Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/8J-tQAK3PpWOZAEkKhIsJ0trZFA.roa
File: 8J-tQAK3PpWOZAEkKhIsJ0trZFA.roa (raw, json)
Hash identifier: cQ0nq7Xy9HS+KyLMW1ejjd1o8sUfJdFpf6JyQ39LMc0=
Subject key identifier: F0:9F:AD:40:02:B7:3E:95:8E:64:01:24:2A:12:2C:27:4B:6B:64:50
Certificate issuer: /CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Certificate serial: 018CC94AB566F850F350673BC196501C8DAA
Authority key identifier: 81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/8J-tQAK3PpWOZAEkKhIsJ0trZFA.roa
Signing time: Tue 02 Jan 2024 08:29:25 +0000
ROA not before: Tue 02 Jan 2024 08:29:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60949
IP address blocks: 83.147.28.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 28 Apr 2024 04:27:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4a:b5:66:f8:50:f3:50:67:3b:c1:96:50:1c:8d:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Validity
Not Before: Jan 2 08:29:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f09fad4002b73e958e6401242a122c274b6b6450
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:ca:3c:46:58:86:fb:ae:64:a9:19:33:d6:3a:
73:53:de:5f:d3:e3:b0:3b:5d:64:aa:32:c8:fb:79:
df:f7:a6:7a:61:dc:65:67:26:fd:08:df:e4:b7:a2:
ca:21:62:dd:d4:29:6d:52:be:96:fc:0e:08:53:90:
17:ad:42:49:b4:2f:42:a2:bc:53:a3:da:33:a3:34:
ed:82:25:fc:30:fb:87:b9:40:52:43:6d:ff:47:86:
73:09:5a:f9:6e:4c:06:88:80:5c:2c:fd:3c:5c:c3:
84:ad:64:38:f1:d2:1c:13:31:9e:fb:ba:42:18:fa:
bb:cf:8b:af:28:e3:0f:3c:74:07:0d:62:71:a9:93:
87:85:6b:f4:e0:f9:8f:b8:56:89:8b:4b:2f:b6:de:
ed:4a:39:e7:13:56:74:bf:cb:ad:18:1b:cd:ed:d3:
64:73:06:15:d0:aa:a4:e0:26:51:bd:f1:34:db:71:
55:55:13:cd:6a:26:30:47:8d:cb:69:d4:bd:df:27:
99:a7:5d:27:cd:7d:62:6f:a9:50:59:33:41:c0:11:
ed:d0:22:4b:49:dc:5e:e3:ea:00:3f:d6:f1:61:3f:
b2:35:2d:0f:3c:6c:cc:7b:3e:10:90:fd:9c:17:7b:
be:b4:df:ef:d0:ee:e8:b2:f4:da:ba:a8:fc:37:04:
a7:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:9F:AD:40:02:B7:3E:95:8E:64:01:24:2A:12:2C:27:4B:6B:64:50
X509v3 Authority Key Identifier:
keyid:81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/8J-tQAK3PpWOZAEkKhIsJ0trZFA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/gZP_6ds3YmsT-F18xFeq1cHzDJ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.28.0/24
Signature Algorithm: sha256WithRSAEncryption
03:a3:50:b5:2e:a5:b7:08:7a:a9:a7:ab:da:90:50:ad:8f:43:
1e:56:ff:22:db:ac:bf:04:de:c0:3e:e8:5d:06:8f:21:28:c6:
f3:26:69:02:88:ce:87:51:57:f0:ce:93:34:a2:49:0d:ef:20:
f9:60:0b:b6:23:38:9e:56:ce:38:c5:55:fc:b5:ea:7a:dd:00:
f0:21:27:6e:76:6f:01:14:52:71:81:c7:0d:56:95:4c:41:9b:
9a:17:8f:22:0f:f6:e3:85:61:bb:db:fa:e1:88:cc:c0:1d:0f:
58:1f:d1:40:02:c6:11:cd:47:50:c7:b2:fa:d4:a5:b9:ec:11:
f6:ce:d3:fc:78:1e:1a:35:31:b9:9c:a2:67:35:82:cb:c6:29:
74:b8:2d:dc:db:0f:72:ec:b0:0c:21:45:cd:dd:48:cd:72:c3:
c4:5f:c8:98:8b:b7:1c:ef:33:4d:3a:bc:f1:bd:65:7f:f7:f0:
d4:11:8b:40:69:ff:03:5b:ab:91:55:25:3e:f4:1d:e0:48:d5:
11:59:74:b6:b9:27:e0:55:f1:9d:e3:ac:52:a5:39:2f:03:22:
76:ef:e7:96:79:ea:f5:13:b4:26:88:d2:be:53:88:46:1f:6c:
80:48:2f:61:96:1e:43:45:19:54:68:10:45:53:ab:58:63:ec:
fe:c8:7c:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:01 2024 by rpki-client on console-ams.rpki-client.org