Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/teU5eT82KzeiWx0jlh34wl9wZk4.roa
File: teU5eT82KzeiWx0jlh34wl9wZk4.roa (raw, json)
Hash identifier: HKaJs4X8gBTSfW5AjcMxDDegeYBMM8F9Pxx5OxUX+ZM=
Subject key identifier: B5:E5:39:79:3F:36:2B:37:A2:5B:1D:23:96:1D:F8:C2:5F:70:66:4E
Certificate issuer: /CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Certificate serial: 018D6A6193CAEA2C032C8766AC27BB68A9F3
Authority key identifier: 81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/teU5eT82KzeiWx0jlh34wl9wZk4.roa
Signing time: Fri 02 Feb 2024 15:13:16 +0000
ROA not before: Fri 02 Feb 2024 15:13:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 83.147.0.0/22 maxlen: 24
83.147.21.0/24 maxlen: 24
83.147.36.0/22 maxlen: 24
83.147.48.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 28 Feb 2024 08:40:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:6a:61:93:ca:ea:2c:03:2c:87:66:ac:27:bb:68:a9:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Validity
Not Before: Feb 2 15:13:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b5e539793f362b37a25b1d23961df8c25f70664e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:f6:33:5e:b1:d9:91:5f:9e:94:ba:3b:5c:51:
89:df:95:f9:4d:48:fe:ee:39:19:ee:82:3b:78:e4:
14:53:52:14:41:79:a0:bb:63:f3:4a:47:6d:ca:64:
5a:8e:db:fe:1f:3a:10:38:79:40:c6:0e:83:8a:11:
bb:91:0c:86:6d:1b:29:ad:c3:cf:19:42:b6:cc:e3:
a1:4e:fc:54:a7:b5:04:96:be:c5:04:b8:ae:05:71:
0a:ff:4d:e0:d0:a5:b2:59:50:02:24:ba:87:b6:11:
87:1e:79:dc:bf:63:0c:31:a3:a7:f0:b7:65:e5:38:
2a:ab:02:41:d6:6f:2c:74:41:52:51:8f:db:33:db:
fc:1e:38:2b:bb:7a:c9:bd:a4:4d:ce:82:e9:ce:af:
c2:24:f1:34:1e:e7:26:0a:51:72:c6:ce:58:32:ff:
fa:dc:4d:fb:b2:49:9b:9b:d4:ef:18:15:8d:69:d4:
1f:0f:96:4e:0c:ba:5f:6f:47:ea:44:93:ba:fc:16:
9f:e9:10:3a:28:03:64:47:67:94:8f:98:40:d7:59:
86:af:de:21:ea:59:51:9a:ba:58:d9:9f:09:e6:52:
ea:c5:33:1c:06:7d:43:67:69:88:b2:f5:03:0c:31:
d4:8f:88:98:7d:b3:91:d1:30:73:1d:1b:56:71:7a:
5b:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:E5:39:79:3F:36:2B:37:A2:5B:1D:23:96:1D:F8:C2:5F:70:66:4E
X509v3 Authority Key Identifier:
keyid:81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/teU5eT82KzeiWx0jlh34wl9wZk4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/gZP_6ds3YmsT-F18xFeq1cHzDJ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.0.0/22
83.147.21.0/24
83.147.36.0/22
83.147.48.0/22
Signature Algorithm: sha256WithRSAEncryption
7f:30:dd:c7:2a:3a:08:86:ed:3d:f9:c4:20:86:1c:47:02:4d:
bf:bd:41:63:65:16:b0:29:2b:00:1b:32:9b:20:b1:b9:67:82:
98:0a:80:9f:85:e4:ea:5b:71:9c:40:f5:8f:04:4a:dd:0b:da:
96:ea:22:26:0b:da:bb:76:ad:d0:44:e6:b3:ca:9a:f8:1c:0c:
af:8d:53:2e:40:37:96:f6:45:f8:9a:3a:91:25:93:db:0a:fe:
95:d4:c2:89:f0:d0:42:5a:04:b6:c8:da:12:aa:39:c3:14:7c:
ce:9f:3a:4c:5d:20:cc:9a:2d:c3:f4:fd:d0:2e:f2:73:c1:cd:
6c:e0:17:af:f7:62:e3:5d:ed:71:c1:c1:69:bb:6f:0a:94:f0:
af:2d:39:5a:66:e0:42:d4:e2:db:5c:71:13:ba:67:a8:56:37:
c9:98:5d:2a:84:83:96:33:71:f3:60:c5:e7:b6:79:8b:89:30:
33:3d:b5:74:9f:f1:60:ba:b3:9c:8b:43:fd:63:08:01:b1:fe:
45:eb:70:ee:bf:06:5b:8b:56:d5:49:8f:49:6b:79:48:6e:20:
52:cc:4a:44:31:aa:6d:3d:24:f2:dd:ed:36:c7:ef:d6:58:0c:
0e:a7:f2:97:03:7c:bc:f9:4b:ef:d5:22:2e:c1:81:57:94:3f:
35:5c:87:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:01 2024 by rpki-client on console-ams.rpki-client.org