Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/MzgIGv6wl_2bybU8d5BpzQWO2s4.roa
File: MzgIGv6wl_2bybU8d5BpzQWO2s4.roa (raw, json)
Hash identifier: kN0MEZXVzr/Um9u/Wj1sV7TKK5PzUE1HiK1BkhwDrHc=
Subject key identifier: 33:38:08:1A:FE:B0:97:FD:9B:C9:B5:3C:77:90:69:CD:05:8E:DA:CE
Certificate issuer: /CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Certificate serial: 018CC94AB90F7A771CB21BB293C44399B0DC
Authority key identifier: 81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/MzgIGv6wl_2bybU8d5BpzQWO2s4.roa
Signing time: Tue 02 Jan 2024 08:29:26 +0000
ROA not before: Tue 02 Jan 2024 08:29:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211936
IP address blocks: 83.147.36.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 29 Jan 2024 05:45:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4a:b9:0f:7a:77:1c:b2:1b:b2:93:c4:43:99:b0:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Validity
Not Before: Jan 2 08:29:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3338081afeb097fd9bc9b53c779069cd058edace
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:93:76:c1:ad:2d:f0:44:aa:9b:31:07:13:b0:
86:a0:73:d1:a2:c8:8f:84:d3:8d:47:d4:59:5c:cd:
61:40:58:46:7a:20:41:ae:c9:6a:67:ae:7b:35:66:
95:f1:91:c8:89:41:33:8b:8a:86:ae:c9:78:41:c8:
04:63:ff:a7:2a:b1:89:02:fb:b9:0f:33:4b:27:a1:
43:46:c7:66:6b:80:94:df:ab:13:86:6f:93:b1:10:
a2:d1:d6:24:73:aa:cd:35:33:b2:6f:6d:88:2e:66:
48:8f:9c:b9:2f:0a:78:00:9a:c2:fb:87:e8:f9:eb:
ca:44:cc:2a:35:9d:64:07:24:21:54:0f:99:d5:a0:
5c:4f:79:df:a3:0e:bc:f8:1a:80:60:0a:c5:30:ac:
8d:10:60:32:57:53:13:27:98:fc:92:39:1d:95:45:
9d:4b:9c:18:37:06:e6:b5:04:d1:54:ef:9f:fe:9b:
11:5f:a8:55:8e:4a:24:f4:b5:32:d6:06:a5:36:fd:
b6:2b:0c:de:fd:3d:f7:66:78:de:3b:b0:54:a1:0f:
d7:04:1e:5c:0a:ff:0c:ae:72:e5:c5:5b:46:16:27:
8e:6b:26:f5:93:9c:8f:48:e0:18:6d:53:93:76:5d:
6c:47:77:c5:41:b4:c9:d1:14:1a:03:2e:f3:3b:b0:
6a:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:38:08:1A:FE:B0:97:FD:9B:C9:B5:3C:77:90:69:CD:05:8E:DA:CE
X509v3 Authority Key Identifier:
keyid:81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/MzgIGv6wl_2bybU8d5BpzQWO2s4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/gZP_6ds3YmsT-F18xFeq1cHzDJ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.36.0/22
Signature Algorithm: sha256WithRSAEncryption
9f:c2:1d:e8:57:47:57:7c:99:1e:36:7e:7e:c5:59:e2:9e:a1:
98:e7:4a:d8:45:06:95:63:90:ab:77:c6:3b:55:94:3c:a6:bf:
