Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/eAInmtY1kwIr8bdHKEtxtdES75k.roa
File: eAInmtY1kwIr8bdHKEtxtdES75k.roa (raw, json)
Hash identifier: fd/29aIqzx4CWVCpmwtYMrmzISg9Q4ziRt2+4AxQrtg=
Subject key identifier: 78:02:27:9A:D6:35:93:02:2B:F1:B7:47:28:4B:71:B5:D1:12:EF:99
Certificate issuer: /CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Certificate serial: 018BA318896BAF4848F905A698FAFA7260A5
Authority key identifier: 81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/eAInmtY1kwIr8bdHKEtxtdES75k.roa
Signing time: Mon 06 Nov 2023 05:26:16 +0000
ROA not before: Mon 06 Nov 2023 05:26:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 83.147.40.0/22 maxlen: 24
83.147.61.0/24 maxlen: 24
83.147.8.0/22 maxlen: 24
83.147.20.0/23 maxlen: 24
83.147.23.0/24 maxlen: 24
83.147.28.0/22 maxlen: 24
83.147.26.0/23 maxlen: 24
Validation: Failed, certificate revoked on Thu 09 Nov 2023 08:39:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:a3:18:89:6b:af:48:48:f9:05:a6:98:fa:fa:72:60:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Validity
Not Before: Nov 6 05:26:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7802279ad63593022bf1b747284b71b5d112ef99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:21:f7:8e:44:43:fe:0e:82:b4:9a:cf:df:47:
84:71:bf:b8:fc:29:2d:72:4e:1a:b9:71:56:0e:4d:
ea:1f:d3:dd:43:cb:8f:a8:62:14:0b:84:61:55:9b:
9d:51:e9:ca:24:ad:8e:a1:de:29:c3:d5:91:cf:91:
0e:fd:03:68:63:25:8f:fc:5c:a2:6d:d0:65:58:fc:
55:49:49:7e:43:f0:bb:1b:eb:45:0c:1d:eb:f5:db:
13:f2:4d:f5:2a:8d:8e:f4:78:08:72:f7:29:e8:f2:
c2:9e:c1:e6:dd:91:4b:b9:be:76:c4:28:39:33:15:
66:72:c4:70:c1:e6:e3:38:33:bb:c0:66:8a:3a:ad:
ce:48:c3:34:ad:cc:2c:6c:e5:83:c1:64:ad:b8:da:
6f:f5:36:c4:c7:d5:a9:c7:0c:4a:8a:95:c7:16:f7:
a9:fb:de:d1:47:41:b0:b4:96:90:75:67:f4:36:42:
3e:06:5e:5a:75:37:fa:34:a3:2d:01:0a:88:29:c6:
f8:78:76:d4:f6:a3:ad:99:b4:2d:51:e7:5d:4a:d1:
ce:7c:76:2d:02:ec:79:83:e8:40:05:52:f0:c7:88:
d6:2b:7f:d6:73:13:15:61:20:53:75:b3:81:1e:df:
87:79:dc:ef:8d:c3:95:a4:0e:93:99:da:7c:31:c4:
d5:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:02:27:9A:D6:35:93:02:2B:F1:B7:47:28:4B:71:B5:D1:12:EF:99
X509v3 Authority Key Identifier:
keyid:81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/eAInmtY1kwIr8bdHKEtxtdES75k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/gZP_6ds3YmsT-F18xFeq1cHzDJ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.8.0/22
83.147.20.0/23
83.147.23.0/24
83.147.26.0-83.147.31.255
83.147.40.0/22
83.147.61.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:cf:29:c3:a0:5a:30:3e:50:d3:45:ee:47:12:52:7c:f0:64:
1a:dd:5d:49:5c:3a:bc:fc:d8:8a:c2:e3:13:51:6a:0b:fd:0f:
05:17:af:ff:7a:b9:c5:6a:46:7e:c0:b7:22:57:71:9f:de:e5:
4a:0c:49:c2:07:e7:be:27:34:12:b9:b8:a2:f6:eb:01:4a:f2:
ba:68:d5:a1:2b:09:41:ab:5e:99:55:fe:09:ab:7b:22:40:d3:
fc:49:ca:93:8a:fa:56:61:e5:78:c1:8c:c4:2d:4b:ef:00:d0:
9a:81:b4:3b:b5:b6:b0:88:86:93:89:53:05:fa:c5:6b:3f:2a:
1d:56:43:09:41:ab:a6:00:a3:88:72:ae:f5:17:c6:9a:9a:45:
aa:4d:04:06:85:49:fb:23:f2:60:dd:23:1c:ea:1d:a5:e5:87:
46:42:10:7e:41:8a:db:c1:f0:78:39:d6:28:d9:04:ec:77:71:
ae:6d:0f:be:eb:7f:4d:3f:09:db:22:05:91:69:0d:9d:da:3e:
61:4d:e1:44:0c:2b:14:c1:aa:64:5e:f3:9a:40:22:54:e2:07:
fb:d3:4b:8e:d1:16:58:96:b6:34:b8:83:07:4d:ca:05:9a:cb:
be:10:42:a0:b9:66:fe:8d:60:58:ee:a1:c3:07:80:60:e8:60:
26:ed:42:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:50 2024 by rpki-client on console-fra.rpki-client.org