Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/xBK0MZf8O0qkiqEfmOl0rdkqRgg.roa
File: xBK0MZf8O0qkiqEfmOl0rdkqRgg.roa (raw, json)
Hash identifier: Va8IYm+3LpXUysQUIJRBHSOtiKkOfFcBpmNla4ZcRcI=
Subject key identifier: C4:12:B4:31:97:FC:3B:4A:A4:8A:A1:1F:98:E9:74:AD:D9:2A:46:08
Certificate issuer: /CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Certificate serial: 018F2D99C29E86D51D63FF082FC0007D0E40
Authority key identifier: 81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/xBK0MZf8O0qkiqEfmOl0rdkqRgg.roa
Signing time: Tue 30 Apr 2024 06:03:22 +0000
ROA not before: Tue 30 Apr 2024 06:03:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 32097
IP address blocks: 83.147.36.0/22 maxlen: 22
Validation: Failed, certificate revoked on Thu 02 Jan 2025 13:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:2d:99:c2:9e:86:d5:1d:63:ff:08:2f:c0:00:7d:0e:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Validity
Not Before: Apr 30 06:03:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c412b43197fc3b4aa48aa11f98e974add92a4608
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:56:f7:f0:75:30:9e:1e:f6:e7:c7:78:d4:a3:
c0:55:86:08:86:4e:a9:c7:b7:11:f3:2a:1a:71:90:
59:36:3f:0e:59:41:f3:b5:cf:59:0c:98:8e:4f:8a:
e8:4c:a1:c2:59:9f:98:66:cc:a3:97:28:36:ea:ad:
a2:4a:b9:eb:29:89:73:bb:f9:f7:46:e2:2c:6f:d2:
c0:c5:99:7a:bb:58:44:01:3f:29:77:dd:70:3c:49:
f0:c3:50:6b:24:ec:43:27:85:a6:91:9a:ae:a6:78:
86:92:39:75:d0:cb:a2:25:d2:7b:e0:fe:22:ba:b7:
01:e9:86:6d:cf:94:d4:e8:ab:ce:31:91:35:27:f7:
0d:fb:4a:a4:d3:29:6f:88:fc:27:85:16:b1:ed:4f:
9a:17:7b:1c:1b:a8:d0:f3:db:34:09:b4:b4:ce:ba:
83:28:29:de:1e:72:d4:0c:21:cd:f7:a6:68:c7:b9:
38:0f:1f:56:ca:dd:7a:cc:42:37:13:c5:e6:4c:d3:
c0:4d:a2:e7:82:d5:66:e7:c7:58:c8:d9:11:f2:3c:
b3:26:4b:0d:02:28:1b:0a:f9:06:e5:d3:28:0d:86:
7a:82:ac:3f:bd:0f:d8:a5:c9:52:8c:da:2e:b6:63:
b4:c9:75:78:9c:c6:c8:8a:b4:7a:52:02:50:1c:9e:
fc:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:12:B4:31:97:FC:3B:4A:A4:8A:A1:1F:98:E9:74:AD:D9:2A:46:08
X509v3 Authority Key Identifier:
keyid:81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/xBK0MZf8O0qkiqEfmOl0rdkqRgg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/gZP_6ds3YmsT-F18xFeq1cHzDJ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.36.0/22
Signature Algorithm: sha256WithRSAEncryption
05:13:97:17:28:8e:3f:2b:dd:35:eb:08:00:b7:39:c3:a5:46:
27:78:69:45:48:74:74:4d:f1:ad:33:52:f5:14:73:f6:d7:f8:
ea:d9:1c:4a:3b:ac:f0:65:a1:65:15:18:94:61:bf:6a:a3:54:
43:28:10:75:8d:75:3d:87:b9:06:e5:41:0d:47:1e:a2:ec:e0:
9a:20:45:a4:8f:6a:1f:3c:1e:1b:d1:18:4b:77:19:b1:12:32:
59:32:f4:4d:7b:be:9b:aa:d0:8e:5c:ab:2e:5e:e2:56:54:49:
2e:99:43:ab:5e:62:c4:29:b5:e9:83:59:25:f1:6c:73:1f:77:
78:21:98:9a:3f:3d:68:2b:08:1a:37:c5:f3:c7:1c:ec:04:ec:
0c:8a:a7:b2:34:75:64:98:e7:15:fd:40:20:7d:77:46:4f:ee:
e8:1f:0f:55:7c:fe:58:15:0b:da:60:61:6c:1f:a6:1f:5d:01:
80:bd:4b:90:e7:5f:43:6e:59:76:c9:47:b4:db:c7:46:de:8b:
55:a5:20:66:97:f1:de:a5:2d:70:01:3a:53:60:25:7d:ed:1f:
8d:a2:e4:1e:ab:8c:52:d5:41:c8:12:e0:d2:6c:ea:e0:c3:cf:
4e:6e:81:0b:dc:81:01:4b:d1:6f:7d:4b:7b:4b:00:c1:04:dd:
ea:e6:d9:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:34:06 2025 by rpki-client