Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/_nPOqFet7gu7H2pjMiybrH9k2RQ.roa
File: _nPOqFet7gu7H2pjMiybrH9k2RQ.roa (raw, json)
Hash identifier: pyw4i6kt5qdhgwc4PGSLspbKvDzDTGRwTR1iikmGhhY=
Subject key identifier: FE:73:CE:A8:57:AD:EE:0B:BB:1F:6A:63:32:2C:9B:AC:7F:64:D9:14
Certificate issuer: /CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Certificate serial: 01907002530A5745BCE4BC3A9A1E917EE9A2
Authority key identifier: 81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/_nPOqFet7gu7H2pjMiybrH9k2RQ.roa
Signing time: Mon 01 Jul 2024 20:35:18 +0000
ROA not before: Mon 01 Jul 2024 20:35:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 25996
IP address blocks: 83.147.48.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jul 2024 07:18:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:70:02:53:0a:57:45:bc:e4:bc:3a:9a:1e:91:7e:e9:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Validity
Not Before: Jul 1 20:35:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fe73cea857adee0bbb1f6a63322c9bac7f64d914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:06:8b:66:e9:20:9e:e9:aa:ef:af:2d:35:1d:
32:e0:21:5b:9e:54:e1:be:bd:97:3a:8c:12:97:b1:
26:8f:f6:74:74:c7:6d:f0:01:4d:79:81:3e:b1:89:
6e:2f:91:c9:f3:83:8e:ee:84:c1:52:57:b7:16:8a:
51:48:4a:3c:64:b1:61:98:49:f7:5e:48:62:d1:bc:
0b:e0:f2:e1:51:c7:d6:2d:04:d2:70:a5:71:39:9f:
bb:13:f2:64:67:eb:75:43:05:19:bc:1f:0d:9a:94:
0f:aa:b4:7c:a8:ff:c9:a6:dd:70:43:98:83:0f:3d:
cd:99:4c:29:4c:fd:d7:c2:bb:10:c7:8c:2e:41:cd:
03:9e:49:22:17:db:c6:73:d0:0d:c8:ba:cd:6c:69:
48:75:16:89:d2:45:f5:6c:1e:6f:12:eb:6a:fa:95:
60:95:03:8e:9a:cd:ff:7d:63:01:da:c8:93:d5:b4:
5d:57:69:e5:c3:d3:93:bc:a4:53:50:4e:20:72:4f:
f9:59:90:b0:91:d1:f1:fd:64:94:5c:fe:6a:7b:3b:
c7:7b:87:51:3a:47:0c:06:42:78:2f:1b:62:f7:a5:
49:95:1b:50:7b:5c:b6:ef:81:05:3f:7f:0e:ee:e0:
51:05:ea:3e:42:e5:b7:74:bf:f5:7a:ea:a6:dc:af:
b5:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:73:CE:A8:57:AD:EE:0B:BB:1F:6A:63:32:2C:9B:AC:7F:64:D9:14
X509v3 Authority Key Identifier:
keyid:81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/_nPOqFet7gu7H2pjMiybrH9k2RQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/gZP_6ds3YmsT-F18xFeq1cHzDJ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.48.0/22
Signature Algorithm: sha256WithRSAEncryption
8c:a1:7c:85:e1:76:10:df:c3:95:99:0d:9a:a2:64:08:f2:35:
0c:6e:6d:56:df:4c:e2:84:11:19:1a:70:35:e2:fc:2b:33:8d:
