Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/Xt8mRHvQcov3MSOGP7I1CCaJ_wU.roa
File: Xt8mRHvQcov3MSOGP7I1CCaJ_wU.roa (raw, json)
Hash identifier: OZgDCzMVS83fbrQPwhhOIz/ktBzKhVNr+TpAP7hWcDU=
Subject key identifier: 5E:DF:26:44:7B:D0:72:8B:F7:31:23:86:3F:B2:35:08:26:89:FF:05
Certificate issuer: /CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Certificate serial: 018F25D368031372ECAA8076846EADDE739B
Authority key identifier: 81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/Xt8mRHvQcov3MSOGP7I1CCaJ_wU.roa
Signing time: Sun 28 Apr 2024 17:49:22 +0000
ROA not before: Sun 28 Apr 2024 17:49:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210164
IP address blocks: 83.147.28.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 28 May 2024 03:35:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:25:d3:68:03:13:72:ec:aa:80:76:84:6e:ad:de:73:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Validity
Not Before: Apr 28 17:49:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5edf26447bd0728bf73123863fb235082689ff05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:b8:86:04:c3:5c:d9:fa:09:14:6f:e4:49:ba:
93:e4:14:55:62:6a:17:17:ce:9d:fd:81:1b:6f:83:
85:55:92:9a:78:54:e9:74:de:94:ed:5b:28:24:49:
f4:89:3b:44:87:03:89:d3:a9:9f:94:02:f4:c8:ab:
cb:6d:ba:f5:12:24:59:fb:d6:10:05:b3:3d:ce:74:
00:00:ee:a1:33:3f:d2:fc:5b:d4:90:de:86:24:0d:
f5:a1:c9:51:b6:36:7e:8c:0a:93:d1:a3:ab:65:79:
e3:5a:96:75:87:00:45:56:a2:f3:48:d6:dd:e6:11:
c0:38:43:e1:7c:5c:44:91:74:8d:04:ff:85:39:5d:
7e:75:da:2a:f1:b3:ca:b6:30:52:d0:75:19:19:0a:
ae:db:b2:c1:ee:7c:98:91:d7:dc:ba:8f:a4:4a:13:
a0:7c:98:76:3b:8c:0e:7d:e2:84:6f:4c:3d:7c:b4:
8e:d1:de:78:28:bd:3c:49:60:b8:55:ac:44:eb:31:
ed:f2:42:b4:e1:0d:70:26:dc:bd:5e:08:a9:13:18:
64:ce:ff:57:c8:c4:a2:7f:13:f1:6c:90:c5:61:cb:
1e:f6:8a:e4:a7:b1:ff:a2:cb:c2:81:f1:56:4a:fa:
66:24:30:c0:1b:ff:43:d9:18:cd:7d:8d:3e:75:a0:
99:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:DF:26:44:7B:D0:72:8B:F7:31:23:86:3F:B2:35:08:26:89:FF:05
X509v3 Authority Key Identifier:
keyid:81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/Xt8mRHvQcov3MSOGP7I1CCaJ_wU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/gZP_6ds3YmsT-F18xFeq1cHzDJ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.28.0/24
Signature Algorithm: sha256WithRSAEncryption
70:ee:b9:d3:1f:71:ed:e1:af:1c:76:59:49:14:26:00:ea:cd:
e2:11:8a:cd:8a:9b:55:86:c7:10:6d:ea:4c:db:1e:d0:ec:c9:
