Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/PK8IZ4slXNzvX4NHyCLiYwhkGmY.roa
File: PK8IZ4slXNzvX4NHyCLiYwhkGmY.roa (raw, json)
Hash identifier: w/FDMXmMt3hzb00G+1wDH3OqaHRUiwywJaWcs32REWU=
Subject key identifier: 3C:AF:08:67:8B:25:5C:DC:EF:5F:83:47:C8:22:E2:63:08:64:1A:66
Certificate issuer: /CN=826605b4d27f13968e8794e6ef091223748817d8
Certificate serial: 01856ED4D13B32EC9FB7576FFB20C7C377BE
Authority key identifier: 82:66:05:B4:D2:7F:13:96:8E:87:94:E6:EF:09:12:23:74:88:17:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/PK8IZ4slXNzvX4NHyCLiYwhkGmY.roa
Signing time: Sun 01 Jan 2023 19:35:19 +0000
ROA not before: Sun 01 Jan 2023 19:35:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211585
IP address blocks: 147.136.72.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 13 Jun 2023 11:22:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:d4:d1:3b:32:ec:9f:b7:57:6f:fb:20:c7:c3:77:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=826605b4d27f13968e8794e6ef091223748817d8
Validity
Not Before: Jan 1 19:35:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3caf08678b255cdcef5f8347c822e26308641a66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:f0:51:2c:16:b8:25:af:f4:ac:81:2a:d8:bc:
3f:a0:ca:b1:0c:24:3d:da:4f:af:2e:25:71:8d:05:
fa:89:88:4c:86:da:bc:b4:c7:1e:9a:b9:a8:d0:65:
22:c5:f8:8a:a9:86:cb:3c:73:c5:8f:28:d5:a8:a1:
ed:d9:3d:da:c2:08:c2:3e:46:c1:4c:5e:3a:46:a6:
e8:01:bf:3f:53:11:77:6c:6c:00:04:75:d8:77:8a:
6c:d2:73:a3:d9:2e:d9:a7:85:97:1f:8a:af:cc:2c:
18:7b:34:4d:af:0d:f2:c9:58:f2:24:9c:09:c3:16:
d9:37:28:e4:c4:c0:4a:a2:de:1b:61:54:57:87:24:
7a:be:e9:3c:23:fb:f5:1e:0c:a8:dd:5a:54:9d:b7:
7c:ae:e3:2f:66:f1:4c:ce:7f:ae:08:b7:ec:a4:31:
f9:81:f9:c5:f0:b3:b6:ae:59:e6:30:8a:30:88:35:
63:5e:24:d8:22:a0:4b:f2:88:5f:ae:cc:32:12:3b:
37:12:17:79:c1:88:72:b2:7d:44:84:5f:b4:a7:52:
b6:d5:f8:29:6c:ff:b1:cb:89:3e:66:d0:1a:36:2c:
62:19:a3:cf:50:10:15:2c:c1:3b:8b:a8:b7:19:55:
61:29:1d:ac:58:83:ac:ee:8c:ac:5f:98:1c:df:48:
44:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:AF:08:67:8B:25:5C:DC:EF:5F:83:47:C8:22:E2:63:08:64:1A:66
X509v3 Authority Key Identifier:
keyid:82:66:05:B4:D2:7F:13:96:8E:87:94:E6:EF:09:12:23:74:88:17:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/PK8IZ4slXNzvX4NHyCLiYwhkGmY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.136.72.0/22
Signature Algorithm: sha256WithRSAEncryption
a4:ea:cd:42:95:8c:7b:b5:f2:4a:d9:19:42:bb:df:c0:02:fa:
7c:9f:b7:f4:9c:02:d1:ae:18:c3:fd:06:a9:cc:12:41:9f:f0:
0c:1a:11:4b:7e:03:db:9b:ac:92:2b:1e:99:31:4f:97:df:5e:
ce:b7:9b:0e:e2:e8:60:de:3d:1a:22:85:aa:bb:28:48:59:e8:
c8:f0:60:8f:04:ec:7f:26:ba:b1:88:67:fd:50:14:8c:ed:2d:
8c:13:da:e6:17:bf:4e:94:30:8d:81:91:d0:67:d1:7c:c6:b5:
84:f9:60:be:0b:99:dc:b9:fc:07:14:47:8a:d4:a6:96:c0:02:
c0:89:5d:81:51:fb:d2:a9:b2:c6:d6:85:64:f3:42:bd:fd:02:
04:9f:d7:ad:64:94:2f:0b:e7:ca:18:9b:4d:b9:60:1d:cf:41:
5e:60:4d:f8:2a:a8:ea:c5:75:91:3e:01:12:0b:e7:8d:d7:81:
aa:db:52:64:08:1b:c5:73:6c:3d:12:0d:47:30:18:96:1c:9d:
40:e4:11:21:83:49:21:90:a7:d7:ac:18:29:c7:aa:61:7e:cb:
da:b3:70:a6:e1:66:e0:43:01:7c:7b:32:20:ac:50:37:37:27:
93:60:03:6c:52:5e:59:b1:91:8a:14:4f:72:62:c8:33:e5:27:
da:61:c6:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:50 2024 by rpki-client on console-fra.rpki-client.org