Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/Rf3UZuyQCZu0RpfxmVS0hNPMCZU.roa
File: Rf3UZuyQCZu0RpfxmVS0hNPMCZU.roa (raw, json)
Hash identifier: wz6FYmMJTbfgcEvOQFIYkS5+yFTAiUklJTy2nwE7yLw=
Subject key identifier: 45:FD:D4:66:EC:90:09:9B:B4:46:97:F1:99:54:B4:84:D3:CC:09:95
Certificate issuer: /CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Certificate serial: 018CC94AB7CD66A9A7719790E43FB93DE90F
Authority key identifier: 81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/Rf3UZuyQCZu0RpfxmVS0hNPMCZU.roa
Signing time: Tue 02 Jan 2024 08:29:26 +0000
ROA not before: Tue 02 Jan 2024 08:29:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205570
IP address blocks: 83.147.20.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:39:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4a:b7:cd:66:a9:a7:71:97:90:e4:3f:b9:3d:e9:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Validity
Not Before: Jan 2 08:29:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=45fdd466ec90099bb44697f19954b484d3cc0995
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:25:54:e5:9b:c2:52:94:e1:56:a6:ca:06:02:
d0:ea:ae:2f:98:d9:47:ed:3d:55:c0:31:9f:00:e8:
59:78:a2:86:6f:f7:45:42:aa:89:df:a1:71:13:93:
34:4e:91:86:c6:46:f9:41:f5:e5:f4:c7:f1:04:9a:
f7:37:c6:b1:e9:43:00:5e:43:52:cb:3a:9d:e1:c2:
af:e2:e1:af:24:3a:c9:34:14:15:33:3e:a1:b2:78:
dc:c7:0c:ff:37:59:17:61:70:35:02:77:b4:4a:07:
6f:3c:d3:68:ad:a5:8e:20:01:df:0f:47:8e:cd:75:
02:cc:4b:d2:52:ce:97:79:af:d8:6a:ac:55:4f:b2:
bd:bc:ba:58:d5:32:65:ac:ec:d5:05:d1:32:88:c6:
d7:37:31:36:3f:0f:ae:e2:88:94:cf:bb:43:ab:d3:
c2:1c:cf:b7:76:e1:33:17:64:7a:98:08:9c:04:e0:
7b:d4:48:db:00:b2:72:93:2f:4b:30:45:5b:f6:e3:
31:11:d2:18:7d:68:92:13:81:e5:96:66:31:88:2f:
3f:c4:fa:ee:32:d8:f5:08:8a:e9:1e:4e:71:3e:30:
e4:33:87:d7:42:e9:93:f2:3e:c7:d0:21:e7:03:58:
0d:7a:0b:e1:a4:28:76:36:48:c4:d8:b8:8a:75:40:
dc:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:FD:D4:66:EC:90:09:9B:B4:46:97:F1:99:54:B4:84:D3:CC:09:95
X509v3 Authority Key Identifier:
keyid:81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/Rf3UZuyQCZu0RpfxmVS0hNPMCZU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/gZP_6ds3YmsT-F18xFeq1cHzDJ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.20.0/24
Signature Algorithm: sha256WithRSAEncryption
33:7f:f6:57:63:e1:97:d0:80:b0:2a:a7:df:a9:de:0a:23:b9:
29:15:3f:18:c2:a8:a1:d8:9d:b1:78:45:2e:1d:54:f6:20:d2:
35:13:ab:d7:e1:10:84:91:1d:ab:f5:11:0e:31:88:6c:eb:ad:
3b:b2:d8:ad:62:73:b5:dd:9a:1b:44:21:d6:c4:a0:60:9c:a9:
75:c2:1e:ef:78:65:8a:10:89:b2:7a:27:7f:ad:24:26:96:80:
bc:18:14:0a:88:18:46:e3:fb:50:5d:cc:51:b5:7a:5a:bb:6a:
9d:63:b1:66:64:0d:a5:9f:3f:50:6e:c7:df:65:ad:29:0c:bd:
42:c3:41:56:de:bc:a9:e1:fe:5c:2a:2a:0b:88:2a:1c:fd:29:
44:03:bd:16:2d:b4:d9:d6:a4:1b:6d:03:31:58:fc:21:9b:a3:
20:c0:b8:a4:49:4c:73:0d:64:0b:94:fe:bf:6b:78:76:a2:b3:
24:1a:7a:63:b0:68:b0:e7:88:3b:14:b7:0c:6a:8c:fc:a6:48:
fe:4f:7a:34:15:cc:0f:94:38:ab:69:05:ce:a0:e4:bd:31:67:
ca:7c:d8:2f:ac:b6:cc:64:7f:ad:68:d2:ee:24:ce:2e:36:56:
a1:6f:af:0f:a2:d3:8f:cc:6c:de:1d:61:19:d7:25:3d:45:d6:
ac:4d:23:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:01 2024 by rpki-client on console-ams.rpki-client.org