Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/77zrEwzTQr-GciCGOl6UCvkr1sQ.roa
File: 77zrEwzTQr-GciCGOl6UCvkr1sQ.roa (raw, json)
Hash identifier: kfMxx/txJ4PfDmSMNwHeySl//NJtAitF5aTXpMu18m0=
Subject key identifier: EF:BC:EB:13:0C:D3:42:BF:86:72:20:86:3A:5E:94:0A:F9:2B:D6:C4
Certificate issuer: /CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Certificate serial: 018AEC63D40AE7F7FA13072B181E8982FD9E
Authority key identifier: 81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/77zrEwzTQr-GciCGOl6UCvkr1sQ.roa
Signing time: Sun 01 Oct 2023 17:57:59 +0000
ROA not before: Sun 01 Oct 2023 17:57:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 83.147.40.0/22 maxlen: 24
83.147.61.0/24 maxlen: 24
83.147.4.0/22 maxlen: 24
83.147.0.0/22 maxlen: 24
83.147.11.0/24 maxlen: 24
83.147.9.0/24 maxlen: 24
83.147.14.0/24 maxlen: 24
83.147.20.0/23 maxlen: 24
83.147.23.0/24 maxlen: 24
83.147.28.0/22 maxlen: 24
Validation: Failed, certificate revoked on Thu 05 Oct 2023 04:44:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:ec:63:d4:0a:e7:f7:fa:13:07:2b:18:1e:89:82:fd:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Validity
Not Before: Oct 1 17:57:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=efbceb130cd342bf867220863a5e940af92bd6c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:be:2f:0b:e1:83:37:ef:2e:0f:e2:28:92:a8:
ca:8a:09:be:44:19:ba:a1:61:d3:a4:57:3a:9f:92:
da:90:bc:ce:a5:72:29:e1:31:ee:f6:99:f6:b1:aa:
2c:cd:ea:41:b9:1e:27:65:be:97:22:96:09:4c:57:
ad:a6:25:5b:38:34:5e:21:fd:68:92:ee:3f:da:af:
3c:c8:00:bc:5f:b4:78:ae:a6:4f:be:67:b4:42:07:
2c:09:93:9c:43:aa:38:32:2b:68:f5:3c:60:dd:27:
11:8e:ab:ea:21:85:c7:de:8a:59:4b:38:4d:85:30:
27:10:0b:5c:20:ed:21:72:c4:13:32:16:91:b4:95:
cc:7b:69:26:a2:65:bb:ae:ba:ef:e9:d4:e9:c6:3f:
85:be:ec:dd:a7:27:d4:40:1b:7e:d7:d5:55:c2:f0:
f5:b9:71:93:95:e0:8b:a0:fe:1d:52:a8:5b:55:d4:
f2:d8:82:61:bd:a9:fd:7e:f2:5b:d3:5b:6e:f6:5b:
03:b5:32:64:df:dc:aa:24:9d:8d:87:e9:48:4e:b5:
83:e6:cf:7d:c2:47:9e:09:6f:2e:d5:01:13:b7:f0:
80:82:1b:bb:18:79:a5:bc:ee:72:33:59:15:73:b6:
8d:3f:1c:e4:3e:a0:16:a0:5e:7d:a2:9d:f6:07:5c:
5b:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:BC:EB:13:0C:D3:42:BF:86:72:20:86:3A:5E:94:0A:F9:2B:D6:C4
X509v3 Authority Key Identifier:
keyid:81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/77zrEwzTQr-GciCGOl6UCvkr1sQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/gZP_6ds3YmsT-F18xFeq1cHzDJ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.0.0/21
83.147.9.0/24
83.147.11.0/24
83.147.14.0/24
83.147.20.0/23
83.147.23.0/24
83.147.28.0/22
83.147.40.0/22
83.147.61.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:86:ae:87:f3:ac:12:e7:8e:ae:3f:d1:bc:fc:73:cd:d4:93:
a8:f6:dc:e7:89:4a:f4:6e:b7:4a:f0:d6:1b:64:98:f4:70:06:
94:d5:4f:9a:ee:bf:6c:73:bc:77:83:8d:5f:94:5a:e0:ae:54:
ca:05:7c:b9:d3:8d:2e:d4:56:b7:0d:d2:01:0d:39:0f:ea:ef:
33:33:e8:e0:06:da:85:a9:2a:33:e4:ee:86:61:9c:35:01:a5:
17:1e:2d:f6:db:43:24:de:ef:45:e6:10:7a:d1:e4:e5:4c:21:
e7:ab:ab:f8:18:30:b5:22:19:43:63:18:2b:a4:6a:1c:85:2c:
fd:9d:f2:08:db:9c:86:0b:b0:a7:cd:3b:ec:da:23:bd:72:96:
3c:85:8e:09:f5:f2:4c:c6:ba:f8:8e:78:96:41:a5:58:18:aa:
03:9d:b7:f3:64:81:88:a1:87:03:f6:46:fd:b7:bc:3c:ca:d6:
d6:fc:27:87:8c:63:bc:fd:f0:9f:63:a5:05:ba:55:15:69:ec:
d8:2a:1d:45:22:16:3f:9a:20:b8:19:09:9d:75:63:d3:5d:36:
cc:2e:30:ac:16:4f:fb:6f:8d:91:be:33:07:89:99:25:1d:6d:
44:f0:0b:9b:63:36:2f:b4:a0:17:11:ce:27:75:82:d4:12:e0:
d3:d9:b3:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:01 2024 by rpki-client on console-ams.rpki-client.org