Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/loswjWM1UYAfxuKm8-diipS7lxw.roa
File: loswjWM1UYAfxuKm8-diipS7lxw.roa (raw, json)
Hash identifier: ynEUkI0IYBq2jbrCwx515PtoHZoOavvt22KRyDN33NA=
Subject key identifier: 96:8B:30:8D:63:35:51:80:1F:C6:E2:A6:F3:E7:62:8A:94:BB:97:1C
Certificate issuer: /CN=21bad74e7f6c0949a2736a57478496d7d8b450e6
Certificate serial: 0185730CD32E7AC5B071F4F06DBF7C2B9755
Authority key identifier: 21:BA:D7:4E:7F:6C:09:49:A2:73:6A:57:47:84:96:D7:D8:B4:50:E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IbrXTn9sCUmic2pXR4SW19i0UOY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/loswjWM1UYAfxuKm8-diipS7lxw.roa
Signing time: Mon 02 Jan 2023 15:14:58 +0000
ROA not before: Mon 02 Jan 2023 15:14:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202369
IP address blocks: 147.234.33.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:0c:d3:2e:7a:c5:b0:71:f4:f0:6d:bf:7c:2b:97:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21bad74e7f6c0949a2736a57478496d7d8b450e6
Validity
Not Before: Jan 2 15:14:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=968b308d633551801fc6e2a6f3e7628a94bb971c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:dc:a9:1a:f6:a8:e9:22:65:9a:88:9d:09:d0:
a4:20:3f:32:69:5f:35:c6:b6:4d:23:a0:18:e6:c4:
ef:ef:65:cb:17:73:ab:d1:a2:09:8e:e4:81:36:96:
f5:34:e1:e6:18:ed:dc:1c:c1:4b:52:0c:6e:78:6a:
51:15:6f:cb:39:d5:ec:ec:30:39:5a:1e:cf:2d:97:
35:7a:91:09:97:00:6f:a1:69:dc:5f:f4:98:fd:47:
90:d1:bf:8b:00:dd:88:dc:9b:5e:7c:a6:3e:92:a5:
b9:09:19:f1:25:53:7f:c4:78:8e:60:86:a3:20:f6:
44:74:d6:af:cb:57:5b:6e:74:61:84:ac:9c:4e:b9:
0c:99:0b:a9:84:b9:d2:b4:19:f3:2b:d2:69:98:89:
01:58:b7:55:e7:fc:65:8f:9f:4d:89:11:41:4a:10:
f9:ef:74:0f:7c:99:3a:ef:7f:5b:58:db:56:13:06:
a2:09:03:2c:86:b2:02:fe:f9:33:02:e0:6c:e1:2e:
51:96:2c:bd:13:cd:64:03:c8:f0:62:96:fa:eb:6e:
df:ba:e7:01:c7:27:c6:6b:13:28:80:49:3c:30:0a:
67:3b:96:44:7f:53:e0:f2:a0:1f:58:92:7a:6b:a8:
ab:71:06:73:70:da:39:13:66:a4:3e:79:0c:eb:96:
3a:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:8B:30:8D:63:35:51:80:1F:C6:E2:A6:F3:E7:62:8A:94:BB:97:1C
X509v3 Authority Key Identifier:
keyid:21:BA:D7:4E:7F:6C:09:49:A2:73:6A:57:47:84:96:D7:D8:B4:50:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IbrXTn9sCUmic2pXR4SW19i0UOY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/loswjWM1UYAfxuKm8-diipS7lxw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/IbrXTn9sCUmic2pXR4SW19i0UOY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.234.33.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:a9:65:c1:92:c5:4c:d1:58:26:a3:ec:13:ff:76:e8:31:8a:
91:a1:3f:bd:be:ff:26:74:c7:37:a0:f5:64:5d:d0:09:1b:5d:
04:dd:08:fb:49:8e:cd:0a:9e:cb:ff:30:c4:d9:ca:05:f2:63:
7c:0e:86:46:9e:e4:77:f2:c4:48:47:53:cf:b2:05:ce:4f:75:
61:79:aa:22:c1:d1:7f:4f:91:41:1b:da:8f:b8:50:b8:e0:6a:
24:f9:ea:9f:6c:27:17:c6:a4:68:5e:fe:81:57:70:4a:f5:d4:
8e:ab:2d:8f:de:20:5d:b8:15:5f:11:25:66:90:37:02:d2:a8:
a4:b9:9d:55:40:2d:c7:9a:d6:65:5e:6c:68:4e:52:8c:b7:01:
7d:3c:52:83:19:c5:4a:e0:b9:dc:9d:b0:fa:7a:a7:8a:80:1a:
1a:c2:d2:6a:00:86:66:c0:d6:47:a7:0f:04:bd:fb:28:38:33:
0d:99:4a:5f:6f:34:d8:84:98:60:ee:fa:d2:18:63:3e:4d:f0:
c6:4a:47:a7:b3:a7:c8:f8:92:a3:1e:52:8d:53:53:52:c1:8a:
03:c6:70:66:05:27:d6:2e:f5:74:72:15:bd:29:ff:63:fd:c1:
87:60:1b:ae:66:e7:92:85:63:9c:3d:ff:34:d7:c2:fe:54:44:
af:7e:96:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:00:44 2024 by rpki-client on console-ams.rpki-client.org