Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/araemhqZQCAyDdlDumjadHM8R9Y.roa
File: araemhqZQCAyDdlDumjadHM8R9Y.roa (raw, json)
Hash identifier: dQuTKM8Q5QcwDR8myt2300PaGF4aRE9r8YDaBVcp6UQ=
Subject key identifier: 6A:B6:9E:9A:1A:99:40:20:32:0D:D9:43:BA:68:DA:74:73:3C:47:D6
Certificate issuer: /CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Certificate serial: 018C30B9569862195B3328E9B5B163BC10F7
Authority key identifier: 81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/araemhqZQCAyDdlDumjadHM8R9Y.roa
Signing time: Sun 03 Dec 2023 17:28:21 +0000
ROA not before: Sun 03 Dec 2023 17:28:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21859
IP address blocks: 83.147.21.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:29:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:30:b9:56:98:62:19:5b:33:28:e9:b5:b1:63:bc:10:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Validity
Not Before: Dec 3 17:28:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6ab69e9a1a994020320dd943ba68da74733c47d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:3e:fc:8a:6b:f9:11:0a:70:0e:5a:ce:75:c6:
33:c1:fc:9e:4b:2e:6b:d8:b7:35:07:47:be:55:d9:
ad:7f:80:64:72:a2:47:0b:42:eb:01:68:27:04:42:
bb:62:3c:54:2b:e2:79:99:26:f1:6c:4b:fa:eb:40:
e0:12:00:18:ef:a4:61:fc:b4:72:40:bd:32:02:fd:
cb:11:e6:cd:c4:cc:d7:98:b5:9e:fb:1c:28:f4:93:
fb:ea:1b:78:17:c6:be:b6:47:92:b2:a2:2c:a9:3f:
ae:bf:60:cb:4a:aa:5b:64:7d:c4:9e:d3:37:0a:1b:
90:7a:e6:16:30:23:4c:a4:6d:c5:3b:57:bc:31:28:
72:04:13:b1:dc:0f:c1:c6:c6:bf:47:8a:7f:ed:6e:
c1:21:fe:11:37:c0:09:af:c8:21:59:d2:dc:33:ea:
f1:92:0b:83:69:ce:78:14:1f:ec:d9:31:c5:16:c1:
7e:86:ed:4b:14:8c:79:12:75:a4:86:9d:97:f0:7f:
2f:64:00:2a:17:ca:a9:6d:d3:78:b7:37:9f:a6:38:
38:3a:3c:5d:b8:aa:9f:0f:e0:4e:a0:89:1f:0b:80:
e9:76:a2:a5:bc:71:7d:9d:3d:55:72:fe:b9:08:16:
b2:45:d7:4d:08:7e:8f:ac:c7:50:dd:b3:73:d5:dc:
43:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:B6:9E:9A:1A:99:40:20:32:0D:D9:43:BA:68:DA:74:73:3C:47:D6
X509v3 Authority Key Identifier:
keyid:81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/araemhqZQCAyDdlDumjadHM8R9Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/gZP_6ds3YmsT-F18xFeq1cHzDJ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.21.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:29:b2:b7:8c:3e:9c:00:51:61:a6:3f:ce:59:cb:c6:0d:58:
44:32:48:7a:10:50:f3:4c:a3:50:38:bf:84:67:52:3a:29:96:
49:6b:70:22:28:30:bf:4e:03:64:56:76:98:a0:ae:c9:77:e4:
ba:ec:7a:30:01:09:5f:4d:95:07:ed:6c:5e:34:f7:4a:2c:ad:
ae:01:22:6e:bd:a8:ee:d3:90:e3:c3:95:18:c3:d0:d4:6c:35:
18:8f:32:3f:11:96:83:04:7f:36:b9:44:de:73:c5:1d:05:7f:
7d:d2:9a:b9:8c:15:b3:51:9c:76:e5:58:88:69:ed:1f:9f:e7:
28:47:7d:2f:6c:5d:e7:42:ab:cf:36:9b:b7:b8:e7:61:8e:3d:
f2:ec:27:9e:bb:6c:de:e9:61:6e:c9:cf:84:70:aa:e7:03:f3:
e1:4d:ba:6b:38:d0:89:d8:e6:d7:2d:35:98:44:0d:7c:e4:06:
02:6c:f1:67:6d:24:3c:00:78:01:a9:86:a8:64:4d:c8:03:e5:
fa:5c:88:a0:e0:fe:a2:a0:71:94:67:87:ac:43:cd:c4:4c:13:
37:d9:72:96:ff:7b:3f:dc:89:dd:b7:cf:68:fb:d4:44:67:da:
29:6b:db:dc:09:a4:59:f6:9a:ac:30:7b:20:7e:40:cc:33:21:
be:4f:c4:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:01 2024 by rpki-client on console-ams.rpki-client.org