Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/60ND7X0DWI9QjOFudm_3Nu01zZ0.roa
File: 60ND7X0DWI9QjOFudm_3Nu01zZ0.roa (raw, json)
Hash identifier: Pp83oqKFxWP/L1QSm7vWp1bEIPKjTeR6IQgCMGKZpUo=
Subject key identifier: EB:43:43:ED:7D:03:58:8F:50:8C:E1:6E:76:6F:F7:36:ED:35:CD:9D
Certificate issuer: /CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Certificate serial: 018A658D853DA4C478372C47B0DE3534B497
Authority key identifier: 81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/60ND7X0DWI9QjOFudm_3Nu01zZ0.roa
Signing time: Tue 05 Sep 2023 13:34:48 +0000
ROA not before: Tue 05 Sep 2023 13:34:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 83.147.44.0/22 maxlen: 24
83.147.40.0/22 maxlen: 24
83.147.61.0/24 maxlen: 24
83.147.0.0/22 maxlen: 24
83.147.11.0/24 maxlen: 24
83.147.9.0/24 maxlen: 24
83.147.14.0/24 maxlen: 24
83.147.20.0/23 maxlen: 24
83.147.23.0/24 maxlen: 24
83.147.28.0/22 maxlen: 24
Validation: Failed, certificate revoked on Fri 15 Sep 2023 09:44:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:65:8d:85:3d:a4:c4:78:37:2c:47:b0:de:35:34:b4:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Validity
Not Before: Sep 5 13:34:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=eb4343ed7d03588f508ce16e766ff736ed35cd9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:c6:c6:63:aa:78:e5:7b:8b:8d:21:85:3e:51:
4f:ba:e7:19:8e:11:0d:34:49:f5:02:f0:90:c5:33:
2a:c6:bf:90:25:60:e1:02:9e:9b:ab:70:b2:b3:1d:
10:a3:da:44:48:7c:0d:56:ad:c1:80:b0:2a:42:e9:
5f:e5:48:95:c7:6b:6e:0d:4d:10:93:46:1c:a9:4c:
2f:e6:a5:6f:7f:84:c0:99:61:21:04:d8:4e:6f:75:
2c:4f:26:17:90:46:b3:b7:b8:ad:56:19:9b:f2:76:
30:7c:50:1a:39:0d:be:a7:cc:a7:1c:2e:9c:62:31:
16:84:39:5e:19:ef:1e:9f:eb:6a:b8:ca:9b:3a:d7:
1d:23:09:b4:e8:11:e9:4a:b2:8d:0e:d3:d6:90:8e:
2d:12:7d:78:c3:37:83:6a:93:0a:fa:08:e8:2d:34:
4f:8e:79:ba:13:c0:b9:6d:73:38:14:86:fe:8a:89:
ea:84:2c:51:3d:c6:61:10:93:67:30:8d:fa:15:79:
1a:8d:06:2e:14:4e:0b:cd:92:d7:96:5b:af:0f:d0:
02:6c:14:e1:1f:73:db:10:b3:1e:a6:ad:ec:e4:68:
6b:c8:2c:a5:6b:8d:af:b7:d3:06:b0:e1:7e:bb:cc:
19:01:04:eb:cb:b8:66:84:11:c7:a3:70:bc:a0:1a:
95:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:43:43:ED:7D:03:58:8F:50:8C:E1:6E:76:6F:F7:36:ED:35:CD:9D
X509v3 Authority Key Identifier:
keyid:81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/60ND7X0DWI9QjOFudm_3Nu01zZ0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/gZP_6ds3YmsT-F18xFeq1cHzDJ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.0.0/22
83.147.9.0/24
83.147.11.0/24
83.147.14.0/24
83.147.20.0/23
83.147.23.0/24
83.147.28.0/22
83.147.40.0/21
83.147.61.0/24
Signature Algorithm: sha256WithRSAEncryption
04:c9:42:74:7b:9b:c2:b0:2f:4f:c9:f7:1d:65:68:d4:fc:a3:
35:89:68:65:01:8d:61:79:01:06:e8:9c:95:19:0c:70:93:3b:
20:dd:b3:1e:67:c1:29:e2:ba:74:1d:ef:a5:fb:e1:3c:37:96:
22:ad:12:94:c8:3e:1b:fa:a1:3c:29:c3:41:64:6c:45:01:29:
29:16:d5:18:85:9c:5c:69:21:58:5a:b1:57:82:a0:8b:d1:cf:
51:74:ef:63:73:5b:cb:5e:02:7f:c5:c4:30:bc:20:bf:3d:b4:
8a:cb:a7:46:f6:98:91:fd:9d:c6:b7:53:19:ec:b6:5f:a3:0d:
d1:fb:8a:0d:f2:4e:17:f2:61:23:ca:65:48:3b:cc:b8:a1:e9:
95:0d:0a:96:30:60:0b:50:b4:e5:08:dd:f5:d9:30:4b:c8:00:
af:82:c8:cb:58:41:47:74:fa:14:c2:04:ed:e3:65:85:20:28:
b2:b8:16:ba:5d:c6:1c:eb:16:1d:31:3a:53:ce:be:7a:d9:b3:
06:d9:e8:81:47:05:0d:13:dc:21:35:94:44:31:d3:ad:62:66:
a1:b9:99:49:bb:15:ff:04:7e:80:61:d9:8d:13:19:a4:9a:a0:
2d:c7:1b:0a:70:ad:2c:82:2f:e4:02:c9:6c:a3:c8:9b:ad:37:
24:d1:2f:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:01 2024 by rpki-client on console-ams.rpki-client.org