Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/2wajVjpyBo-R3nqkMo7LKxfG3jU.roa
File: 2wajVjpyBo-R3nqkMo7LKxfG3jU.roa (raw, json)
Hash identifier: cKiJ/TeupMrGH8Mp7RSN0Ab63HWvDtifWkVQW8iU5eY=
Subject key identifier: DB:06:A3:56:3A:72:06:8F:91:DE:7A:A4:32:8E:CB:2B:17:C6:DE:35
Certificate issuer: /CN=21bad74e7f6c0949a2736a57478496d7d8b450e6
Certificate serial: 0185730CD09C90C39B9FDF99DDBE231E8FD5
Authority key identifier: 21:BA:D7:4E:7F:6C:09:49:A2:73:6A:57:47:84:96:D7:D8:B4:50:E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IbrXTn9sCUmic2pXR4SW19i0UOY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/2wajVjpyBo-R3nqkMo7LKxfG3jU.roa
Signing time: Mon 02 Jan 2023 15:14:57 +0000
ROA not before: Mon 02 Jan 2023 15:14:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201415
IP address blocks: 147.234.76.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:0c:d0:9c:90:c3:9b:9f:df:99:dd:be:23:1e:8f:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21bad74e7f6c0949a2736a57478496d7d8b450e6
Validity
Not Before: Jan 2 15:14:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=db06a3563a72068f91de7aa4328ecb2b17c6de35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:cf:f0:e7:86:af:27:f0:09:5d:49:d1:36:bf:
b8:28:2c:d1:bb:c6:d4:8a:67:03:00:a4:6e:46:3d:
10:2e:8d:dd:9b:46:27:b5:6b:cf:18:5c:f9:b0:56:
c1:d2:2f:72:f2:2f:db:6d:cb:1c:ee:51:60:db:d0:
b8:a8:9c:1a:76:17:6c:63:f5:74:34:26:9a:8f:99:
59:de:10:17:1e:4a:2f:0f:7d:63:52:58:25:fd:d1:
10:81:b8:bc:0d:1c:de:e8:e0:3f:5d:ba:44:81:7f:
1d:b3:b4:1a:ee:93:91:6d:ca:27:6b:a7:02:2d:f9:
11:47:b0:96:df:76:98:a6:df:2c:f4:7c:a0:9c:92:
d1:cf:f1:12:84:3f:64:8f:4b:b7:9b:e5:25:7d:49:
f8:5e:2b:f4:8e:b2:d8:42:0c:fb:ed:13:bf:1d:03:
77:20:9e:44:8f:fd:c9:55:c8:31:fd:8a:f3:8a:4b:
f7:f5:d6:8c:50:31:13:f2:66:1c:1f:aa:2d:26:f4:
23:c1:4a:4f:41:f8:73:54:3d:27:fd:fc:35:58:6f:
a5:7d:09:b1:6c:6b:14:26:18:12:f4:d1:23:0d:25:
72:74:7c:a6:03:1b:ad:d3:c4:20:81:d0:92:32:78:
d0:1d:64:d3:df:e0:36:8d:12:d5:76:35:45:55:d0:
04:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:06:A3:56:3A:72:06:8F:91:DE:7A:A4:32:8E:CB:2B:17:C6:DE:35
X509v3 Authority Key Identifier:
keyid:21:BA:D7:4E:7F:6C:09:49:A2:73:6A:57:47:84:96:D7:D8:B4:50:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IbrXTn9sCUmic2pXR4SW19i0UOY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/2wajVjpyBo-R3nqkMo7LKxfG3jU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/IbrXTn9sCUmic2pXR4SW19i0UOY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.234.76.0/24
Signature Algorithm: sha256WithRSAEncryption
37:bd:74:e2:f2:31:57:c8:01:d5:6c:ce:a9:f0:21:4e:37:d4:
f1:dc:fb:ce:63:61:6f:2d:ae:aa:96:20:4d:9c:4e:8b:81:a5:
51:d5:91:f2:25:da:38:80:67:cb:de:b9:b1:ea:da:bf:2a:c2:
c1:20:22:cc:7e:d2:51:71:cf:64:91:38:a2:0e:86:5d:25:0e:
e5:36:72:56:04:db:ad:88:ca:65:42:1c:da:e8:f5:28:57:d4:
71:b1:85:ef:85:be:d0:ae:82:0b:b3:6b:04:2e:44:d9:12:b5:
0f:2f:31:13:10:a0:9a:5f:7f:4c:51:01:47:dc:d2:72:45:60:
b2:54:68:44:37:c7:a7:5e:40:7e:56:eb:2b:d5:7c:3c:01:85:
5c:ba:41:45:d8:db:e4:bd:fd:6d:2e:e5:78:f1:b0:87:c3:66:
29:55:3a:c1:8b:37:57:e2:26:8c:82:88:bf:1a:a6:f9:48:1f:
ff:24:67:8d:72:1c:5c:10:05:32:c4:65:35:35:0e:db:be:7c:
84:46:d8:6d:c5:3c:58:dd:68:fe:4f:7e:93:44:6f:ff:19:38:
9a:55:f9:49:51:5c:a0:e1:e7:c7:b8:f0:f3:11:ee:5f:33:be:
5d:7b:09:39:d2:da:cd:9b:55:13:00:b8:16:7d:79:07:4d:32:
7b:85:3b:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:00:44 2024 by rpki-client on console-ams.rpki-client.org