Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/Thn8ylAioWIPnEX0nioys0BMj6c.roa
File: Thn8ylAioWIPnEX0nioys0BMj6c.roa (raw, json)
Hash identifier: E39nWd6q6WpCBg8lX86Imf2gesEAzy+hHAbeSYvwr5g=
Subject key identifier: 4E:19:FC:CA:50:22:A1:62:0F:9C:45:F4:9E:2A:32:B3:40:4C:8F:A7
Certificate issuer: /CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Certificate serial: 018DEEDF9C2C180D236CE2DC0B434DF0BA1F
Authority key identifier: 81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/Thn8ylAioWIPnEX0nioys0BMj6c.roa
Signing time: Wed 28 Feb 2024 08:40:48 +0000
ROA not before: Wed 28 Feb 2024 08:40:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 83.147.0.0/22 maxlen: 24
83.147.21.0/24 maxlen: 24
83.147.48.0/22 maxlen: 24
Validation: Failed, certificate revoked on Thu 29 Feb 2024 05:23:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:ee:df:9c:2c:18:0d:23:6c:e2:dc:0b:43:4d:f0:ba:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Validity
Not Before: Feb 28 08:40:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4e19fcca5022a1620f9c45f49e2a32b3404c8fa7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:7e:86:57:be:52:01:3d:c6:0f:cd:b4:33:70:
e4:58:6a:cd:fe:d7:21:c7:05:d3:e8:70:30:1b:10:
c3:5d:93:7c:76:f7:92:4a:b6:d0:77:f4:19:db:9b:
33:5c:76:ec:5d:bb:9c:4b:23:f1:88:fe:cc:27:d8:
48:b2:54:1f:95:e2:ad:f4:2d:67:b9:58:bf:fa:a6:
a9:2a:c6:e8:60:b5:6d:2f:6f:f3:76:bc:36:8c:e0:
51:65:19:66:e9:cf:ad:c7:7d:dd:d1:6a:c2:6c:23:
91:4e:91:81:c2:f3:cb:02:42:84:ae:78:f2:bd:68:
0a:5d:06:c1:83:3d:b8:81:4a:76:51:27:6e:62:98:
44:ac:9d:14:d2:09:10:81:f2:80:49:c9:0a:50:2b:
d4:de:20:6f:cd:28:e7:b1:04:c9:1c:b2:e3:8c:62:
70:5c:ac:68:fb:24:87:b3:eb:5a:b2:08:93:0e:98:
57:65:c9:5c:56:c1:a3:af:49:9c:4c:13:14:3c:75:
9b:f4:13:89:7e:52:2d:77:a1:9a:c6:c6:e2:1b:d1:
7f:fb:2f:a0:94:bd:03:f7:af:ea:ac:db:f3:e9:98:
bb:c2:02:c2:39:de:ff:b0:18:e0:b5:01:50:be:cf:
cc:5b:63:e8:91:61:06:19:8f:45:d9:b7:bd:d5:91:
5c:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:19:FC:CA:50:22:A1:62:0F:9C:45:F4:9E:2A:32:B3:40:4C:8F:A7
X509v3 Authority Key Identifier:
keyid:81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/Thn8ylAioWIPnEX0nioys0BMj6c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/gZP_6ds3YmsT-F18xFeq1cHzDJ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.0.0/22
83.147.21.0/24
83.147.48.0/22
Signature Algorithm: sha256WithRSAEncryption
99:2b:aa:37:a1:50:94:c8:70:6b:b9:1f:07:ac:6b:67:15:4e:
8b:f9:4b:06:7a:f3:8e:de:0a:08:75:04:13:9d:c2:53:42:1a:
30:0b:e7:6f:74:01:27:cf:5c:07:af:96:ef:cc:67:11:f7:76:
72:e7:36:0a:bf:dc:d9:10:6a:53:82:64:52:b8:01:16:75:da:
61:31:17:a2:07:ad:e3:36:f2:fe:96:ab:d6:31:ec:b4:f2:90:
1d:1d:ae:48:f9:43:37:7b:45:d1:f1:6c:99:c8:b5:2f:15:b8:
ad:cc:40:5f:99:e4:ea:8d:f9:ba:9c:12:f0:d2:99:df:06:52:
d2:5c:6d:02:34:80:fe:cf:04:a3:fa:15:35:bd:1d:2c:3d:18:
b5:cc:57:75:4a:a2:b2:5b:a3:29:d5:84:e5:c8:91:30:a4:f5:
a0:83:df:f5:f7:de:a1:8a:a0:70:42:36:82:70:d7:78:ed:df:
e8:36:8b:b5:6a:4e:22:28:d1:8c:b9:3d:d6:f8:63:57:40:3d:
08:75:55:e8:ce:0c:45:cc:c4:35:c4:30:0a:2d:69:3d:bb:eb:
1a:a1:4d:b7:34:8a:1c:eb:1d:0a:e1:eb:f2:cb:28:35:df:31:
a2:79:ec:0d:8d:0a:e6:ce:50:22:71:f0:ea:c3:df:5f:9d:c9:
14:fe:fc:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:50 2024 by rpki-client on console-fra.rpki-client.org