Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/EeWZrj6CePkMw4nSMTN4C5qclmw.roa
File: EeWZrj6CePkMw4nSMTN4C5qclmw.roa (raw, json)
Hash identifier: QIuiZ5J+p9foE2AEsqyuOzQACdPguV0mxdIlOD9gUz4=
Subject key identifier: 11:E5:99:AE:3E:82:78:F9:0C:C3:89:D2:31:33:78:0B:9A:9C:96:6C
Certificate issuer: /CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Certificate serial: 018C6800682CE3B67B8C53E403A14E324858
Authority key identifier: 81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/EeWZrj6CePkMw4nSMTN4C5qclmw.roa
Signing time: Thu 14 Dec 2023 11:05:06 +0000
ROA not before: Thu 14 Dec 2023 11:05:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 52041
IP address blocks: 83.147.29.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 31 Dec 2023 12:40:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:68:00:68:2c:e3:b6:7b:8c:53:e4:03:a1:4e:32:48:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Validity
Not Before: Dec 14 11:05:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=11e599ae3e8278f90cc389d23133780b9a9c966c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:5b:46:25:1b:79:b7:3a:fb:fa:2e:df:8d:82:
b5:1e:fd:b9:98:c8:1a:13:3f:e3:6f:08:f7:65:fd:
fb:64:2a:5d:e7:55:9d:d2:3b:1c:97:04:5d:6f:fb:
bd:6c:71:08:36:40:7b:18:30:d9:c5:1e:98:56:49:
1e:9e:b8:33:55:66:1f:49:7c:4c:fd:42:e7:e1:e7:
22:8d:09:eb:ad:59:ae:61:f9:a3:ce:a1:e9:1f:28:
3d:06:e5:2f:cf:9b:fc:08:ac:66:d8:b9:92:a0:76:
14:d1:c9:2b:a1:92:18:75:e1:ef:ac:51:b9:f9:df:
d6:70:89:d1:89:7d:ef:0e:fe:dc:a4:1a:8a:03:b6:
a8:3d:a6:29:64:1f:66:e4:98:e1:3c:c4:7a:52:d3:
e1:eb:b5:f6:7e:17:af:75:77:74:2f:ec:4e:80:d1:
82:bf:d7:8b:5f:7c:f3:5f:59:68:78:1a:36:b5:79:
e7:91:cb:97:a2:63:91:43:ee:b4:19:f6:cc:59:a6:
fd:bf:4d:fc:a7:81:4f:43:16:ea:75:f2:d9:6b:b0:
d8:be:36:34:eb:47:bd:37:24:be:2a:51:85:ee:b3:
4f:5e:eb:11:ce:2b:d4:00:8f:38:74:cd:38:0b:f4:
de:77:e8:a0:8b:7c:ec:a4:3a:2a:37:a4:24:69:ed:
5b:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:E5:99:AE:3E:82:78:F9:0C:C3:89:D2:31:33:78:0B:9A:9C:96:6C
X509v3 Authority Key Identifier:
keyid:81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/EeWZrj6CePkMw4nSMTN4C5qclmw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/gZP_6ds3YmsT-F18xFeq1cHzDJ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.29.0/24
Signature Algorithm: sha256WithRSAEncryption
90:ca:d9:91:22:7c:8f:4d:7f:d2:96:1c:e4:d7:6e:c2:24:85:
77:d9:b0:ac:a2:aa:78:02:4d:53:8a:a5:22:23:75:b4:b2:97:
ff:2e:c9:95:d3:ea:4f:10:b9:03:bd:44:18:c5:70:de:a6:6e:
2f:c6:5a:a6:47:bf:f4:a1:6d:fe:a1:b7:51:55:20:fa:1b:ef:
75:10:78:82:35:30:cb:4c:0c:1c:35:cf:ec:74:a9:83:73:09:
7e:d7:00:8c:98:68:8c:9d:44:34:e0:c5:77:5c:9d:88:9e:31:
0a:fd:bb:d0:6a:ba:b2:08:a3:b6:69:c6:34:78:d6:08:3b:55:
63:be:1e:e4:d1:01:2b:af:e8:bb:3d:85:e1:b6:a4:76:01:2c:
ae:94:92:7c:42:93:05:f9:96:dd:3a:87:bd:dd:14:80:d8:e0:
77:e1:eb:3a:b4:f5:97:cd:6c:e7:76:03:7c:00:18:38:02:75:
e0:a4:6c:bb:32:98:ae:89:1e:14:39:90:19:9b:11:84:fa:07:
33:41:25:6a:1e:f1:e6:9a:cd:98:34:22:2f:ad:71:c0:d5:ce:
37:e9:18:ba:4c:cd:27:07:86:f8:30:e7:51:b0:8e:ed:95:51:
30:f1:8b:96:97:79:18:0e:ae:c0:d9:3b:dc:27:2e:27:19:07:
19:ad:c5:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:01 2024 by rpki-client on console-ams.rpki-client.org