Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/pD9-jWpRxFeJNLvPat9QPJklYGQ.roa
File: pD9-jWpRxFeJNLvPat9QPJklYGQ.roa (raw, json)
Hash identifier: 2oRyLCNtgmG09DDW1p2ExS2rFTVl6aabJv2OqH/bZlY=
Subject key identifier: A4:3F:7E:8D:6A:51:C4:57:89:34:BB:CF:6A:DF:50:3C:99:25:60:64
Certificate issuer: /CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Certificate serial: 018822D64CB45E617B6C3DC5D0ACA47FD5B9
Authority key identifier: 81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/pD9-jWpRxFeJNLvPat9QPJklYGQ.roa
Signing time: Tue 16 May 2023 04:34:09 +0000
ROA not before: Tue 16 May 2023 04:34:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211975
IP address blocks: 83.147.0.0/22 maxlen: 24
83.147.13.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Jul 2023 05:07:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:22:d6:4c:b4:5e:61:7b:6c:3d:c5:d0:ac:a4:7f:d5:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Validity
Not Before: May 16 04:34:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a43f7e8d6a51c4578934bbcf6adf503c99256064
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:a6:a7:d5:6e:2c:c5:cf:6e:9a:e0:d6:e2:d0:
62:69:6a:3e:02:4f:85:0f:d9:d1:55:09:4e:03:6d:
53:68:0f:3f:24:41:f6:c9:bd:13:0e:02:0a:08:b8:
7d:bf:aa:83:1d:2c:95:99:ac:0b:cd:b2:33:40:9d:
da:a3:3d:f1:8a:c8:d9:63:16:af:3d:84:18:82:58:
6a:87:63:43:e8:18:97:df:bf:d3:8d:6a:2d:42:34:
5f:a4:22:90:48:7d:b4:2a:95:0f:7a:67:1c:2c:f5:
05:f8:41:bf:cb:0a:ae:03:9e:13:d5:36:aa:2e:a2:
fb:3c:a5:96:f0:45:0a:22:21:fa:71:c2:85:14:85:
e7:76:75:54:78:cf:05:a1:71:9c:17:3e:a5:f4:bc:
f0:48:6e:d9:12:a7:92:41:a4:e7:99:48:d2:f8:36:
9c:2b:aa:44:62:19:1c:85:c6:12:56:6c:2a:1a:97:
97:03:ec:c7:f5:36:2e:50:15:ff:94:f1:60:c4:1a:
d2:8f:0d:c8:66:36:17:68:9a:b8:59:29:0a:ba:6c:
ff:b1:ca:81:02:b7:c1:1d:2d:09:4b:13:ae:7c:58:
77:ff:b9:72:23:c0:15:c2:c6:64:7c:97:2e:a8:7a:
8d:31:59:6b:e2:53:32:c2:47:15:ca:df:83:b8:07:
10:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:3F:7E:8D:6A:51:C4:57:89:34:BB:CF:6A:DF:50:3C:99:25:60:64
X509v3 Authority Key Identifier:
keyid:81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/pD9-jWpRxFeJNLvPat9QPJklYGQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/gZP_6ds3YmsT-F18xFeq1cHzDJ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.0.0/22
83.147.13.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:97:91:5d:7b:b0:e8:7a:5e:dc:48:0b:d0:72:8d:5e:1d:e4:
80:41:95:9b:1a:31:44:e7:cd:22:6c:e4:cf:04:59:89:8d:4c:
ef:e1:b6:1e:a2:ba:71:45:20:a3:0f:cf:b9:8f:a9:3b:4c:75:
e7:f3:84:ba:17:80:10:6f:3b:e8:61:9c:dc:7b:c7:5e:af:77:
7c:8f:f9:cc:c0:b1:dd:67:50:6f:f2:d7:02:82:be:2b:80:f7:
5e:bd:a1:6f:4c:a6:68:f0:a3:1b:51:38:29:fe:f4:43:e6:f8:
26:17:d8:29:34:cf:cc:51:28:b5:18:90:6c:7a:b0:ca:1b:00:
6a:75:a6:3b:51:04:7e:8f:8d:b2:e3:bc:57:7d:22:fa:f8:d1:
53:5d:a3:ea:61:77:3d:4e:f6:ce:7e:c0:e9:a5:3f:94:d8:8d:
71:b9:35:14:e8:37:f8:15:04:ec:52:3d:a4:bc:43:8c:21:ea:
7e:61:6a:f0:88:71:d8:e2:0b:b1:64:c0:2a:fb:31:09:5c:bf:
a2:55:97:a5:70:db:d2:0c:75:57:68:04:d4:bd:ab:ec:96:68:
ea:12:88:b2:5c:f9:b0:11:a5:83:1f:7b:3e:df:8c:e2:68:a2:
a2:e6:c5:ee:69:42:3f:d2:9c:2b:46:d1:e8:4d:33:4a:95:62:
6f:f1:ee:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:50 2024 by rpki-client on console-fra.rpki-client.org