Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/y2qg6GHO2wMMKZ7Pbc_pOKJgcBY.roa
File: y2qg6GHO2wMMKZ7Pbc_pOKJgcBY.roa (raw, json)
Hash identifier: zc2q1LtyK3BB9ERmocUEht083d8avfbriYnOyXy7i6o=
Subject key identifier: CB:6A:A0:E8:61:CE:DB:03:0C:29:9E:CF:6D:CF:E9:38:A2:60:70:16
Certificate issuer: /CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Certificate serial: 01887543A1819B407B6D0B012B56BC7A7C2E
Authority key identifier: 81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/y2qg6GHO2wMMKZ7Pbc_pOKJgcBY.roa
Signing time: Thu 01 Jun 2023 04:42:26 +0000
ROA not before: Thu 01 Jun 2023 04:42:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 83.147.61.0/24 maxlen: 24
83.147.11.0/24 maxlen: 24
83.147.9.0/24 maxlen: 24
83.147.23.0/24 maxlen: 24
83.147.27.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 01 Jun 2023 14:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:75:43:a1:81:9b:40:7b:6d:0b:01:2b:56:bc:7a:7c:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Validity
Not Before: Jun 1 04:42:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cb6aa0e861cedb030c299ecf6dcfe938a2607016
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:bf:f7:df:78:2a:cc:d5:5a:7a:4f:9c:c6:b2:
0b:a6:b8:6a:c8:94:55:5c:29:1b:6c:04:e1:63:45:
7a:69:62:91:d7:d6:35:16:5f:03:33:b2:f6:f7:f2:
62:8c:ba:20:20:47:de:ee:fa:73:2e:f1:02:51:cf:
97:91:44:b3:e1:64:83:7a:c6:11:9a:49:4e:ef:08:
53:f0:6c:2f:4b:c8:f4:6a:79:9b:de:90:05:aa:8d:
0c:17:34:c8:a9:e7:68:fa:e2:f9:65:35:6c:82:61:
74:64:2f:83:56:7a:f6:4b:97:6e:c0:14:91:f7:89:
c9:9c:3d:26:36:cb:51:07:93:a0:37:3c:4b:a5:30:
5e:89:81:6c:01:cd:29:3d:c7:d2:e6:58:a1:19:83:
c1:f6:eb:e2:9f:2c:16:9a:91:49:ea:81:4f:e2:a4:
f0:7d:88:35:6d:4c:bb:d9:ad:1d:ca:38:5a:bb:ed:
50:76:1f:39:6a:81:18:1b:fe:74:fd:54:26:d8:6c:
15:d1:85:d8:7d:52:5f:af:07:e1:ca:2d:ac:7f:11:
9b:87:f4:54:e7:2f:da:4f:59:61:65:84:fc:d6:48:
8e:fc:94:69:e3:45:40:1d:bf:4c:c9:67:f7:c2:fc:
63:16:65:63:99:bc:c1:71:f1:a2:78:03:01:de:6e:
4e:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:6A:A0:E8:61:CE:DB:03:0C:29:9E:CF:6D:CF:E9:38:A2:60:70:16
X509v3 Authority Key Identifier:
keyid:81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/y2qg6GHO2wMMKZ7Pbc_pOKJgcBY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/gZP_6ds3YmsT-F18xFeq1cHzDJ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.9.0/24
83.147.11.0/24
83.147.23.0/24
83.147.27.0/24
83.147.61.0/24
Signature Algorithm: sha256WithRSAEncryption
69:62:3e:a6:5a:18:5e:2a:65:8a:ce:0a:07:07:8a:99:c2:f9:
d1:14:b3:77:25:f4:4b:07:72:71:d1:01:93:c4:b2:b5:01:2c:
55:fc:f8:3b:23:ff:9c:4d:ae:39:58:d7:00:5e:ff:58:a1:85:
4b:72:f4:2d:4f:5e:cc:51:ee:eb:c4:2d:c2:d5:d7:89:dd:2c:
47:9d:c6:cb:61:ed:6f:fa:b4:8f:7a:78:46:02:0a:13:d6:76:
83:ee:f8:85:e8:71:2d:8c:83:ac:b9:b7:9b:88:05:fb:a7:a1:
a1:da:05:66:7a:dd:c2:57:66:7b:b4:32:6b:ed:ae:06:c1:2e:
0e:9b:57:c9:c9:3e:50:84:cf:cb:e4:92:92:44:84:c4:25:8b:
60:fc:32:a1:02:de:c0:00:e5:9a:e5:71:25:28:e5:b2:8f:d7:
67:e1:e2:ad:bf:60:a6:00:0e:ae:d7:46:de:aa:3a:04:2e:31:
34:5d:45:56:42:4e:f8:12:3b:c2:d5:04:a2:4d:8b:e6:c4:e2:
56:15:17:78:f1:ee:fa:8e:8a:bc:f0:9b:76:ae:5d:9d:31:1a:
32:7a:0d:5b:86:ea:57:df:a3:90:38:5c:39:2f:be:61:4b:1f:
08:d4:ca:38:97:02:26:13:1e:3a:44:3f:64:73:35:fe:8c:8d:
54:21:f7:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:01 2024 by rpki-client on console-ams.rpki-client.org