Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/pRakoAtzZN7-HQzAnAwLueDApRo.roa
File: pRakoAtzZN7-HQzAnAwLueDApRo.roa (raw, json)
Hash identifier: CEXRl5Panf9/GO9NOsY6DRszDCDZXstgHviB1rljdvU=
Subject key identifier: A5:16:A4:A0:0B:73:64:DE:FE:1D:0C:C0:9C:0C:0B:B9:E0:C0:A5:1A
Certificate issuer: /CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Certificate serial: 01856CE639508ED67414710E138F7302A0C7
Authority key identifier: 81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/pRakoAtzZN7-HQzAnAwLueDApRo.roa
Signing time: Sun 01 Jan 2023 10:35:05 +0000
ROA not before: Sun 01 Jan 2023 10:35:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60721
IP address blocks: 83.147.22.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 17 Jan 2023 11:59:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:e6:39:50:8e:d6:74:14:71:0e:13:8f:73:02:a0:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Validity
Not Before: Jan 1 10:35:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a516a4a00b7364defe1d0cc09c0c0bb9e0c0a51a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:02:38:61:f3:34:49:72:9f:31:27:2b:f4:0d:
ed:b7:6c:df:c8:7f:1f:5b:4b:76:c9:db:f0:81:e4:
3d:38:bf:3a:93:8a:0b:3f:37:0c:3e:22:e3:a2:c0:
0d:72:4f:f8:95:16:c4:29:2b:98:2b:2e:c1:4d:7f:
35:18:26:83:97:4a:9e:0c:fb:dc:49:cf:bd:4f:e6:
60:c9:a0:b6:26:82:27:b5:7f:4b:ea:e9:06:46:94:
91:aa:c6:e0:3c:ba:9e:a2:ba:e8:6e:3a:ee:f3:a2:
55:43:1d:d6:9c:8c:e4:0e:3e:84:be:15:19:e9:df:
08:73:ab:40:ae:7a:2b:62:61:d4:53:48:e4:66:34:
62:cf:1b:96:d8:8e:a8:21:46:b2:93:5c:fd:fd:ba:
92:de:ea:9d:fd:d3:e2:8f:75:9f:83:75:bb:42:a4:
e8:b3:16:ad:f1:d8:2c:b3:f9:27:c9:08:3e:d4:fd:
9b:09:17:fc:1f:e4:3e:12:33:f3:61:67:b0:f4:01:
5e:ef:8f:c7:63:4d:18:2c:f8:64:b8:ca:78:ff:e4:
08:6a:46:17:c2:3a:9a:c8:cf:06:c6:04:9c:b4:ce:
d9:2b:af:4e:dc:12:c7:44:a5:d6:f5:13:98:74:a6:
f5:e7:49:23:61:9c:9c:23:3d:1b:15:7e:8a:7b:4a:
09:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:16:A4:A0:0B:73:64:DE:FE:1D:0C:C0:9C:0C:0B:B9:E0:C0:A5:1A
X509v3 Authority Key Identifier:
keyid:81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/pRakoAtzZN7-HQzAnAwLueDApRo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/gZP_6ds3YmsT-F18xFeq1cHzDJ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.22.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:d3:34:0d:a7:b8:cc:cd:c9:20:c6:c2:20:b7:75:b4:6c:18:
10:62:5c:7a:74:28:2a:3f:a9:95:33:d4:4e:23:7b:47:9a:34:
47:80:91:33:40:5a:9e:15:e2:0d:61:2e:a7:8f:40:43:62:30:
72:fb:df:96:68:7f:2d:ce:30:80:4d:e7:7e:30:63:c8:5c:7b:
f8:b1:ab:b6:00:55:87:cd:c1:0b:c8:ad:7a:ff:d3:a9:3f:fb:
09:20:81:11:b5:97:57:7f:be:a8:8d:14:ba:dc:51:4a:83:3b:
0c:76:d0:3a:7a:aa:c9:e9:c2:c5:9a:b5:72:07:1e:1c:31:3a:
28:ca:aa:7e:2e:88:65:e8:d8:8c:71:b7:b5:b9:2c:9d:4d:51:
14:81:08:12:6c:20:e5:97:6c:b8:4e:4d:2d:d7:be:5d:3b:85:
71:94:2b:11:d1:7e:7f:03:f6:3f:fe:fc:70:90:cf:e2:16:bc:
3d:ca:00:81:34:73:1b:6a:3d:ff:08:51:9d:77:c8:b9:43:98:
ee:72:54:b2:69:2a:93:a2:96:97:ec:dc:cd:54:7a:a1:c2:7b:
70:96:9a:af:b2:a4:91:eb:22:a9:85:dc:0e:2d:f1:61:31:e3:
09:fa:3a:25:09:53:2b:64:c5:8a:e3:01:58:48:54:11:31:87:
f5:55:aa:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:01 2024 by rpki-client on console-ams.rpki-client.org