Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/37cde7-e98c-4f26-9dd3-434f74d499d7/1/PbAkEmMgpq1vs4_vTNytLFd85yg.roa
File: PbAkEmMgpq1vs4_vTNytLFd85yg.roa (raw, json)
Hash identifier: /rMh1x/YjrohnF1MqHj58okSSgy/vqfisZAj/B379f8=
Subject key identifier: 3D:B0:24:12:63:20:A6:AD:6F:B3:8F:EF:4C:DC:AD:2C:57:7C:E7:28
Certificate issuer: /CN=2307e7974fb8312a2e6aaa996f5ef8474a53107c
Certificate serial: 0186A2409DBE669DD3F04606D324B2067CEB
Authority key identifier: 23:07:E7:97:4F:B8:31:2A:2E:6A:AA:99:6F:5E:F8:47:4A:53:10:7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Iwfnl0-4MSouaqqZb174R0pTEHw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/37cde7-e98c-4f26-9dd3-434f74d499d7/1/PbAkEmMgpq1vs4_vTNytLFd85yg.roa
Signing time: Thu 02 Mar 2023 12:16:29 +0000
ROA not before: Thu 02 Mar 2023 12:16:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43431
IP address blocks: 146.19.189.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:a2:40:9d:be:66:9d:d3:f0:46:06:d3:24:b2:06:7c:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2307e7974fb8312a2e6aaa996f5ef8474a53107c
Validity
Not Before: Mar 2 12:16:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3db024126320a6ad6fb38fef4cdcad2c577ce728
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:1e:0a:ac:71:fc:a8:ea:62:99:ae:5f:06:5e:
dc:d8:c2:84:93:4a:bd:d3:e5:43:02:ac:dd:49:12:
62:af:19:f7:2c:34:14:e6:71:b8:bf:ef:ed:05:99:
f8:3b:c8:09:73:34:ca:ed:85:47:e7:6f:c8:7e:74:
85:63:4f:ba:15:e0:e1:b3:da:01:f8:06:61:6a:79:
46:0e:dc:d7:bb:0d:cd:15:bb:2c:53:20:f9:9b:68:
88:91:e6:d7:1d:3e:58:28:3c:4a:9e:a5:e5:c2:32:
94:06:5f:a2:0e:eb:5a:fd:3f:6f:79:d9:bc:10:3d:
94:43:bf:ec:33:a6:4a:40:56:98:8c:e6:82:62:42:
72:ee:9b:42:b1:b5:1a:86:3c:57:0a:6c:a4:83:d4:
99:71:37:94:c7:0b:21:b8:4a:e6:14:d6:d0:e7:df:
fd:1c:d2:1b:3c:ec:2d:6d:a3:23:96:ab:c9:a0:4c:
7f:38:00:f1:51:6d:19:58:ea:76:97:32:82:2f:1c:
0a:25:dc:e4:33:37:1b:10:d3:25:ce:36:d6:d5:ef:
56:7e:6d:c8:f6:31:d6:f9:15:ae:fc:71:f2:d9:02:
23:cd:6c:7d:ea:a8:71:d7:63:06:6c:0d:a3:ed:dd:
fb:27:05:01:9d:5d:2d:6b:8d:32:e1:fb:9f:1c:e0:
b6:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:B0:24:12:63:20:A6:AD:6F:B3:8F:EF:4C:DC:AD:2C:57:7C:E7:28
X509v3 Authority Key Identifier:
keyid:23:07:E7:97:4F:B8:31:2A:2E:6A:AA:99:6F:5E:F8:47:4A:53:10:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Iwfnl0-4MSouaqqZb174R0pTEHw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/37cde7-e98c-4f26-9dd3-434f74d499d7/1/PbAkEmMgpq1vs4_vTNytLFd85yg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/37cde7-e98c-4f26-9dd3-434f74d499d7/1/Iwfnl0-4MSouaqqZb174R0pTEHw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.189.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:a4:4a:b2:bf:99:a3:6d:35:f2:bd:3c:93:81:36:74:b9:b4:
f7:2d:1a:7c:54:ad:8b:50:9a:d7:95:f2:e4:1e:b7:65:c3:0f:
54:36:74:40:c3:ab:3a:9a:d6:b1:65:95:63:29:e2:03:d9:a0:
1e:a2:64:0e:60:f1:a2:17:b9:f0:07:61:af:58:bf:17:1b:86:
56:c4:87:d1:40:26:aa:15:75:74:5a:2c:2e:55:59:2a:6f:94:
31:cb:a2:1a:74:18:1c:db:98:21:1a:a2:55:27:f2:0c:01:c6:
92:a8:20:0f:97:49:14:0a:b6:65:a0:cf:80:f6:fa:92:c1:21:
d0:74:1e:50:ad:63:02:40:16:07:2b:79:c9:37:37:fe:4b:a2:
27:56:3e:c0:81:3b:5d:09:1b:94:4c:32:93:6b:10:a8:1c:04:
a4:4a:f4:26:70:b6:e9:98:a8:e6:ab:43:2c:3c:31:e5:ed:0e:
04:10:5f:01:05:ca:59:fc:3d:7a:85:a0:4f:8c:f9:04:2a:06:
e6:72:fd:78:b6:a8:5f:f1:6d:87:08:c8:a8:49:3c:84:b3:2e:
d7:67:13:64:b6:6d:8b:f9:37:fd:ba:2e:0b:7b:58:c1:5e:ff:
f1:a7:cf:3b:9c:b6:6c:c0:ff:e5:a3:f7:6b:ba:83:83:f0:e8:
b0:2c:25:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:57 2023 by rpki-client on console-fra.rpki-client.org