Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/xwVFz-tN2JYoUyv3BDHs6rjeJkk.roa
File: xwVFz-tN2JYoUyv3BDHs6rjeJkk.roa (raw, json)
Hash identifier: SRYXJ2wg1RYUsS/NK3v0cLy6IsNEKb868dj64geSiKU=
Subject key identifier: C7:05:45:CF:EB:4D:D8:96:28:53:2B:F7:04:31:EC:EA:B8:DE:26:49
Certificate issuer: /CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Certificate serial: 018822D64C3B0F153B5100C69723C33FD40A
Authority key identifier: 81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/xwVFz-tN2JYoUyv3BDHs6rjeJkk.roa
Signing time: Tue 16 May 2023 04:34:09 +0000
ROA not before: Tue 16 May 2023 04:34:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 83.147.61.0/24 maxlen: 24
83.147.23.0/24 maxlen: 24
83.147.27.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 24 May 2023 03:56:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:22:d6:4c:3b:0f:15:3b:51:00:c6:97:23:c3:3f:d4:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Validity
Not Before: May 16 04:34:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c70545cfeb4dd89628532bf70431eceab8de2649
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:5d:41:d0:07:3e:fe:7c:a8:7d:3c:ae:85:ea:
be:78:61:65:5e:52:34:00:9f:d2:95:de:e3:28:15:
1f:af:5c:6b:83:4b:6b:a9:c2:d7:82:e7:eb:49:c5:
0d:7a:66:58:38:80:77:a1:29:25:55:6b:a1:0e:21:
44:0c:53:f6:11:f0:fe:a6:28:bf:e3:83:b8:9f:5a:
3a:02:c7:eb:8e:29:29:97:f7:df:cc:c7:19:00:39:
35:ec:d1:a5:b8:b8:0c:61:ad:f7:93:1d:82:53:eb:
91:50:29:c3:7b:99:65:a4:78:00:0c:6b:e5:f9:69:
62:74:64:7a:4d:c8:df:64:c9:6e:be:9d:db:de:9c:
68:9f:ae:92:b1:c4:48:8a:0c:f9:6f:4b:4a:73:27:
db:56:eb:f3:2d:88:ca:e5:b8:a1:83:fc:51:f8:1b:
a6:c4:38:88:26:3e:7f:05:65:1e:28:ff:80:59:f6:
15:00:49:0e:7f:a8:e4:54:06:6b:17:27:db:c6:ec:
d2:ae:ef:19:31:ea:54:bc:94:5b:87:00:6d:cd:f8:
01:a6:6d:1e:72:6c:d2:d4:bb:2b:46:57:b4:37:86:
02:89:cc:e5:7f:0a:09:86:29:83:58:53:74:6c:f3:
b1:7b:b0:ee:78:e1:e5:a6:d2:34:d2:33:aa:4d:7e:
7a:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:05:45:CF:EB:4D:D8:96:28:53:2B:F7:04:31:EC:EA:B8:DE:26:49
X509v3 Authority Key Identifier:
keyid:81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/xwVFz-tN2JYoUyv3BDHs6rjeJkk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/gZP_6ds3YmsT-F18xFeq1cHzDJ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.23.0/24
83.147.27.0/24
83.147.61.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:95:b9:6e:d1:c1:60:13:bb:1c:f2:5d:c7:6e:b0:92:1b:3a:
9c:07:0b:b7:6b:0c:e6:16:b0:a0:11:d9:24:d6:2e:5d:79:2c:
fa:7d:43:13:cd:6d:af:66:44:d2:37:47:f4:49:c4:a8:0d:f9:
e1:e4:6c:5a:a5:72:3f:50:97:6b:ea:0c:56:6f:7d:4c:40:c6:
12:96:30:ae:97:20:c3:69:f3:bc:93:be:87:79:b9:61:d3:1a:
bd:85:42:fb:73:02:0e:eb:d7:2a:e2:5c:c6:95:f3:d5:df:c3:
1b:8d:e0:6f:65:5b:3c:4a:b9:7e:4a:46:9b:08:38:ff:b9:e7:
d8:f1:6a:68:2e:d7:97:7c:74:d8:23:1d:b0:dd:b4:01:a9:4d:
dc:b3:6f:50:d4:55:86:a0:8b:a7:a5:ae:ea:57:12:25:9d:d9:
e4:a2:c5:81:95:a4:2b:ee:1b:f9:cb:dd:92:11:21:0a:38:ee:
37:05:91:24:55:c7:8f:2f:16:40:bf:1c:82:c6:b5:98:f2:bd:
90:0d:31:f7:e6:c1:52:a0:ec:92:db:89:6c:eb:81:b1:d1:82:
73:aa:55:3e:af:03:ea:c3:f3:a9:9b:2a:01:41:79:91:0e:85:
2b:5c:33:3a:8b:1a:83:5c:6e:5e:f7:66:96:1f:0e:e7:7c:a6:
74:68:91:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:01 2024 by rpki-client on console-ams.rpki-client.org