Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/aKzu0n0OpMqlA9kB49gcsNFFVks.roa
File: aKzu0n0OpMqlA9kB49gcsNFFVks.roa (raw, json)
Hash identifier: 8CMzdg3bcEC4hEpmaGtkFsCDJN0yFyRkqSCOTdWmpL8=
Subject key identifier: 68:AC:EE:D2:7D:0E:A4:CA:A5:03:D9:01:E3:D8:1C:B0:D1:45:56:4B
Certificate issuer: /CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Certificate serial: 018BE7F6EE9CA607C594F9D161C65EC4DC56
Authority key identifier: 81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/aKzu0n0OpMqlA9kB49gcsNFFVks.roa
Signing time: Sun 19 Nov 2023 14:23:21 +0000
ROA not before: Sun 19 Nov 2023 14:23:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5065
IP address blocks: 83.147.8.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:29:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:e7:f6:ee:9c:a6:07:c5:94:f9:d1:61:c6:5e:c4:dc:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Validity
Not Before: Nov 19 14:23:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=68aceed27d0ea4caa503d901e3d81cb0d145564b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:29:15:6d:a7:36:99:ce:e4:fc:27:9d:9d:74:
18:e8:52:ff:3d:7c:1e:ff:2d:4a:23:33:ef:9b:25:
24:ff:c6:93:76:bd:07:0d:47:bc:c6:23:58:11:25:
40:b5:68:05:81:a3:95:68:17:2b:aa:71:0b:1e:ad:
a4:0b:92:32:2d:40:eb:c6:ad:ff:04:59:bc:e4:d9:
7b:61:00:d1:b8:75:b8:9f:52:de:86:03:0f:84:d6:
66:a8:97:23:e1:90:d4:96:fc:a0:e6:a8:e2:47:a3:
33:46:5f:03:65:a7:76:e7:46:6c:b1:f3:c9:23:b2:
93:a5:a2:91:f2:78:25:09:75:1f:60:9c:fa:f6:e0:
30:8f:fb:f4:92:50:5b:fb:18:c6:30:a3:4a:3d:05:
ca:a4:79:90:4f:81:7a:3b:ab:39:34:1f:ab:a9:99:
2f:1d:ed:d6:cb:db:00:b0:e2:1f:73:5e:65:45:9f:
5b:3d:22:4b:c3:cb:1d:22:d1:9d:2d:67:b0:3b:5f:
5e:ed:bd:5a:d8:40:5b:14:7c:12:47:6d:e5:a9:56:
19:94:66:52:60:6c:29:38:47:a5:9d:9b:ca:14:30:
8c:d2:94:76:d7:80:d9:e4:7b:30:0c:07:59:69:c6:
f7:0a:10:ad:da:c4:d4:77:c6:43:ed:89:30:94:11:
3f:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:AC:EE:D2:7D:0E:A4:CA:A5:03:D9:01:E3:D8:1C:B0:D1:45:56:4B
X509v3 Authority Key Identifier:
keyid:81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/aKzu0n0OpMqlA9kB49gcsNFFVks.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/gZP_6ds3YmsT-F18xFeq1cHzDJ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.8.0/22
Signature Algorithm: sha256WithRSAEncryption
70:59:c9:93:d2:be:42:8a:56:e9:3c:f4:dd:b2:e5:63:c3:67:
1a:89:14:c5:25:5a:7a:74:5d:db:f1:b8:9f:e2:28:39:ca:1e:
9f:fa:5b:99:95:48:d3:b7:d2:b1:00:06:c5:b7:ea:0b:f5:cb:
77:51:b6:a0:6d:15:83:6b:3f:c5:8a:b0:54:5a:56:68:5f:d0:
cf:16:2c:03:57:18:15:95:e3:c1:38:49:3e:77:6b:4f:50:ca:
01:dd:e9:b3:ce:b6:6c:df:8e:59:b4:10:16:ea:f0:e4:18:bd:
89:60:70:78:99:40:12:82:ea:2c:d7:0d:3e:99:f3:17:cf:76:
d5:73:a9:0c:ae:17:52:bd:0b:99:46:54:c2:7f:38:c9:76:0b:
c8:0a:d1:1c:90:6b:10:ea:fe:be:2f:79:a1:54:89:d6:6c:8e:
ed:30:b4:ae:14:b6:42:f4:2a:78:fb:ca:d4:10:f6:21:76:ad:
f1:a4:c4:d5:70:41:e8:62:6a:b1:68:14:e2:56:1d:04:a6:4c:
94:e6:74:e3:9d:6d:37:90:8d:2a:9e:d6:ec:9e:5b:e6:9f:e1:
c9:7e:07:a2:e6:a1:87:da:c0:5b:59:c0:96:0e:86:cd:9c:62:
c1:da:16:ca:38:8d:66:37:8e:a0:c8:1f:33:93:c8:62:ec:65:
30:c5:f4:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:50 2024 by rpki-client on console-fra.rpki-client.org