Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/FK5gJ54DGeJ2Uf7q30EShaupscE.roa
File: FK5gJ54DGeJ2Uf7q30EShaupscE.roa (raw, json)
Hash identifier: lOIlJ3aPHk1S35fNozUYvY/Evpd33gEsIWS0kIl+j6c=
Subject key identifier: 14:AE:60:27:9E:03:19:E2:76:51:FE:EA:DF:41:12:85:AB:A9:B1:C1
Certificate issuer: /CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Certificate serial: 018905518972B03A7210485436AC0B4447B8
Authority key identifier: 81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/FK5gJ54DGeJ2Uf7q30EShaupscE.roa
Signing time: Thu 29 Jun 2023 04:02:56 +0000
ROA not before: Thu 29 Jun 2023 04:02:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211936
IP address blocks: 83.147.36.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:29:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:05:51:89:72:b0:3a:72:10:48:54:36:ac:0b:44:47:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Validity
Not Before: Jun 29 04:02:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=14ae60279e0319e27651feeadf411285aba9b1c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:e2:83:8e:39:70:dd:db:ed:99:f3:4d:4e:34:
db:6a:20:13:1a:44:c1:27:c6:e5:7e:ae:7e:54:a7:
22:21:c6:80:60:90:cb:f1:78:e4:66:37:a9:c8:08:
a3:0e:6a:a9:6d:57:43:56:2f:59:2b:41:4c:3a:53:
48:c1:2b:8a:ca:57:c0:b4:dc:4b:ae:20:f8:cc:68:
37:36:46:67:e9:f4:32:d8:99:9a:77:94:e7:e8:e4:
22:d4:4a:f0:48:c6:d6:52:74:73:82:20:3c:3c:f8:
ad:8c:99:39:1d:38:51:4d:d8:67:6d:3f:ca:79:93:
c1:9c:4d:88:ad:21:1e:92:35:22:bf:f3:67:6b:34:
51:58:35:aa:22:09:60:66:7b:b4:f9:82:91:85:ae:
51:13:f3:4e:a0:18:93:5a:58:25:dc:27:5d:9d:77:
c3:40:12:b0:95:9e:23:3b:21:25:13:17:d2:56:8b:
6f:40:55:93:84:0b:5d:23:eb:c2:8d:36:8e:84:78:
13:a9:81:5c:72:72:06:43:c8:41:9a:33:10:55:09:
f2:19:bd:58:51:a0:f2:00:0c:67:3f:e0:30:42:76:
0a:28:e7:f6:fd:50:cd:2a:79:90:e9:dc:3c:2d:65:
cc:03:2b:8f:55:dc:f5:66:f2:d8:ee:8f:ac:cc:43:
9d:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:AE:60:27:9E:03:19:E2:76:51:FE:EA:DF:41:12:85:AB:A9:B1:C1
X509v3 Authority Key Identifier:
keyid:81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/FK5gJ54DGeJ2Uf7q30EShaupscE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/gZP_6ds3YmsT-F18xFeq1cHzDJ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.36.0/22
Signature Algorithm: sha256WithRSAEncryption
b7:08:71:5b:d6:31:ab:de:7f:9e:6c:42:4d:79:a4:e7:95:c9:
4d:e3:f0:81:ee:13:46:b9:f9:47:7c:1c:84:d0:4c:2c:71:dd:
02:8a:b4:6c:3c:0f:7d:f6:e2:17:be:68:c5:03:13:c7:c3:94:
98:a1:8a:b3:a2:6b:db:13:3a:91:5c:f4:07:74:01:06:15:f9:
84:cc:dc:32:b2:7f:b6:66:0b:19:23:be:36:9d:ab:69:9c:3a:
ba:a0:77:c1:35:a8:64:c7:30:a7:dd:a5:05:49:df:e6:da:0f:
74:40:02:4b:ea:7c:14:50:9f:87:50:93:7f:69:ba:43:b0:69:
41:d7:4d:34:3c:ec:5f:4f:1a:45:93:70:b7:37:67:82:3c:62:
b2:7e:0d:29:8f:94:42:31:45:93:60:9c:00:35:d1:9c:17:cb:
cd:98:34:e2:df:dd:c8:c7:8d:84:79:11:4f:c2:90:04:02:60:
e6:8e:94:9a:2d:9a:3f:e9:bd:57:9f:ab:91:ef:76:ba:25:07:
c9:81:e9:00:f8:a1:27:3b:0b:25:80:9c:05:de:d0:dd:33:47:
6a:60:57:7b:0b:43:c9:f3:19:1a:b3:ef:b8:79:56:f0:ff:b6:
c5:50:f8:34:f4:b4:7b:79:62:87:0e:b0:91:09:a6:12:d8:4a:
3e:86:6c:e9
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYkFUYlysDpyEEhUNqwLREe4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgxOTNmZmU5ZGIzNzYyNmIxM2Y4NWQ3Y2M0NTdhYWQ1YzFm
MzBjOWYwHhcNMjMwNjI5MDQwMjU2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxNGFlNjAyNzllMDMxOWUyNzY1MWZlZWFkZjQxMTI4NWFiYTliMWMxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAouKDjjlw3dvtmfNNTjTbaiATGkTB
J8blfq5+VKciIcaAYJDL8XjkZjepyAijDmqpbVdDVi9ZK0FMOlNIwSuKylfAtNxL
riD4zGg3NkZn6fQy2Jmad5Tn6OQi1ErwSMbWUnRzgiA8PPitjJk5HThRTdhnbT/K
eZPBnE2IrSEekjUiv/NnazRRWDWqIglgZnu0+YKRha5RE/NOoBiTWlgl3CddnXfD
QBKwlZ4jOyElExfSVotvQFWThAtdI+vCjTaOhHgTqYFccnIGQ8hBmjMQVQnyGb1Y
UaDyAAxnP+AwQnYKKOf2/VDNKnmQ6dw8LWXMAyuPVdz1ZvLY7o+szEOdiQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBSuYCeeAxnidlH+6t9BEoWrqbHBMB8GA1UdIwQY
MBaAFIGT/+nbN2JrE/hdfMRXqtXB8wyfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ1pQXzZkczNZbXNULUYxOHhGZXExY0h6REo4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNy83NmJjMWUtYjZmNC00MDhhLWJiODkt
MDhkMTI3MGMyZTcxLzEvRks1Z0o1NERHZUoyVWY3cTMwRVNoYXVwc2NFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNy83NmJjMWUtYjZmNC00MDhhLWJiODktMDhkMTI3MGMyZTcx
LzEvZ1pQXzZkczNZbXNULUYxOHhGZXExY0h6REo4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCU5MkMA0G
CSqGSIb3DQEBCwUAA4IBAQC3CHFb1jGr3n+ebEJNeaTnlclN4/CB7hNGuflHfByE
0Ewscd0CirRsPA999uIXvmjFAxPHw5SYoYqzomvbEzqRXPQHdAEGFfmEzNwysn+2
ZgsZI742natpnDq6oHfBNahkxzCn3aUFSd/m2g90QAJL6nwUUJ+HUJN/abpDsGlB
1000POxfTxpFk3C3N2eCPGKyfg0pj5RCMUWTYJwANdGcF8vNmDTi393Ix42EeRFP
wpAEAmDmjpSaLZo/6b1Xn6uR73a6JQfJgekA+KEnOwslgJwF3tDdM0dqYFd7C0PJ
8xkas++4eVbw/7bFUPg09LR7eWKHDrCRCaYS2Eo+hmzp
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:01 2024 by rpki-client on console-ams.rpki-client.org