Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/efDn59qO54QQ0tOC0-0IuGO24aA.roa
File: efDn59qO54QQ0tOC0-0IuGO24aA.roa (raw, json)
Hash identifier: P9hjTQ9xbIyqQSF6xDVHTT0XJJwAr8sQOjq5A9QMsDo=
Subject key identifier: 79:F0:E7:E7:DA:8E:E7:84:10:D2:D3:82:D3:ED:08:B8:63:B6:E1:A0
Certificate issuer: /CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Certificate serial: 018BA3130B274920C3B700D5A9073EA7C360
Authority key identifier: 81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/efDn59qO54QQ0tOC0-0IuGO24aA.roa
Signing time: Mon 06 Nov 2023 05:20:16 +0000
ROA not before: Mon 06 Nov 2023 05:20:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197992
IP address blocks: 83.147.44.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:a3:13:0b:27:49:20:c3:b7:00:d5:a9:07:3e:a7:c3:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Validity
Not Before: Nov 6 05:20:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=79f0e7e7da8ee78410d2d382d3ed08b863b6e1a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:b0:3a:d8:04:68:b0:2b:34:bd:03:72:e0:8c:
1c:4f:a7:93:fe:29:76:3f:96:75:bf:b2:a7:92:15:
3f:d9:7a:fc:a9:06:b8:67:c9:56:fb:c9:54:ce:ac:
b5:0f:91:a7:b7:96:12:c4:a9:8d:cd:7e:66:0c:85:
d2:d7:d3:af:56:95:1b:2d:67:56:f8:5a:0a:e3:0f:
72:62:2c:31:c0:0e:0a:78:47:50:8f:83:3d:f8:bf:
c9:24:4e:67:15:ac:d3:81:1b:30:3c:ae:68:07:6e:
df:0f:de:aa:c0:ff:a3:44:cb:e9:b3:66:50:e7:bc:
91:1e:e1:d7:db:23:80:7f:ca:89:11:b0:90:c7:c0:
fe:41:f7:5d:19:36:b6:ff:33:19:46:1d:38:89:5d:
76:a7:97:a5:44:d5:cd:38:32:04:d7:dc:02:01:b1:
ec:4a:a2:bc:cb:78:16:dc:da:7c:54:24:1c:c6:b4:
c7:6a:64:36:59:3a:9d:6b:06:20:4a:a2:f1:56:49:
d0:14:c4:24:38:86:37:13:db:12:63:05:48:0c:21:
42:77:8d:06:1b:cf:36:61:e7:d0:8f:38:b5:6b:78:
7e:a0:80:cb:84:22:f0:72:55:f5:c9:5d:a3:e4:f5:
43:4a:ee:90:c3:6b:5c:fb:7b:06:2e:28:b7:d8:62:
d4:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:F0:E7:E7:DA:8E:E7:84:10:D2:D3:82:D3:ED:08:B8:63:B6:E1:A0
X509v3 Authority Key Identifier:
keyid:81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/efDn59qO54QQ0tOC0-0IuGO24aA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/gZP_6ds3YmsT-F18xFeq1cHzDJ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.44.0/22
Signature Algorithm: sha256WithRSAEncryption
2d:db:5e:bd:8f:6c:6e:0c:33:c2:b4:a1:af:4d:d2:fb:25:3e:
14:d0:14:8d:37:75:2c:a1:cf:54:aa:43:eb:5a:7b:bc:6e:78:
94:a2:64:41:65:78:9a:bb:3b:f0:c8:b9:81:ff:2c:e9:6c:72:
56:6e:40:87:d1:ec:32:bc:91:7a:78:4e:04:02:6b:f2:89:c4:
e8:e3:54:c5:eb:f8:13:95:37:67:50:17:06:10:b9:e0:a0:26:
e6:bd:45:29:b7:a1:70:fc:bc:2f:cf:36:12:6c:5f:e1:6d:bb:
70:8e:5d:e2:4d:4f:00:8d:80:4f:ed:63:b2:10:f2:9d:ee:7c:
ec:2d:81:4b:85:46:2d:08:c3:76:ca:4a:8c:f6:11:be:d9:79:
ba:c6:c4:9b:de:c9:d2:13:8f:81:59:ce:71:b1:12:bd:0d:b3:
e2:8c:76:b4:cb:01:3d:ff:45:65:29:be:9a:4a:1e:29:df:69:
a8:ea:71:90:b8:52:32:c2:e2:34:94:2b:42:53:3c:2c:82:34:
e8:d0:08:49:7d:c1:1c:d7:12:47:c3:64:3a:5d:38:2d:ab:10:
a3:f8:1e:7c:b7:62:62:13:78:d1:e6:5a:43:0e:61:c3:36:e3:
23:ca:cf:0b:91:19:4f:4a:8e:fb:30:ac:41:5d:93:49:9b:42:
ea:4d:c3:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 11:36:05 2024 by rpki-client on console-ams.rpki-client.org