Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/bAFPPGsnIqRciW0f3-bNbu1pQSg.roa
File: bAFPPGsnIqRciW0f3-bNbu1pQSg.roa (raw, json)
Hash identifier: 5VT+xuKtHjyCLsiXXXCvo8TSkfN/T0+XHWLVA3vMdog=
Subject key identifier: 6C:01:4F:3C:6B:27:22:A4:5C:89:6D:1F:DF:E6:CD:6E:ED:69:41:28
Certificate issuer: /CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Certificate serial: 018D6858A55800C6D73E4CB321DA13AB3A50
Authority key identifier: 81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/bAFPPGsnIqRciW0f3-bNbu1pQSg.roa
Signing time: Fri 02 Feb 2024 05:44:16 +0000
ROA not before: Fri 02 Feb 2024 05:44:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 83.147.0.0/22 maxlen: 24
83.147.21.0/24 maxlen: 24
83.147.29.0/24 maxlen: 24
83.147.36.0/22 maxlen: 24
83.147.48.0/22 maxlen: 24
Validation: Failed, certificate revoked on Fri 02 Feb 2024 15:13:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:68:58:a5:58:00:c6:d7:3e:4c:b3:21:da:13:ab:3a:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Validity
Not Before: Feb 2 05:44:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6c014f3c6b2722a45c896d1fdfe6cd6eed694128
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:d0:ec:e5:d1:02:92:f5:88:e1:19:10:be:fa:
d7:39:ad:3c:83:d4:cd:ba:3c:74:bc:9f:95:c5:86:
37:b6:24:5b:64:d0:ec:93:a0:c3:76:6b:34:5f:9d:
df:7d:02:7a:5d:b8:3e:08:56:7b:38:9c:b3:54:58:
24:7e:88:ca:4c:dd:9e:67:00:6b:e5:f8:af:ca:d7:
14:e0:7a:f5:ea:ba:3f:df:44:0c:f9:5e:3d:cd:d3:
5b:3e:2c:03:bc:ae:c1:02:e4:d9:e6:df:d2:7f:f4:
74:bd:64:13:77:91:2b:4a:1d:58:ee:0c:7d:e9:81:
d8:7e:27:2f:c0:20:65:7e:ed:28:0a:00:bf:75:08:
02:55:d3:c1:53:d5:05:9e:ae:6f:bc:37:d2:6b:b2:
b9:bd:e3:e0:b6:e2:57:5a:71:98:b7:c7:b0:64:0d:
d8:78:00:3c:46:53:27:fa:b7:54:e8:18:71:0e:77:
29:be:18:eb:71:40:be:42:b1:7f:20:43:d4:03:1d:
58:4b:68:d7:29:26:d9:b7:1c:89:e8:3c:1f:8a:55:
7e:7b:ec:80:4c:81:6b:12:3f:fd:83:5d:4a:5a:62:
39:08:0c:2f:dc:9e:4a:b4:fd:eb:8a:25:58:17:d6:
70:54:d2:e3:9f:ea:e7:50:d4:99:ff:16:f0:a4:20:
b9:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:01:4F:3C:6B:27:22:A4:5C:89:6D:1F:DF:E6:CD:6E:ED:69:41:28
X509v3 Authority Key Identifier:
keyid:81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/bAFPPGsnIqRciW0f3-bNbu1pQSg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/gZP_6ds3YmsT-F18xFeq1cHzDJ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.0.0/22
83.147.21.0/24
83.147.29.0/24
83.147.36.0/22
83.147.48.0/22
Signature Algorithm: sha256WithRSAEncryption
44:a5:1d:40:9a:ca:b0:9b:ad:d8:77:9d:3b:f9:65:0a:2c:ed:
02:f6:1d:e9:37:70:b0:ce:bd:1f:6c:f0:f6:6f:bd:af:c9:0a:
87:68:c4:88:bd:9d:55:a2:b2:d7:2b:5f:c0:7b:03:4e:fd:00:
df:c7:c6:7a:90:36:be:44:76:97:ce:45:95:16:1e:81:2b:e1:
e1:27:51:34:c8:2c:5a:ba:5d:22:63:bd:0a:ad:b8:df:33:bc:
91:b4:72:6e:ab:e7:19:cd:c2:c9:05:8c:b7:4e:f6:a3:70:80:
d8:7e:a7:0b:9e:f0:9b:f9:ad:a5:e0:77:1f:8b:22:a0:ed:0e:
f9:ec:f4:86:41:86:79:36:dc:d8:f7:be:a6:c1:d3:2e:1d:9b:
79:6b:28:bf:15:1b:88:2a:3c:83:4a:e0:e5:7a:a7:26:9a:c7:
01:36:df:1e:7a:76:93:cf:d4:67:ed:86:c2:65:21:e4:3a:6c:
7b:f0:fb:ce:58:57:2c:9b:36:56:d2:75:1b:8b:4f:40:6c:ea:
82:47:b9:7a:0c:4d:d0:60:bb:d9:5e:ba:13:24:50:08:b9:e6:
3d:d1:c2:2c:8f:73:c1:f6:5f:64:56:ad:8d:f9:ec:9a:e1:b9:
07:71:f1:a1:48:51:69:d9:b1:62:af:da:2b:96:76:0c:e3:78:
f2:d3:91:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:50 2024 by rpki-client on console-fra.rpki-client.org