Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/vx0XydnKf3dV5BbVxeXEugMkjpI.roa
File: vx0XydnKf3dV5BbVxeXEugMkjpI.roa (raw, json)
Hash identifier: HevBWawPgUHwVup6wtVLftvfjPm6DgGIb4h1x3ur3rI=
Subject key identifier: BF:1D:17:C9:D9:CA:7F:77:55:E4:16:D5:C5:E5:C4:BA:03:24:8E:92
Certificate issuer: /CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Certificate serial: 018C19E92EF3D62DB3063E10B5B2FF5BC3E1
Authority key identifier: 81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/vx0XydnKf3dV5BbVxeXEugMkjpI.roa
Signing time: Wed 29 Nov 2023 07:09:21 +0000
ROA not before: Wed 29 Nov 2023 07:09:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60949
IP address blocks: 83.147.28.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:29:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:19:e9:2e:f3:d6:2d:b3:06:3e:10:b5:b2:ff:5b:c3:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Validity
Not Before: Nov 29 07:09:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bf1d17c9d9ca7f7755e416d5c5e5c4ba03248e92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:c9:ac:46:0a:30:3f:7c:f5:b0:36:6a:d3:07:
29:72:20:c7:d2:81:6d:85:4a:fb:ff:83:2a:14:b2:
44:62:c2:39:a7:c9:9a:ad:59:b6:17:6a:cf:a2:48:
ec:f1:f3:ef:b9:13:a4:70:67:d8:a7:ea:c2:ca:e0:
67:81:17:76:84:51:82:3c:66:3e:4f:ce:a4:b3:45:
e2:bc:dd:c5:3a:13:93:3f:de:6f:c0:cd:f9:48:14:
64:47:94:cc:97:12:e4:f9:f9:6c:f9:32:db:c2:68:
ac:4d:8c:b2:56:b1:38:1d:4b:58:80:3b:43:cf:e8:
b5:64:bb:67:a6:b9:69:ba:ce:16:71:43:25:32:2c:
52:46:d7:24:02:b2:f1:ce:5a:53:6d:1b:f7:f6:eb:
c3:df:4f:bc:9e:0d:26:78:73:71:4e:e1:92:81:31:
6e:fe:43:33:e2:28:8c:ed:5f:81:8e:99:80:2f:d7:
1b:a0:eb:34:99:24:b3:4e:69:df:52:60:a6:35:c7:
e2:e6:16:85:ac:db:4e:1f:3e:82:88:65:85:21:c8:
b3:0e:27:a5:d4:b5:4e:75:d5:6e:4b:10:f0:8a:64:
1d:bb:76:e5:cc:d9:10:bf:42:01:80:7a:21:33:cc:
c0:ff:2c:ec:a9:f5:7f:37:56:b5:51:89:03:f2:60:
80:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:1D:17:C9:D9:CA:7F:77:55:E4:16:D5:C5:E5:C4:BA:03:24:8E:92
X509v3 Authority Key Identifier:
keyid:81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/vx0XydnKf3dV5BbVxeXEugMkjpI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/gZP_6ds3YmsT-F18xFeq1cHzDJ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.28.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:0e:1f:f1:e5:21:bb:12:31:f2:41:92:f2:b6:41:01:28:34:
af:c4:0b:90:8e:0f:43:08:37:d8:4c:e5:8f:6d:bf:36:3d:8b:
ce:ec:8d:d3:0f:b8:28:a9:c5:54:ea:8b:24:42:3a:a4:e4:04:
a5:22:eb:57:7f:01:a8:f3:bb:3b:5d:9f:98:10:a1:85:8a:17:
4e:af:b9:76:e8:fa:51:76:4e:a8:59:a3:04:03:7f:49:07:7f:
a1:7a:7f:87:f9:9c:84:de:92:ed:0c:64:42:3f:88:1c:ff:27:
20:b6:56:93:54:6d:bf:fb:30:08:bd:8f:db:39:2d:32:2a:0e:
da:ab:5a:dd:77:28:67:4d:32:3e:3e:9b:9a:ac:bd:0d:62:67:
7f:54:d9:68:e7:57:f9:56:d2:ea:c7:75:55:15:47:62:d4:17:
73:61:20:07:89:66:fc:08:ec:67:c1:db:c8:38:2e:32:03:e1:
ed:8a:d6:d3:91:c3:a3:77:66:d0:92:3f:68:ab:88:b2:bb:36:
57:29:98:2a:b2:21:e3:b6:d9:60:a9:e4:a9:ce:94:54:8a:56:
4c:44:a2:7f:50:39:4f:7d:c5:76:8d:04:7c:18:f1:bc:0e:50:
32:23:2c:0a:7d:9a:82:d2:dd:47:25:8e:9f:e6:d9:55:00:b8:
f5:84:5d:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:01 2024 by rpki-client on console-ams.rpki-client.org