Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/mWZYIwwulPvbTlBiwJkLFmEh8hE.roa
File: mWZYIwwulPvbTlBiwJkLFmEh8hE.roa (raw, json)
Hash identifier: WGxwqXBNNKuQ6Jghzs63p4LFwyh6JSSIo+A45o4rI4A=
Subject key identifier: 99:66:58:23:0C:2E:94:FB:DB:4E:50:62:C0:99:0B:16:61:21:F2:11
Certificate issuer: /CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Certificate serial: 0189AF3D5F12C1D5050927594D8004E884F0
Authority key identifier: 81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/mWZYIwwulPvbTlBiwJkLFmEh8hE.roa
Signing time: Tue 01 Aug 2023 03:56:22 +0000
ROA not before: Tue 01 Aug 2023 03:56:22 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 83.147.44.0/22 maxlen: 24
83.147.61.0/24 maxlen: 24
83.147.0.0/22 maxlen: 24
83.147.11.0/24 maxlen: 24
83.147.9.0/24 maxlen: 24
83.147.14.0/24 maxlen: 24
83.147.28.0/22 maxlen: 24
Validation: Failed, certificate revoked on Thu 03 Aug 2023 07:29:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:af:3d:5f:12:c1:d5:05:09:27:59:4d:80:04:e8:84:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Validity
Not Before: Aug 1 03:56:22 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=996658230c2e94fbdb4e5062c0990b166121f211
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:a1:1f:d5:5b:5d:c0:75:08:2c:cb:55:0b:84:
98:b8:a6:7e:6e:93:12:a0:f8:c4:3b:dd:8a:5c:b7:
ee:20:f1:09:37:22:89:98:e0:a8:2f:c6:c5:61:14:
ad:b3:ec:8a:6d:be:d3:06:a8:99:10:1e:03:24:bf:
bf:e3:f3:54:65:90:5e:8f:74:a1:af:7a:ac:0d:0a:
6b:63:19:5f:52:ab:30:a0:0b:40:58:0f:06:54:2a:
53:85:24:60:21:68:0d:be:8a:81:35:e7:5f:e1:61:
9a:75:ad:99:84:be:49:f7:09:07:af:bf:57:8d:b0:
ac:8e:d1:0f:60:53:03:e6:6d:e8:f5:97:fd:12:a6:
9a:16:09:9d:1e:c2:4c:d1:57:fb:3c:87:b9:01:9c:
1f:75:1e:2b:23:0a:15:38:93:58:08:ae:80:a7:50:
ad:c9:be:56:ca:01:a7:1c:1b:6f:f7:34:f1:d5:90:
9d:2e:70:10:bc:c7:9e:a1:a3:b4:ce:ba:bc:df:0a:
a6:5a:3b:7d:dd:25:b2:0d:c4:6d:d7:bd:80:31:fb:
20:9a:76:66:94:05:d1:ed:29:89:4c:63:6e:5e:45:
1c:9a:e0:6d:05:03:46:bf:84:f0:29:82:b4:6e:93:
09:10:b3:1a:33:21:c8:49:b6:4f:8f:77:11:ac:5d:
31:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:66:58:23:0C:2E:94:FB:DB:4E:50:62:C0:99:0B:16:61:21:F2:11
X509v3 Authority Key Identifier:
keyid:81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/mWZYIwwulPvbTlBiwJkLFmEh8hE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/gZP_6ds3YmsT-F18xFeq1cHzDJ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.0.0/22
83.147.9.0/24
83.147.11.0/24
83.147.14.0/24
83.147.28.0/22
83.147.44.0/22
83.147.61.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:e8:1b:db:c7:a0:42:66:5c:7d:c9:0f:23:0e:cc:40:4f:f5:
a7:09:26:83:cf:05:02:bc:e0:7e:3b:0d:ce:b4:40:72:58:2d:
09:2a:64:17:83:62:48:2f:a9:92:5a:99:ef:7d:1c:2e:24:15:
28:32:be:aa:cf:47:27:e1:75:4d:93:b0:6a:11:44:9f:45:df:
6c:b4:1f:7c:a0:23:e9:e3:76:07:ea:99:bb:5d:2b:61:b1:e0:
8a:13:da:66:1b:51:11:cf:df:bd:8e:8a:05:09:03:ba:b4:36:
a1:63:99:00:94:d1:7d:bc:a5:6d:dd:bd:f2:a8:66:a7:f5:98:
11:08:0d:48:ab:14:07:42:67:25:67:d3:d1:fb:74:b5:6e:a0:
4c:34:b0:37:9a:37:88:ac:a3:5e:b7:f3:23:47:5f:0c:9a:79:
6e:1c:1b:cb:ac:95:5e:ed:45:5e:e0:25:77:90:26:2f:7b:91:
98:4a:ce:d9:d6:a8:b2:d0:b7:bf:ae:a3:68:6b:7e:16:0a:e0:
c7:1a:be:c9:6f:a2:0b:a3:b7:41:5c:a6:20:d0:5d:93:78:f6:
50:0b:39:bd:31:80:27:11:2c:c0:3a:52:ee:67:d5:18:3a:e9:
cc:30:9c:91:45:c5:68:c8:fb:c3:07:ce:f0:31:f4:4a:c8:f4:
b3:7b:82:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:01 2024 by rpki-client on console-ams.rpki-client.org