Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/DZ4YUKTZOeRY6Gi1qULuwVBtdYg.roa
File: DZ4YUKTZOeRY6Gi1qULuwVBtdYg.roa (raw, json)
Hash identifier: fiSTgFv9NRlv7OKXaGEBijuMKoELxAAaG/rUeAGTBXY=
Subject key identifier: 0D:9E:18:50:A4:D9:39:E4:58:E8:68:B5:A9:42:EE:C1:50:6D:75:88
Certificate issuer: /CN=826605b4d27f13968e8794e6ef091223748817d8
Certificate serial: 018B21672B31D03BA50C7BD984FD43E025EF
Authority key identifier: 82:66:05:B4:D2:7F:13:96:8E:87:94:E6:EF:09:12:23:74:88:17:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/DZ4YUKTZOeRY6Gi1qULuwVBtdYg.roa
Signing time: Thu 12 Oct 2023 01:01:31 +0000
ROA not before: Thu 12 Oct 2023 01:01:31 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199614
IP address blocks: 147.136.88.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:21:67:2b:31:d0:3b:a5:0c:7b:d9:84:fd:43:e0:25:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=826605b4d27f13968e8794e6ef091223748817d8
Validity
Not Before: Oct 12 01:01:31 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0d9e1850a4d939e458e868b5a942eec1506d7588
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:d0:b3:ae:b2:af:68:26:d9:1a:2e:7d:d3:65:
6b:f1:d0:52:da:41:03:60:2c:a4:99:e0:03:f0:c7:
b0:1d:07:34:38:ac:eb:3a:26:62:6f:ca:90:0b:bf:
e3:da:78:fb:03:c4:5c:a5:17:52:da:a0:96:dd:e0:
af:8f:2c:fd:f8:67:c7:c5:e1:19:2d:bf:79:b4:dd:
1d:5a:28:83:78:71:b9:e1:bc:50:14:86:35:59:fd:
db:6d:da:83:2e:da:0e:c7:e4:80:d5:10:2a:21:29:
68:b8:f5:2e:19:1e:5e:61:b6:5b:b1:58:d2:f7:e9:
7d:51:19:05:b9:11:3f:92:01:6b:f3:00:e6:7c:8c:
14:cb:4a:25:43:34:b3:1a:fe:99:a3:75:14:6c:19:
51:2f:5c:ca:ee:2f:5b:af:35:4a:39:5c:e3:31:64:
84:ff:bd:c5:7d:2b:88:20:dc:16:e9:f8:dc:fe:08:
83:35:75:fc:46:48:ac:42:af:71:9c:6b:0d:80:99:
83:90:44:29:32:56:1c:57:b0:ba:3f:ad:3d:f3:f4:
99:cc:60:41:2b:84:f9:83:c1:2c:df:6f:f5:be:6f:
7e:98:be:7f:c9:8b:15:ea:cf:3c:a6:39:58:a0:57:
7b:d2:c4:3e:98:a9:6c:f0:df:2f:be:85:c2:58:bd:
cd:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:9E:18:50:A4:D9:39:E4:58:E8:68:B5:A9:42:EE:C1:50:6D:75:88
X509v3 Authority Key Identifier:
keyid:82:66:05:B4:D2:7F:13:96:8E:87:94:E6:EF:09:12:23:74:88:17:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/DZ4YUKTZOeRY6Gi1qULuwVBtdYg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.136.88.0/22
Signature Algorithm: sha256WithRSAEncryption
aa:2d:20:27:4a:25:9b:a5:35:b0:61:2a:8f:6c:f2:5a:24:ab:
95:91:86:e3:bd:a6:5b:17:6e:f7:31:d5:07:69:a8:95:2d:7c:
b5:bf:f8:35:4a:53:ca:a6:8b:3d:cb:eb:bd:8a:83:ff:32:eb:
cf:cf:08:e7:94:e1:e0:e5:15:28:f2:3d:a0:ec:4b:b8:e3:92:
6b:34:a5:ac:79:72:62:28:8a:c2:6d:6c:81:2d:a8:44:fd:ed:
ff:c6:07:c6:a8:3d:bb:53:ff:20:e6:ef:eb:69:d7:0c:46:ce:
bd:55:5c:60:d9:3d:2e:65:9e:25:aa:57:4b:82:df:96:4f:10:
47:6b:f2:77:f9:9e:66:c8:a7:35:f9:62:e8:8c:f2:af:9f:64:
bc:2a:40:89:10:ec:a5:60:0e:f2:25:cd:6b:95:cb:c7:62:92:
06:2f:13:b6:3f:e2:b8:52:25:9d:ce:ac:8e:38:3d:bf:b9:27:
fc:f1:04:1d:40:da:52:c9:a3:64:16:3b:12:1f:29:88:5d:c1:
86:3a:4a:59:9c:ce:38:f6:5f:fa:bc:f4:0e:fa:b7:3a:47:0e:
62:87:5b:89:57:7c:e8:47:fb:1e:1b:57:2f:83:62:50:53:a4:
16:dc:db:86:fc:47:2b:47:59:4f:ed:e7:12:ac:04:c7:57:05:
94:27:3d:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:50 2024 by rpki-client on console-ams.rpki-client.org