Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/pbePiT4WtH--Ja08xrVemQF_Gf4.roa
File: pbePiT4WtH--Ja08xrVemQF_Gf4.roa (raw, json)
Hash identifier: bi7/QEko2wQW9IAk+B7coc7cmDOG5PHFUO23AYL7LCA=
Subject key identifier: A5:B7:8F:89:3E:16:B4:7F:BE:25:AD:3C:C6:B5:5E:99:01:7F:19:FE
Certificate issuer: /CN=94166b704843d3d9754095c83a91b493828200a2
Certificate serial: 0185BD144AEEFACD4061A4848320BDD799C3
Authority key identifier: 94:16:6B:70:48:43:D3:D9:75:40:95:C8:3A:91:B4:93:82:82:00:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lBZrcEhD09l1QJXIOpG0k4KCAKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/pbePiT4WtH--Ja08xrVemQF_Gf4.roa
Signing time: Tue 17 Jan 2023 00:15:01 +0000
ROA not before: Tue 17 Jan 2023 00:15:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 0
IP address blocks: 171.22.147.0/24 maxlen: 24
185.235.71.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 31 Jan 2023 00:43:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:bd:14:4a:ee:fa:cd:40:61:a4:84:83:20:bd:d7:99:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94166b704843d3d9754095c83a91b493828200a2
Validity
Not Before: Jan 17 00:15:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a5b78f893e16b47fbe25ad3cc6b55e99017f19fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:37:38:ca:db:1e:4b:e0:44:bd:83:ac:26:32:
fc:80:16:cd:60:84:92:89:8c:7e:01:78:65:57:91:
20:3f:ce:19:16:63:84:68:f4:3a:45:65:10:ec:ed:
b7:61:c4:a1:f9:b8:d1:07:34:96:7a:dd:60:6d:34:
47:7d:e6:27:76:47:ba:46:29:44:15:44:a3:01:fe:
d0:2e:b0:bb:3f:56:5c:c4:3a:7a:e9:ec:d4:38:ca:
ef:0e:e1:a6:b0:74:ce:f1:73:76:63:bc:0e:6a:8c:
d4:bd:68:2b:df:95:a5:bd:2c:6b:78:6e:6a:7a:df:
60:6f:1b:95:9c:83:83:33:a0:27:26:d5:25:eb:1c:
bd:ca:17:52:d0:e1:50:fb:c6:9d:03:9a:1a:10:5c:
eb:94:ac:42:11:cb:de:72:65:6a:2d:53:41:75:77:
42:91:a9:d8:4d:d7:d2:7e:08:60:88:b0:cb:e5:54:
c1:a0:c1:06:73:9e:36:a6:bc:ac:ae:fb:81:6e:7a:
43:d3:fb:b8:dd:76:30:96:77:f3:51:84:54:43:e2:
ab:62:66:58:a6:fc:0a:65:07:13:0a:c1:93:8b:71:
3b:6d:60:1f:cf:a6:b1:09:dd:67:57:35:27:fc:20:
44:a0:71:27:52:e8:4f:e3:1d:86:62:fb:c1:f8:53:
d8:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:B7:8F:89:3E:16:B4:7F:BE:25:AD:3C:C6:B5:5E:99:01:7F:19:FE
X509v3 Authority Key Identifier:
keyid:94:16:6B:70:48:43:D3:D9:75:40:95:C8:3A:91:B4:93:82:82:00:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lBZrcEhD09l1QJXIOpG0k4KCAKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/pbePiT4WtH--Ja08xrVemQF_Gf4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/lBZrcEhD09l1QJXIOpG0k4KCAKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
171.22.147.0/24
185.235.71.0/24
Signature Algorithm: sha256WithRSAEncryption
35:6c:18:20:a0:98:62:5e:dc:98:de:0c:f5:bc:01:49:37:fc:
6e:4b:c9:45:17:be:21:9d:c6:42:21:3f:9a:71:f9:09:d9:61:
98:45:3e:64:1d:19:28:19:13:a7:d0:eb:01:8b:45:ed:69:16:
9c:91:1e:cc:c9:a7:22:25:d1:c5:5f:a1:a9:32:0a:5a:70:f8:
12:57:f8:09:06:44:d2:4b:9c:d1:22:d8:d3:20:9a:57:0b:0f:
20:2a:68:5b:93:d5:1e:4e:d5:6e:8b:59:37:ca:44:65:6b:80:
95:9c:b3:f8:67:82:e4:2a:8f:4a:2a:c3:22:fb:48:73:74:c4:
46:41:a5:3a:9b:f5:bf:20:a8:e6:0f:b0:2a:96:49:d8:7e:b9:
39:01:b8:dc:42:ee:bc:a8:8e:a8:aa:9a:21:8a:49:20:d3:75:
29:47:60:94:92:a0:b1:44:71:a6:fb:5e:68:5c:98:a5:82:47:
05:85:99:c2:e0:34:22:c4:22:59:a4:6b:34:70:ef:95:b4:4e:
fa:20:4d:d0:ed:9d:69:25:78:2b:4f:9a:4d:4b:00:86:85:8e:
9c:63:2a:ff:ab:99:17:3d:2c:af:d9:59:b0:90:11:5a:e4:b6:
74:55:19:ed:8f:ed:23:27:36:38:d0:07:cd:23:19:96:9f:3e:
cf:a5:ab:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:31 2024 by rpki-client on console-fra.rpki-client.org