Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/PWeq-aLBdDXYQIG7SeVp5g8MfHY.roa
File: PWeq-aLBdDXYQIG7SeVp5g8MfHY.roa (raw, json)
Hash identifier: lRfGiNRB2aqk8HKjAnisDPDg8SOn/eQikbJgbYUzJOo=
Subject key identifier: 3D:67:AA:F9:A2:C1:74:35:D8:40:81:BB:49:E5:69:E6:0F:0C:7C:76
Certificate issuer: /CN=21bad74e7f6c0949a2736a57478496d7d8b450e6
Certificate serial: 018B5CC4B1C191F8EA64BDFF4182159CAFD6
Authority key identifier: 21:BA:D7:4E:7F:6C:09:49:A2:73:6A:57:47:84:96:D7:D8:B4:50:E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IbrXTn9sCUmic2pXR4SW19i0UOY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/PWeq-aLBdDXYQIG7SeVp5g8MfHY.roa
Signing time: Mon 23 Oct 2023 13:41:16 +0000
ROA not before: Mon 23 Oct 2023 13:41:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216130
IP address blocks: 147.234.27.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:5c:c4:b1:c1:91:f8:ea:64:bd:ff:41:82:15:9c:af:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21bad74e7f6c0949a2736a57478496d7d8b450e6
Validity
Not Before: Oct 23 13:41:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3d67aaf9a2c17435d84081bb49e569e60f0c7c76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:f4:d3:da:a1:4d:e2:58:20:64:76:03:b6:aa:
0d:5d:9d:a3:01:b4:4a:3f:03:2c:fc:8b:61:e7:75:
8c:7e:b5:ca:b5:f6:46:58:5f:40:69:57:9d:40:68:
71:80:50:27:6f:c2:e6:fd:65:59:54:78:45:5c:a6:
9b:ed:88:e5:35:40:06:5b:8f:8e:ce:b3:fe:80:19:
08:3f:6a:97:2a:86:65:0b:a4:a3:0f:01:d6:0a:ef:
12:97:0f:0a:44:fa:58:05:ba:62:c5:54:44:3e:bc:
ba:76:48:a9:23:84:d5:c6:3d:3d:0d:ec:11:61:21:
95:fc:d8:3b:0f:d3:69:3c:db:df:99:a0:82:d7:c4:
18:29:5b:75:54:82:bf:a6:33:20:72:fc:5a:6c:49:
d4:52:18:76:36:2e:6f:8d:01:14:cc:69:51:29:9a:
ed:c4:c1:e3:ee:e3:6d:d0:3e:d2:29:5e:16:ac:bc:
b5:0d:02:0c:e4:e3:f6:8a:4c:cd:e7:5f:03:1c:89:
65:97:de:98:fd:85:ff:01:1e:84:ef:c6:e9:b8:e9:
85:73:ef:2e:52:a0:24:f8:14:14:7a:6d:27:7d:46:
f6:3a:6a:45:f6:58:6d:89:da:62:9f:a2:30:af:4e:
6a:e8:82:33:a4:35:80:95:37:0e:6a:a6:85:97:56:
74:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:67:AA:F9:A2:C1:74:35:D8:40:81:BB:49:E5:69:E6:0F:0C:7C:76
X509v3 Authority Key Identifier:
keyid:21:BA:D7:4E:7F:6C:09:49:A2:73:6A:57:47:84:96:D7:D8:B4:50:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IbrXTn9sCUmic2pXR4SW19i0UOY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/PWeq-aLBdDXYQIG7SeVp5g8MfHY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/IbrXTn9sCUmic2pXR4SW19i0UOY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.234.27.0/24
Signature Algorithm: sha256WithRSAEncryption
66:ec:a3:41:d8:39:b7:94:4d:9a:32:d1:25:b3:c0:6f:43:b6:
85:d1:7e:d7:21:82:a1:5b:6e:32:2b:8f:b9:c4:c9:8e:38:9b:
c6:50:e1:18:27:08:23:63:0e:7d:b5:de:ce:5a:5f:80:bd:88:
96:42:6c:95:3a:9a:20:75:e4:3b:be:97:c8:e1:cd:ea:60:47:
dc:bb:0e:73:70:ac:9d:4e:33:4f:85:10:d2:37:5b:b7:57:f0:
29:40:4e:b6:3e:33:fb:0c:ca:82:ab:20:f3:d2:05:13:79:b7:
af:9b:74:72:5b:a6:0a:80:38:45:6f:32:3d:f3:bb:a1:8c:d2:
51:17:f2:93:92:fb:20:d6:33:fd:63:98:58:21:e7:ad:3d:57:
50:89:0b:3f:50:37:5b:64:61:af:01:65:cb:9b:c9:1e:bd:f6:
f0:28:96:22:59:30:c4:7d:21:69:04:03:f1:21:41:73:f6:a0:
60:3e:7f:be:b9:f8:8b:71:26:86:03:dd:67:91:59:4b:1a:9c:
11:2f:4f:93:9e:4d:c8:d0:de:c0:d7:48:44:3d:3d:c4:f2:b3:
78:64:d2:59:f6:e4:69:ef:72:33:d2:c8:2f:96:28:2e:d9:75:
da:87:5c:16:29:e8:c4:49:e4:0e:1e:ba:de:9d:6e:cb:5d:db:
2c:ed:c5:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:00:44 2024 by rpki-client on console-ams.rpki-client.org