Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/z8jjuLolfLi6kllIcTxQ937yUwg.roa
File: z8jjuLolfLi6kllIcTxQ937yUwg.roa (raw, json)
Hash identifier: jLMm/nvv95F2GMWFMFGp62tJFcTCZXJ2z4eso/2+lok=
Subject key identifier: CF:C8:E3:B8:BA:25:7C:B8:BA:92:59:48:71:3C:50:F7:7E:F2:53:08
Certificate issuer: /CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Certificate serial: 018A607B8DF4E19B11F2DFB62213A51B8B88
Authority key identifier: 81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/z8jjuLolfLi6kllIcTxQ937yUwg.roa
Signing time: Mon 04 Sep 2023 13:57:04 +0000
ROA not before: Mon 04 Sep 2023 13:57:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3320
IP address blocks: 83.147.36.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:29:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:60:7b:8d:f4:e1:9b:11:f2:df:b6:22:13:a5:1b:8b:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Validity
Not Before: Sep 4 13:57:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cfc8e3b8ba257cb8ba925948713c50f77ef25308
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:69:fd:68:b6:61:31:6a:63:7d:f1:80:a9:79:
84:9a:98:4e:49:12:1b:86:e9:e0:40:7a:53:4f:86:
e9:2a:f8:6b:10:70:b8:35:eb:b5:6a:36:74:c5:c4:
6e:5d:3b:37:30:a0:bd:90:ef:12:2e:26:cb:8a:2f:
aa:01:06:ed:d4:12:c1:34:20:1f:4d:cf:bb:6d:ca:
b2:f9:39:58:bc:36:c0:34:55:86:d7:2f:cb:f1:cb:
1c:04:88:e5:4a:3c:e5:7a:1d:6d:04:18:29:ee:ac:
f1:89:84:0c:c8:57:bb:9c:6c:44:65:77:22:d2:7e:
76:1e:a4:6b:d1:cc:6d:dd:07:ac:26:3f:dc:2b:7c:
6c:52:45:9c:47:62:d9:c8:9a:8f:23:24:7e:60:5e:
04:50:10:75:1d:d1:bb:a9:e3:bc:cc:84:8e:e3:dc:
5e:b0:7d:a0:07:7b:b4:c9:d5:48:ae:77:16:55:50:
41:e3:3e:32:65:9a:e2:1a:43:5d:50:d2:ed:98:f9:
ec:f1:99:2d:81:eb:35:09:30:23:a4:80:e7:11:25:
15:c7:68:c3:09:1d:f3:52:4e:71:5b:40:79:bc:45:
a7:61:f6:42:45:1b:7f:ff:af:2e:67:72:4d:82:3c:
e6:78:36:18:b2:b1:80:ee:12:9c:9d:ea:24:e4:76:
18:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:C8:E3:B8:BA:25:7C:B8:BA:92:59:48:71:3C:50:F7:7E:F2:53:08
X509v3 Authority Key Identifier:
keyid:81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/z8jjuLolfLi6kllIcTxQ937yUwg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/gZP_6ds3YmsT-F18xFeq1cHzDJ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.36.0/22
Signature Algorithm: sha256WithRSAEncryption
45:ab:a2:55:d7:5b:4e:7f:50:7a:3f:2d:e6:1d:e2:eb:21:d9:
74:5e:64:bf:2b:d8:87:e6:c3:45:ea:2e:6c:19:82:1c:e8:b1:
7b:cc:ed:d8:79:71:e4:11:24:e6:cd:6a:b8:0f:32:9d:f5:8d:
d1:7a:f3:d4:f3:9f:94:e9:3d:c8:d8:2f:90:8d:a0:d9:e7:03:
52:11:86:2f:13:a7:e1:83:97:9b:1d:42:f6:5f:58:0b:10:fc:
7e:09:ca:3f:da:20:b8:39:66:a3:3c:6d:f0:6f:4d:18:53:ae:
26:5a:e5:b4:e0:98:08:8e:a0:cc:47:84:17:18:65:0a:68:27:
e6:3b:99:8f:b5:2f:d0:c4:d3:5c:0d:5b:8a:81:fe:30:60:c3:
42:a3:81:34:d9:40:16:45:76:35:e6:dc:8e:e8:05:15:83:6f:
bb:8c:4a:54:48:ba:30:bb:92:d0:bb:c1:0e:ba:48:49:f1:6d:
2f:b6:a9:34:17:76:74:16:14:fa:9b:e2:c6:60:87:77:fe:d4:
34:62:20:d0:ff:a1:36:ac:52:e2:b8:83:2f:ef:2f:1f:1d:fe:
77:21:03:ce:ed:b7:c2:ba:d8:5c:f3:84:39:37:c5:19:6d:b7:
4b:94:a8:2a:3f:5b:05:a1:d6:2a:8e:25:cb:67:ed:92:96:cd:
28:dd:48:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:50 2024 by rpki-client on console-fra.rpki-client.org