Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/Q7lUHl53ZFQxJ__iVhdhR9NzcpE.roa
File: Q7lUHl53ZFQxJ__iVhdhR9NzcpE.roa (raw, json)
Hash identifier: bm0TvBIiU04hIeb6NPCWWoMGLRge42gYVuClOj5JhYk=
Subject key identifier: 43:B9:54:1E:5E:77:64:54:31:27:FF:E2:56:17:61:47:D3:73:72:91
Certificate issuer: /CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Certificate serial: 0191788A1CBD07BFD69EEE648824AE98CB54
Authority key identifier: 81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/Q7lUHl53ZFQxJ__iVhdhR9NzcpE.roa
Signing time: Thu 22 Aug 2024 05:23:22 +0000
ROA not before: Thu 22 Aug 2024 05:23:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 174
IP address blocks: 83.147.20.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 26 Aug 2024 04:22:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:78:8a:1c:bd:07:bf:d6:9e:ee:64:88:24:ae:98:cb:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Validity
Not Before: Aug 22 05:23:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=43b9541e5e7764543127ffe256176147d3737291
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:80:01:29:9e:47:87:1c:d8:56:14:2e:4d:9b:
ff:6c:7c:17:f4:ad:21:36:c8:f9:34:24:71:1d:0b:
73:6f:fa:cd:c7:75:e4:63:d3:49:51:03:10:ae:ec:
5b:96:a4:be:67:e6:89:d1:7b:60:8f:7f:d7:56:40:
f8:fd:f4:b8:5b:0c:22:52:85:9c:d6:1b:36:43:ed:
00:bc:f8:0d:57:2a:c9:7a:c6:63:99:68:47:48:ea:
90:cc:79:7f:e6:c1:bc:23:5b:7c:2f:58:e6:c1:e0:
bd:f3:2b:f7:18:4d:10:67:79:e0:8d:0a:b9:01:88:
34:75:e1:12:5d:a3:d0:5b:d1:eb:41:94:77:7c:3b:
d0:96:c4:2b:1d:98:27:7e:29:2c:df:3e:7b:d3:0d:
66:b2:a4:86:33:6b:19:af:7c:6a:32:e5:d4:17:e4:
b7:fe:21:29:e1:20:53:cc:ce:c5:2b:92:f3:71:14:
84:32:fc:23:40:f6:60:cf:d1:bb:c8:7e:dc:0e:1c:
69:dd:bc:74:c8:0f:a1:1d:cb:35:cc:2e:72:4e:d9:
27:a3:67:b8:f2:7d:93:40:d1:3d:45:23:41:e1:11:
62:fd:39:93:af:09:4a:ba:91:c4:05:22:73:ea:ea:
f6:42:42:7c:76:a0:f1:0d:f4:bd:d9:2b:74:72:1b:
d0:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:B9:54:1E:5E:77:64:54:31:27:FF:E2:56:17:61:47:D3:73:72:91
X509v3 Authority Key Identifier:
keyid:81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/Q7lUHl53ZFQxJ__iVhdhR9NzcpE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/gZP_6ds3YmsT-F18xFeq1cHzDJ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.20.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:94:30:b6:fd:a2:fa:55:63:54:97:e0:6e:3f:92:68:67:60:
11:10:46:a7:2c:25:fc:7c:8a:42:bf:51:f6:93:02:35:76:e7:
