Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/dE60sFZ9hIV6FnfSkSLvCfWkQmg.roa
File: dE60sFZ9hIV6FnfSkSLvCfWkQmg.roa (raw, json)
Hash identifier: qrAYCIOqmKGfjacFmkdoGroEMiSJaOAEITWT82b4bg4=
Subject key identifier: 74:4E:B4:B0:56:7D:84:85:7A:16:77:D2:91:22:EF:09:F5:A4:42:68
Certificate issuer: /CN=826605b4d27f13968e8794e6ef091223748817d8
Certificate serial: 01856ED4CEC5F0CEBA3A8A318979022F1BE7
Authority key identifier: 82:66:05:B4:D2:7F:13:96:8E:87:94:E6:EF:09:12:23:74:88:17:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/dE60sFZ9hIV6FnfSkSLvCfWkQmg.roa
Signing time: Sun 01 Jan 2023 19:35:18 +0000
ROA not before: Sun 01 Jan 2023 19:35:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200019
IP address blocks: 147.136.80.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 13 Jun 2023 11:22:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:d4:ce:c5:f0:ce:ba:3a:8a:31:89:79:02:2f:1b:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=826605b4d27f13968e8794e6ef091223748817d8
Validity
Not Before: Jan 1 19:35:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=744eb4b0567d84857a1677d29122ef09f5a44268
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:2b:20:98:6a:b7:b6:16:1e:e6:25:37:fa:a6:
ea:43:01:59:68:73:7c:df:8c:97:15:ca:b3:8e:8c:
c0:4a:26:fa:65:77:20:e3:54:76:79:29:06:34:ae:
42:03:59:36:16:5f:e4:ce:45:10:91:bc:6e:11:6a:
2c:ee:25:6e:23:9d:df:8c:97:41:8d:74:66:20:f1:
95:da:4a:c2:a8:42:b6:49:9d:83:2e:1a:4a:66:5a:
1d:d8:db:cf:4d:60:a9:c8:6f:31:1a:0e:9a:64:e6:
54:b9:91:96:e2:af:ef:20:dd:00:57:87:2c:11:64:
a3:f0:cd:c5:92:0c:f6:8a:66:63:2f:d4:4c:4e:ae:
87:a8:3e:f4:d3:60:1a:0b:2a:f1:27:ac:51:15:60:
25:9f:52:c5:b2:f6:33:ab:5f:d2:5c:54:b0:3c:ce:
03:ad:38:a4:eb:81:45:3a:df:4f:b2:f4:f1:d8:42:
ab:81:f6:10:69:dc:a9:9d:fc:ab:d8:15:95:01:4c:
df:44:45:b9:70:6f:97:2c:fa:dc:32:f8:f9:86:d7:
03:e8:fd:4a:ff:32:51:26:b3:61:ed:31:42:d9:72:
3a:15:71:cd:8a:3c:8e:49:11:92:3e:26:c2:41:bb:
2b:54:07:56:8a:5b:45:12:36:8b:a0:12:46:9e:48:
38:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:4E:B4:B0:56:7D:84:85:7A:16:77:D2:91:22:EF:09:F5:A4:42:68
X509v3 Authority Key Identifier:
keyid:82:66:05:B4:D2:7F:13:96:8E:87:94:E6:EF:09:12:23:74:88:17:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/dE60sFZ9hIV6FnfSkSLvCfWkQmg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.136.80.0/22
Signature Algorithm: sha256WithRSAEncryption
5d:d4:af:88:6b:00:06:a2:e9:00:e7:d9:83:04:d5:35:90:cd:
32:9f:11:04:38:07:3b:e3:19:fe:0d:02:f8:5b:86:46:ae:db:
81:38:1d:19:a5:4d:92:5b:da:32:99:61:39:94:90:f4:d9:ad:
d0:14:fd:2a:76:aa:ec:f2:e2:34:4e:14:13:84:e7:c0:09:4f:
f9:ef:5a:30:e6:87:0c:35:17:57:97:de:28:36:61:4f:8c:34:
be:79:b8:e9:81:ba:39:87:00:2c:ca:aa:ea:c9:02:d5:42:61:
89:a4:55:40:37:9f:33:09:c7:7c:2f:aa:1d:ca:73:ed:52:5c:
74:b4:cb:0a:58:c0:95:57:23:b2:01:2d:a0:c4:30:81:6a:33:
28:ae:28:a1:e6:d7:46:f0:0c:fb:b9:d8:42:3b:3b:3d:7e:85:
65:68:ae:5b:89:b2:c4:90:3c:d7:3c:19:6c:00:f8:8c:be:f5:
4d:54:20:1f:58:79:6e:89:db:c4:44:d8:64:3d:b7:aa:0c:cb:
e7:e0:51:09:ce:a3:ed:0e:0a:cf:9f:8e:9e:0f:43:ff:0a:5f:
d7:f1:f5:dc:01:9f:9c:5a:f4:1a:26:6a:5e:e7:4d:a2:75:7c:
b0:c2:cf:b4:fd:21:0a:a0:80:71:71:c9:b7:4f:c2:48:c5:31:
d6:7f:82:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:50 2024 by rpki-client on console-fra.rpki-client.org