Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/RwVoekOgqbNzJ25l-rlk7VnuVfU.roa
File: RwVoekOgqbNzJ25l-rlk7VnuVfU.roa (raw, json)
Hash identifier: csIn48eG0+a/LzMjQ0728ge+VOqRkRuuUEIfEI9tmoc=
Subject key identifier: 47:05:68:7A:43:A0:A9:B3:73:27:6E:65:FA:B9:64:ED:59:EE:55:F5
Certificate issuer: /CN=826605b4d27f13968e8794e6ef091223748817d8
Certificate serial: 01856ED4CF288ECACD1E5A4E99DE206B9F6B
Authority key identifier: 82:66:05:B4:D2:7F:13:96:8E:87:94:E6:EF:09:12:23:74:88:17:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/RwVoekOgqbNzJ25l-rlk7VnuVfU.roa
Signing time: Sun 01 Jan 2023 19:35:18 +0000
ROA not before: Sun 01 Jan 2023 19:35:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200023
IP address blocks: 147.136.64.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 13 Jun 2023 11:22:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:d4:cf:28:8e:ca:cd:1e:5a:4e:99:de:20:6b:9f:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=826605b4d27f13968e8794e6ef091223748817d8
Validity
Not Before: Jan 1 19:35:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4705687a43a0a9b373276e65fab964ed59ee55f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:34:7c:cc:f5:77:a5:f1:fd:02:ad:4e:8b:95:
49:64:94:28:ec:6f:eb:2a:1a:10:a7:fe:d8:79:aa:
a3:30:03:dc:b4:32:5f:21:b9:5b:7b:1f:2e:b4:0f:
47:1f:52:45:59:21:23:99:3e:fc:d1:f0:a1:3e:b4:
4e:ef:77:06:e4:fc:e1:bd:e0:53:9d:97:31:fa:9c:
25:d9:36:ce:0d:47:7c:2a:c2:28:d0:13:0e:bf:7a:
43:7f:f2:1c:2d:0c:ef:ee:d3:20:aa:dc:c8:c0:c6:
84:e3:82:84:e0:2d:bb:1f:19:35:ce:ea:11:a7:2e:
00:66:85:2b:2e:ca:7e:32:e4:73:d0:7b:f2:c4:cb:
ea:6f:12:15:d3:7f:c9:3b:d9:e6:58:d6:1b:46:0f:
fb:75:49:20:bc:8d:d9:ca:37:0d:e7:f2:78:ce:b1:
73:25:d2:c4:75:c3:08:a7:64:76:b6:3e:0f:bc:7c:
59:70:da:9b:b3:4e:51:fb:5c:75:03:b3:23:a1:f2:
79:b6:5b:f7:9d:7d:b4:2b:28:da:ac:36:da:e4:51:
fa:4b:3a:2d:e8:e3:c0:44:c3:f5:c3:1b:10:ab:09:
73:c1:1a:06:b7:b4:e6:68:9a:0b:a5:2d:5b:9e:42:
3f:16:c3:44:a8:33:00:d7:a7:44:7c:e8:f3:81:d0:
29:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:05:68:7A:43:A0:A9:B3:73:27:6E:65:FA:B9:64:ED:59:EE:55:F5
X509v3 Authority Key Identifier:
keyid:82:66:05:B4:D2:7F:13:96:8E:87:94:E6:EF:09:12:23:74:88:17:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/RwVoekOgqbNzJ25l-rlk7VnuVfU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.136.64.0/22
Signature Algorithm: sha256WithRSAEncryption
73:50:4f:ae:04:00:68:5b:be:4b:a8:36:9b:fe:40:33:8b:1e:
d5:ed:93:83:99:f3:7e:43:87:1e:99:eb:99:2d:f0:2c:da:fd:
c1:5d:3b:a5:24:be:9c:6c:52:5f:9d:ad:99:98:29:7f:68:18:
72:fb:b7:6e:e1:46:4f:ae:9a:ff:83:cb:0b:95:9c:10:c4:33:
0e:82:46:a3:da:0e:81:60:8f:38:b6:5c:d9:26:4b:25:88:2f:
55:7b:26:36:29:a2:0c:1d:72:6c:d9:28:4e:a8:14:d1:3e:6d:
4e:7d:7d:d3:b8:c6:ba:36:e8:e5:8c:06:9d:94:10:1e:45:88:
65:c1:a8:12:61:b5:1b:a9:4b:bf:61:5e:db:0c:1f:6a:8f:b0:
be:da:77:5a:db:5c:df:86:0e:cd:13:54:6c:db:19:f4:18:d0:
80:c2:f9:07:e7:98:3b:db:17:9d:ee:a6:c4:64:9a:f2:53:d9:
44:44:c1:93:bf:d2:82:cd:df:0c:e8:a9:da:f2:c4:62:19:64:
d0:27:46:16:65:d6:2e:ef:30:2e:79:74:11:98:cc:37:72:d8:
d4:e5:ce:28:51:c6:78:a6:46:c2:1e:2a:48:79:d5:78:bc:7d:
4b:1d:09:b7:33:fd:61:e3:d8:59:a7:58:9e:ed:5f:88:13:2b:
4d:81:98:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:50 2024 by rpki-client on console-fra.rpki-client.org