Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/sg37FlNZo_qLdv3mebRlbH9bN9g.roa
File: sg37FlNZo_qLdv3mebRlbH9bN9g.roa (raw, json)
Hash identifier: o/SB13QosOd5OTQMKUk/kSqZe79h9K1hr74IpCuGObk=
Subject key identifier: B2:0D:FB:16:53:59:A3:FA:8B:76:FD:E6:79:B4:65:6C:7F:5B:37:D8
Certificate issuer: /CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Certificate serial: 018CBFE449ABBBCB70451B77389187E30439
Authority key identifier: 81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/sg37FlNZo_qLdv3mebRlbH9bN9g.roa
Signing time: Sun 31 Dec 2023 12:40:58 +0000
ROA not before: Sun 31 Dec 2023 12:40:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62240
IP address blocks: 83.147.40.0/22 maxlen: 22
83.147.48.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:29:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:bf:e4:49:ab:bb:cb:70:45:1b:77:38:91:87:e3:04:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Validity
Not Before: Dec 31 12:40:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b20dfb165359a3fa8b76fde679b4656c7f5b37d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:33:3a:eb:ab:54:9e:3b:6e:cc:f1:80:32:2e:
60:28:31:08:fc:b4:67:7a:1e:1d:a8:8e:63:43:e2:
e3:a9:41:01:3f:9d:eb:7b:7d:a0:29:90:f5:1f:af:
55:26:81:14:d8:7a:04:93:7f:5d:ca:23:99:94:5c:
64:a0:21:a0:f1:4e:71:3a:1d:d7:4d:fb:43:71:ee:
3e:32:6c:93:41:da:db:18:ce:92:44:4a:fd:50:25:
8a:bf:fa:72:8a:d4:f0:bb:72:06:06:fc:17:de:a9:
23:47:ae:55:4f:43:ee:9b:d2:64:9e:0a:8a:7f:81:
df:3a:7d:1d:ff:b9:8a:ea:d1:9c:4e:25:87:e7:45:
cb:e6:54:95:6f:18:4a:02:6f:84:18:50:a5:c3:a9:
c5:a6:c4:f4:ce:e4:c9:de:c5:4c:e2:7e:58:c0:8f:
88:be:47:86:9d:2b:be:a8:73:76:e7:0b:f7:ea:b1:
e6:cd:18:2f:14:48:c2:b8:47:8b:3d:ef:08:29:89:
64:01:fb:8d:e6:8a:7b:ab:41:02:f2:b3:c2:e8:a6:
20:09:cf:6b:2e:f3:36:78:f8:8a:4d:9f:a1:21:f0:
e7:a0:9b:a0:6d:c4:62:01:35:2d:22:01:44:29:7e:
fe:d5:8b:62:b4:74:78:49:eb:b8:1b:44:93:aa:63:
42:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:0D:FB:16:53:59:A3:FA:8B:76:FD:E6:79:B4:65:6C:7F:5B:37:D8
X509v3 Authority Key Identifier:
keyid:81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/sg37FlNZo_qLdv3mebRlbH9bN9g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/gZP_6ds3YmsT-F18xFeq1cHzDJ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.40.0/22
83.147.48.0/22
Signature Algorithm: sha256WithRSAEncryption
91:3f:cf:ee:e2:86:d2:f1:16:0a:0d:13:0a:6d:d0:0d:1e:c1:
5d:b2:a1:95:d2:08:22:f6:32:f3:b4:6b:4b:04:3f:91:5d:92:
9c:5c:13:75:4f:ac:73:fb:a5:a6:43:30:bd:f5:e6:d9:58:83:
07:28:49:9d:14:e6:0f:c6:af:33:f2:4e:f9:b6:e2:5e:ad:bc:
d9:97:d5:26:ba:d0:d3:e6:44:cd:94:5e:23:5e:92:ab:e3:e1:
49:7b:11:dd:69:59:ed:48:35:8c:c1:71:92:ab:41:55:67:55:
df:4b:3b:22:bf:5e:17:6d:78:8d:b7:14:3d:4a:68:3f:26:76:
42:4d:ce:2c:d6:d7:b5:f0:a4:ee:21:54:4f:c0:7e:e5:bd:22:
e4:bd:cc:32:45:d1:9d:dc:5f:53:32:cf:6f:f4:57:22:a3:02:
c5:ae:6c:ce:17:86:ed:58:12:e6:16:12:89:72:0e:72:77:0a:
c6:c0:a1:4b:33:04:9c:a3:68:f9:60:44:80:32:24:9a:8c:a2:
d8:ab:d3:63:71:4d:16:1d:30:bb:e3:0e:34:4a:26:95:c9:d8:
fe:b2:ff:aa:85:8f:6e:a5:78:38:3c:69:24:62:60:81:7b:b2:
3a:3e:a5:1d:96:a4:7a:93:8e:b2:f3:75:bb:82:34:0e:11:54:
d4:50:81:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:50 2024 by rpki-client on console-fra.rpki-client.org