Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/Hb28TnYECQW_0Curt_IubL-8bc4.roa
File: Hb28TnYECQW_0Curt_IubL-8bc4.roa (raw, json)
Hash identifier: kJP1duY0XtrptHVwK2N7R6cKwpU4fc2ASjw1Nx/uzM4=
Subject key identifier: 1D:BD:BC:4E:76:04:09:05:BF:D0:2B:AB:B7:F2:2E:6C:BF:BC:6D:CE
Certificate issuer: /CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Certificate serial: 018E3B59324E2554894D2ADF838D26540655
Authority key identifier: 81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/Hb28TnYECQW_0Curt_IubL-8bc4.roa
Signing time: Thu 14 Mar 2024 05:04:45 +0000
ROA not before: Thu 14 Mar 2024 05:04:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 83.147.0.0/22 maxlen: 24
83.147.16.0/22 maxlen: 24
83.147.21.0/24 maxlen: 24
83.147.48.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 16 Apr 2024 04:39:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:3b:59:32:4e:25:54:89:4d:2a:df:83:8d:26:54:06:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Validity
Not Before: Mar 14 05:04:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1dbdbc4e76040905bfd02babb7f22e6cbfbc6dce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:6e:75:36:3b:c4:0e:5c:2e:5d:d0:a1:6a:b3:
e6:46:c9:f9:77:35:8f:02:06:91:e5:9f:36:75:e6:
38:02:35:6d:80:5c:09:1e:8f:35:4d:0b:f2:14:77:
18:99:1b:a4:be:af:b6:1d:8f:92:aa:b1:57:63:7f:
a9:f7:3e:0f:b4:c8:00:df:f8:cc:94:ed:65:b6:8e:
38:8a:fb:e8:66:62:76:76:56:62:ed:d2:cd:4e:1d:
98:2d:67:28:db:03:ef:93:cf:8b:ca:3d:cc:bc:e6:
f9:04:ad:f5:82:91:2a:8d:bb:af:d4:2e:17:1a:f9:
96:44:85:b5:05:b5:17:d8:48:25:08:46:d0:2b:a3:
6f:ec:19:a2:d8:5f:86:a3:3b:38:ed:34:79:a6:59:
3d:94:7d:50:2a:d3:76:bf:aa:5c:d1:ea:80:e5:47:
86:90:fa:76:56:4c:01:96:38:36:76:89:5d:fb:44:
01:4e:a8:46:b1:e4:67:46:cc:b0:52:be:0e:98:33:
60:ac:f8:3c:58:90:f6:25:eb:74:50:80:87:f4:60:
c9:21:33:47:01:9e:76:b3:05:db:62:38:4a:72:3d:
cc:ad:c4:00:59:15:99:e7:48:21:6a:7d:78:43:7c:
74:3e:10:8e:5f:86:29:56:9f:85:e8:9c:60:3b:f9:
55:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:BD:BC:4E:76:04:09:05:BF:D0:2B:AB:B7:F2:2E:6C:BF:BC:6D:CE
X509v3 Authority Key Identifier:
keyid:81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/Hb28TnYECQW_0Curt_IubL-8bc4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/gZP_6ds3YmsT-F18xFeq1cHzDJ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.0.0/22
83.147.16.0/22
83.147.21.0/24
83.147.48.0/22
Signature Algorithm: sha256WithRSAEncryption
6c:82:00:7f:28:7f:ee:67:98:e6:0f:cf:9e:9e:9b:9d:b0:5f:
aa:42:04:62:73:e1:e0:3d:c9:51:89:8b:85:3d:ef:49:1c:a8:
a4:d2:d4:b7:21:2b:81:a4:1e:39:55:67:8f:9e:91:cf:ad:4e:
8a:df:37:a1:79:2a:0a:12:0d:6c:ed:2c:ba:c7:d4:c8:be:f8:
20:b3:7b:c3:ad:60:39:ec:54:c9:c5:9c:0f:98:bb:4e:d3:19:
15:24:c1:8b:41:b8:56:40:d0:5e:59:e8:b6:66:16:86:a5:12:
32:11:cf:ec:e1:79:02:a4:79:1a:fd:8f:eb:15:c7:d1:63:c6:
21:28:e9:bd:05:8c:8c:9a:1b:04:05:65:26:be:0e:8f:5f:20:
c0:40:40:27:25:08:92:02:a1:02:3a:f4:37:77:f5:92:97:bd:
ad:3e:81:7e:95:d8:c6:a5:bd:08:fa:f1:c6:3c:de:3b:1c:b4:
7e:f8:f0:69:df:7f:af:7f:a4:26:a5:7b:9d:ca:bd:f1:04:81:
b8:78:d8:1f:20:49:0a:61:d5:5b:74:4b:70:23:48:9d:7f:f8:
db:c2:c2:20:89:b9:36:de:d0:ab:7c:9e:8b:ee:a6:8b:7e:c5:
97:27:a3:73:2e:db:3a:56:e4:bc:8f:96:fb:bc:78:2b:c1:da:
84:9f:b1:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:50 2024 by rpki-client on console-fra.rpki-client.org