Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/Owz9432C-tl7bk7J3IpjiMu8wg4.roa
File: Owz9432C-tl7bk7J3IpjiMu8wg4.roa (raw, json)
Hash identifier: cfd21jobh/Ci9p6iXFEXFweqtf4OUuCZnE3srmkgwgE=
Subject key identifier: 3B:0C:FD:E3:7D:82:FA:D9:7B:6E:4E:C9:DC:8A:63:88:CB:BC:C2:0E
Certificate issuer: /CN=826605b4d27f13968e8794e6ef091223748817d8
Certificate serial: 01856ED4D2506470FD9E6E8FD462447A2199
Authority key identifier: 82:66:05:B4:D2:7F:13:96:8E:87:94:E6:EF:09:12:23:74:88:17:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/Owz9432C-tl7bk7J3IpjiMu8wg4.roa
Signing time: Sun 01 Jan 2023 19:35:19 +0000
ROA not before: Sun 01 Jan 2023 19:35:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212786
IP address blocks: 147.136.88.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 13 Jun 2023 11:22:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:d4:d2:50:64:70:fd:9e:6e:8f:d4:62:44:7a:21:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=826605b4d27f13968e8794e6ef091223748817d8
Validity
Not Before: Jan 1 19:35:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3b0cfde37d82fad97b6e4ec9dc8a6388cbbcc20e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:b4:34:34:c4:61:da:e9:15:4b:74:c1:81:63:
bf:06:7f:02:db:0a:6b:b7:31:3b:e9:95:59:be:4f:
69:39:ff:b5:d2:c2:38:0b:1e:3b:fd:cd:3b:f7:90:
2d:14:d7:fa:23:34:bf:8b:e7:d2:07:d4:de:13:e5:
0a:88:c1:68:a3:71:0a:b2:93:6b:fc:a6:8f:4b:89:
93:c8:2c:01:c0:a9:c7:60:f3:45:46:5e:84:ce:78:
55:ca:39:04:5f:84:58:39:55:14:29:b6:3a:8f:2e:
ac:ac:50:00:d8:34:c1:0b:12:42:7c:a2:01:6e:20:
3d:dc:85:0b:8f:f7:b9:27:2f:33:69:51:70:4e:ae:
ad:bb:a7:a3:1d:7b:a3:34:14:da:04:65:d7:ca:76:
14:4d:10:b6:84:c4:1d:3a:97:c7:3b:f0:e0:b9:8f:
48:5b:09:23:b8:84:0e:da:e4:55:32:ba:7c:06:df:
e1:17:80:86:49:b5:d3:54:a6:ce:28:a1:02:c4:0c:
36:ac:47:95:05:77:8c:f9:2d:24:00:f6:1b:31:67:
63:86:1b:69:a4:1b:3e:35:a8:54:ed:91:40:14:b0:
2c:fe:f3:31:a2:f1:ec:cd:9d:02:94:d6:85:a7:b5:
c8:d3:66:96:af:ee:78:b3:cc:93:c9:95:11:9b:9e:
56:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:0C:FD:E3:7D:82:FA:D9:7B:6E:4E:C9:DC:8A:63:88:CB:BC:C2:0E
X509v3 Authority Key Identifier:
keyid:82:66:05:B4:D2:7F:13:96:8E:87:94:E6:EF:09:12:23:74:88:17:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/Owz9432C-tl7bk7J3IpjiMu8wg4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.136.88.0/22
Signature Algorithm: sha256WithRSAEncryption
94:1f:8c:71:9f:8f:c5:52:21:aa:a5:34:6a:ec:cb:b9:47:93:
f7:34:ab:21:75:d7:07:b7:a9:78:6a:02:aa:c1:85:a0:d9:56:
73:63:d5:3a:58:8d:29:09:48:ab:24:d7:30:12:df:3b:11:6d:
12:02:53:91:53:52:24:72:a8:9e:95:b3:ee:67:86:3d:cf:ec:
25:57:b4:f7:1c:dc:39:17:f1:8f:6b:a4:09:32:5c:8e:43:ec:
6a:80:24:7d:e9:62:dc:fc:94:f0:c1:a7:9c:04:13:59:ad:53:
26:58:b3:f3:24:c0:90:43:25:88:bd:b4:29:d3:4b:8c:44:e3:
31:ad:f3:1f:c8:26:57:70:92:6d:3b:3d:68:43:2e:fc:6d:dc:
42:ed:90:15:ea:59:fc:15:8e:1e:ae:5d:b0:8c:88:4b:e0:0d:
e3:20:9b:ef:9d:6c:79:af:08:04:05:0d:36:98:87:9a:8a:c7:
fb:ae:d2:7a:3a:77:f4:29:ae:4a:7a:ca:fd:67:58:ee:2a:87:
e8:77:74:68:f4:1f:72:c8:ff:88:4b:02:27:49:1a:ed:b1:e0:
71:37:0e:a3:38:85:25:f0:37:2a:98:24:ba:ac:e2:37:2f:b2:
54:f9:83:10:5d:17:c4:45:73:3a:86:52:a2:9c:04:af:48:88:
12:5f:77:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:50 2024 by rpki-client on console-ams.rpki-client.org