af:58:9a:8d:23:9d:f5:51:ca:b3:ac:21:3c:31:30:6f:72:b2:
42:32:4f:c6:a8:b9:60:15:3a:97:c7:2a:38:f7:bf:38:fc:69:
ba:25:14:be:9e:9f:c2:2c:f2:c1:97:2a:c0:0b:e4:58:48:8c:
c7:df:73:64:96:a0:6e:30:14:ed:e0:ef:8d:4f:88:eb:d4:79:
e8:ee:25:a5:6e:18:f0:56:b5:81:c5:64:db:13:42:61:d1:55:
a7:82:58:7e:80:db:1d:12:b0:b0:c9:e9:e7:5f:da:b6:2d:f4:
b0:d5:09:1f:72:46:f9:2d:fb:aa:d4:4f:ef:3b:cf:24:04:0c:
c0:b7:30:35:bc:3c:e5:4d:27:64:7a:00:b3:6b:c1:91:1e:b8:
eb:01:8f:2a:63:9e:ea:9b:4f:d1:21:6c:55:a9:3e:0e:19:cb:
03:0d:d8:b0:73:17:d9:bc:9e:3e:a3:0c:69:53:3b:45:46:8c:
8b:06:84:36:2a:7e:e7:53:be:ca:f3:a5:ca:92:14:1b:91:06:
ab:db:b2:90:a3:1b:ba:53:bb:2f:91:06:c7:f2:69:32:1a:cd:
ea:d5:0a:4e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZBwAlMKV0W85Lw6mh6RfumiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgxOTNmZmU5ZGIzNzYyNmIxM2Y4NWQ3Y2M0NTdhYWQ1YzFm
MzBjOWYwHhcNMjQwNzAxMjAzNTE4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmZTczY2VhODU3YWRlZTBiYmIxZjZhNjMzMjJjOWJhYzdmNjRkOTE0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6waLZukgnumq768tNR0y4CFbnlTh
vr2XOowSl7Emj/Z0dMdt8AFNeYE+sYluL5HJ84OO7oTBUle3FopRSEo8ZLFhmEn3
Xkhi0bwL4PLhUcfWLQTScKVxOZ+7E/JkZ+t1QwUZvB8NmpQPqrR8qP/Jpt1wQ5iD
Dz3NmUwpTP3XwrsQx4wuQc0DnkkiF9vGc9ANyLrNbGlIdRaJ0kX1bB5vEutq+pVg
lQOOms3/fWMB2siT1bRdV2nlw9OTvKRTUE4gck/5WZCwkdHx/WSUXP5qezvHe4dR
OkcMBkJ4Lxti96VJlRtQe1y274EFP38O7uBRBeo+QuW3dL/1euqm3K+1wwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFP5zzqhXre4Lux9qYzIsm6x/ZNkUMB8GA1UdIwQY
MBaAFIGT/+nbN2JrE/hdfMRXqtXB8wyfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ1pQXzZkczNZbXNULUYxOHhGZXExY0h6REo4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNy83NmJjMWUtYjZmNC00MDhhLWJiODkt
MDhkMTI3MGMyZTcxLzEvX25QT3FGZXQ3Z3U3SDJwak1peWJySDlrMlJRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNy83NmJjMWUtYjZmNC00MDhhLWJiODktMDhkMTI3MGMyZTcx
LzEvZ1pQXzZkczNZbXNULUYxOHhGZXExY0h6REo4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCU5MwMA0G
CSqGSIb3DQEBCwUAA4IBAQCMoXyF4XYQ38OVmQ2aomQI8jUMbm1W30zihBEZGnA1
4vwrM42vWJqNI531UcqzrCE8MTBvcrJCMk/GqLlgFTqXxyo49784/Gm6JRS+np/C
LPLBlyrAC+RYSIzH33NklqBuMBTt4O+NT4jr1Hno7iWlbhjwVrWBxWTbE0Jh0VWn
glh+gNsdErCwyennX9q2LfSw1Qkfckb5Lfuq1E/vO88kBAzAtzA1vDzlTSdkegCz
a8GRHrjrAY8qY57qm0/RIWxVqT4OGcsDDdiwcxfZvJ4+owxpUztFRoyLBoQ2Kn7n
U77K86XKkhQbkQar27KQoxu6U7svkQbH8mkyGs3q1QpO
-----END CERTIFICATE-----
Generated at Tue Jul 2 09:19:22 2024 by rpki-client on console-ams.rpki-client.org