de:04:3f:bf:9d:8f:8e:d8:de:67:14:65:e0:4e:e8:24:8f:0d:
58:36:14:d4:0b:81:f9:50:cb:2a:91:16:ed:aa:87:ff:f2:96:
3d:f4:48:b1:90:79:38:40:b4:5b:45:8a:ef:73:d4:4b:bb:1e:
95:85:91:3a:b9:2c:bb:e4:a5:f6:cb:76:67:6d:55:e8:76:ba:
db:48:f9:27:90:88:a0:22:56:1c:70:00:fb:c7:90:c5:80:99:
d5:4a:76:f8:d4:fe:d8:7e:9e:98:34:91:4e:7d:f8:d9:60:08:
71:ef:81:f4:4c:5d:68:79:b9:47:10:75:62:7a:9c:79:cd:8d:
8d:48:8c:79:46:42:67:fa:40:95:0f:c2:c8:13:c6:d9:d3:8f:
2f:0a:a7:b9:e9:74:68:ea:f3:63:56:e0:9c:93:38:35:87:e9:
8b:ce:81:13:9d:be:03:9b:3c:19:03:97:1a:8b:52:e8:ab:d1:
80:68:76:fc:66:11:42:4a:49:4a:a0:87:c7:28:bb:5c:d2:6d:
72:04:ba:01:5d:7e:ec:48:87:4c:89:8a:d5:33:8f:3c:8f:89:
56:dc:39:c3
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZF4ihy9B7/Wnu5kiCSumMtUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgxOTNmZmU5ZGIzNzYyNmIxM2Y4NWQ3Y2M0NTdhYWQ1YzFm
MzBjOWYwHhcNMjQwODIyMDUyMzIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0M2I5NTQxZTVlNzc2NDU0MzEyN2ZmZTI1NjE3NjE0N2QzNzM3MjkxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAooABKZ5HhxzYVhQuTZv/bHwX9K0h
Nsj5NCRxHQtzb/rNx3XkY9NJUQMQruxblqS+Z+aJ0Xtgj3/XVkD4/fS4WwwiUoWc
1hs2Q+0AvPgNVyrJesZjmWhHSOqQzHl/5sG8I1t8L1jmweC98yv3GE0QZ3ngjQq5
AYg0deESXaPQW9HrQZR3fDvQlsQrHZgnfiks3z570w1msqSGM2sZr3xqMuXUF+S3
/iEp4SBTzM7FK5LzcRSEMvwjQPZgz9G7yH7cDhxp3bx0yA+hHcs1zC5yTtkno2e4
8n2TQNE9RSNB4RFi/TmTrwlKupHEBSJz6ur2QkJ8dqDxDfS92St0chvQEQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEO5VB5ed2RUMSf/4lYXYUfTc3KRMB8GA1UdIwQY
MBaAFIGT/+nbN2JrE/hdfMRXqtXB8wyfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ1pQXzZkczNZbXNULUYxOHhGZXExY0h6REo4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNy83NmJjMWUtYjZmNC00MDhhLWJiODkt
MDhkMTI3MGMyZTcxLzEvUTdsVUhsNTNaRlF4Sl9faVZoZGhSOU56Y3BFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNy83NmJjMWUtYjZmNC00MDhhLWJiODktMDhkMTI3MGMyZTcx
LzEvZ1pQXzZkczNZbXNULUYxOHhGZXExY0h6REo4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAU5MUMA0G
CSqGSIb3DQEBCwUAA4IBAQCNlDC2/aL6VWNUl+BuP5JoZ2AREEanLCX8fIpCv1H2
kwI1dufeBD+/nY+O2N5nFGXgTugkjw1YNhTUC4H5UMsqkRbtqof/8pY99EixkHk4
QLRbRYrvc9RLux6VhZE6uSy75KX2y3ZnbVXodrrbSPknkIigIlYccAD7x5DFgJnV
Snb41P7Yfp6YNJFOffjZYAhx74H0TF1oeblHEHViepx5zY2NSIx5RkJn+kCVD8LI
E8bZ048vCqe56XRo6vNjVuCckzg1h+mLzoETnb4DmzwZA5cai1Loq9GAaHb8ZhFC
SklKoIfHKLtc0m1yBLoBXX7sSIdMiYrVM488j4lW3DnD
-----END CERTIFICATE-----
Generated at Mon Aug 26 06:14:04 2024 by rpki-client on console-ams.rpki-client.org