b2:3a:1a:cd:c3:eb:50:1f:68:28:38:f1:05:6b:6a:d0:19:e4:
0b:18:59:8b:9c:bb:d2:54:3c:3e:00:c3:72:c5:2f:21:28:cb:
dd:4b:d6:66:8d:a6:9b:1a:78:4e:81:6e:b0:13:46:8d:c9:d6:
87:e3:5c:c6:b5:69:93:76:7b:b4:88:bb:a4:93:e3:c4:6c:1b:
f9:87:eb:6f:2a:65:01:4d:cd:ee:70:c3:98:3b:28:c4:5b:be:
5d:d3:e0:16:27:2e:18:a8:42:ba:34:56:7e:5e:bb:e1:a4:6a:
c3:08:be:f0:50:55:1e:90:74:ca:fe:f0:ab:84:c0:83:59:57:
32:2c:be:e3:23:88:59:45:ec:12:30:ee:40:c9:ee:90:8a:f3:
84:6f:56:34:49:c2:c4:f9:d0:e4:9e:89:5f:f8:a6:74:6c:c1:
64:00:b3:22:c7:cf:a2:61:e2:a7:3a:88:12:fe:c0:8e:3b:09:
a6:21:68:d3:27:1c:61:d2:07:00:50:80:be:7a:f0:26:f9:8b:
76:00:3d:03:82:48:2e:35:ad:86:ee:5b:fd:56:c2:62:94:8d:
54:03:0b:a1
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzJSrkPenccshuyk8RDmbDcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgxOTNmZmU5ZGIzNzYyNmIxM2Y4NWQ3Y2M0NTdhYWQ1YzFm
MzBjOWYwHhcNMjQwMTAyMDgyOTI2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzMzM4MDgxYWZlYjA5N2ZkOWJjOWI1M2M3NzkwNjljZDA1OGVkYWNlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApJN2wa0t8ESqmzEHE7CGoHPRosiP
hNONR9RZXM1hQFhGeiBBrslqZ657NWaV8ZHIiUEzi4qGrsl4QcgEY/+nKrGJAvu5
DzNLJ6FDRsdma4CU36sThm+TsRCi0dYkc6rNNTOyb22ILmZIj5y5Lwp4AJrC+4fo
+evKRMwqNZ1kByQhVA+Z1aBcT3nfow68+BqAYArFMKyNEGAyV1MTJ5j8kjkdlUWd
S5wYNwbmtQTRVO+f/psRX6hVjkok9LUy1galNv22Kwze/T33ZnjeO7BUoQ/XBB5c
Cv8MrnLlxVtGFieOayb1k5yPSOAYbVOTdl1sR3fFQbTJ0RQaAy7zO7BqTQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDM4CBr+sJf9m8m1PHeQac0FjtrOMB8GA1UdIwQY
MBaAFIGT/+nbN2JrE/hdfMRXqtXB8wyfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ1pQXzZkczNZbXNULUYxOHhGZXExY0h6REo4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNy83NmJjMWUtYjZmNC00MDhhLWJiODkt
MDhkMTI3MGMyZTcxLzEvTXpnSUd2NndsXzJieWJVOGQ1QnB6UVdPMnM0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNy83NmJjMWUtYjZmNC00MDhhLWJiODktMDhkMTI3MGMyZTcx
LzEvZ1pQXzZkczNZbXNULUYxOHhGZXExY0h6REo4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCU5MkMA0G
CSqGSIb3DQEBCwUAA4IBAQCfwh3oV0dXfJkeNn5+xVninqGY50rYRQaVY5Crd8Y7
VZQ8pr+yOhrNw+tQH2goOPEFa2rQGeQLGFmLnLvSVDw+AMNyxS8hKMvdS9Zmjaab
GnhOgW6wE0aNydaH41zGtWmTdnu0iLukk+PEbBv5h+tvKmUBTc3ucMOYOyjEW75d
0+AWJy4YqEK6NFZ+XrvhpGrDCL7wUFUekHTK/vCrhMCDWVcyLL7jI4hZRewSMO5A
ye6QivOEb1Y0ScLE+dDknolf+KZ0bMFkALMix8+iYeKnOogS/sCOOwmmIWjTJxxh
0gcAUIC+evAm+Yt2AD0DgkguNa2G7lv9VsJilI1UAwuh
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:01 2024 by rpki-client on console-ams.rpki-client.org