fd:6d:77:b8:49:69:43:80:2d:63:1a:f9:d7:10:a1:a9:08:80:
d4:bf:58:15:21:36:e6:c2:9b:13:47:a5:72:00:0c:c9:ef:59:
c2:86:68:4f:3e:74:77:7a:31:82:0c:ed:6f:6b:40:b5:a2:d1:
32:6a:45:1c:c8:8f:40:22:31:07:3d:e3:32:41:3f:7b:ce:15:
cb:34:4a:41:3e:47:09:cf:21:5a:8f:0f:44:99:2c:46:5f:95:
aa:cf:9a:82:15:51:7f:53:92:50:df:c9:f8:e0:5b:33:f0:26:
4c:79:bd:fc:34:16:ae:96:9f:ff:2e:15:0f:0d:46:17:6f:c4:
e9:54:7a:31:c9:d6:c5:ea:59:a6:f7:43:f8:75:fa:df:d2:f9:
fa:37:9f:d6:ff:d5:93:9a:76:36:8d:ee:91:05:f3:e4:d7:2f:
07:44:86:01:68:e0:a3:0d:b4:a3:3e:33:14:f8:e2:60:1f:92:
86:64:66:15:cb:a6:f1:bf:b5:e6:7a:ba:ef:13:b3:a6:db:a4:
0e:74:5f:e9:e0:b0:9c:f4:14:81:2d:7b:da:8d:fb:9c:c6:bd:
fd:90:cd:0f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY8l02gDE3LsqoB2hG6t3nObMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgxOTNmZmU5ZGIzNzYyNmIxM2Y4NWQ3Y2M0NTdhYWQ1YzFm
MzBjOWYwHhcNMjQwNDI4MTc0OTIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1ZWRmMjY0NDdiZDA3MjhiZjczMTIzODYzZmIyMzUwODI2ODlmZjA1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0riGBMNc2foJFG/kSbqT5BRVYmoX
F86d/YEbb4OFVZKaeFTpdN6U7VsoJEn0iTtEhwOJ06mflAL0yKvLbbr1EiRZ+9YQ
BbM9znQAAO6hMz/S/FvUkN6GJA31oclRtjZ+jAqT0aOrZXnjWpZ1hwBFVqLzSNbd
5hHAOEPhfFxEkXSNBP+FOV1+ddoq8bPKtjBS0HUZGQqu27LB7nyYkdfcuo+kShOg
fJh2O4wOfeKEb0w9fLSO0d54KL08SWC4VaxE6zHt8kK04Q1wJty9XgipExhkzv9X
yMSifxPxbJDFYcse9orkp7H/osvCgfFWSvpmJDDAG/9D2RjNfY0+daCZUQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFF7fJkR70HKL9zEjhj+yNQgmif8FMB8GA1UdIwQY
MBaAFIGT/+nbN2JrE/hdfMRXqtXB8wyfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ1pQXzZkczNZbXNULUYxOHhGZXExY0h6REo4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNy83NmJjMWUtYjZmNC00MDhhLWJiODkt
MDhkMTI3MGMyZTcxLzEvWHQ4bVJIdlFjb3YzTVNPR1A3STFDQ2FKX3dVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNy83NmJjMWUtYjZmNC00MDhhLWJiODktMDhkMTI3MGMyZTcx
LzEvZ1pQXzZkczNZbXNULUYxOHhGZXExY0h6REo4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAU5McMA0G
CSqGSIb3DQEBCwUAA4IBAQBw7rnTH3Ht4a8cdllJFCYA6s3iEYrNiptVhscQbepM
2x7Q7Mn9bXe4SWlDgC1jGvnXEKGpCIDUv1gVITbmwpsTR6VyAAzJ71nChmhPPnR3
ejGCDO1va0C1otEyakUcyI9AIjEHPeMyQT97zhXLNEpBPkcJzyFajw9EmSxGX5Wq
z5qCFVF/U5JQ38n44Fsz8CZMeb38NBaulp//LhUPDUYXb8TpVHoxydbF6lmm90P4
dfrf0vn6N5/W/9WTmnY2je6RBfPk1y8HRIYBaOCjDbSjPjMU+OJgH5KGZGYVy6bx
v7XmerrvE7Om26QOdF/p4LCc9BSBLXvajfucxr39kM0P
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:50 2024 by rpki-client on console-fra.rpki-client.org