:32:91:
01:84:1f:f1:d2:43:54:e8:2e:4d:bb:0e:13:b8:0f:5d:4c:c8:
97:f3:e2:46:99:5c:4b:06:86:4d:fb:35:73:65:a0:c5:0c:b1:
a8:94:07:dc:89:be:27:f9:d5:e0:8b:63:ed:06:53:d3:5e:76:
3d:8b:c1:71:19:3e:0a:ec:6f:ce:2a:86:78:5e:50:d0:ec:c8:
a7:af:6f:d7:df:a2:1b:34:3d:d1:e8:8b:da:f4:f3:86:4d:a0:
9c:88:fa:3c:4e:bc:dd:4e:6d:05:eb:3a:50:c9:61:af:51:00:
51:b6:2a:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:50 2024 by rpki-client on console-fra.rpki-client.org