Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/pY6OSvlc6zI0rOlO4Twziyx_f6o.roa
File: pY6OSvlc6zI0rOlO4Twziyx_f6o.roa (raw, json)
Hash identifier: 02dQLDXj1N6hPFjrjE1VGtTmGddxtF4c1M7rlrfazG4=
Subject key identifier: A5:8E:8E:4A:F9:5C:EB:32:34:AC:E9:4E:E1:3C:33:8B:2C:7F:7F:AA
Certificate issuer: /CN=826605b4d27f13968e8794e6ef091223748817d8
Certificate serial: 01856ED4D0DB3278F8D1DED68AEA994BC1A2
Authority key identifier: 82:66:05:B4:D2:7F:13:96:8E:87:94:E6:EF:09:12:23:74:88:17:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/pY6OSvlc6zI0rOlO4Twziyx_f6o.roa
Signing time: Sun 01 Jan 2023 19:35:18 +0000
ROA not before: Sun 01 Jan 2023 19:35:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210892
IP address blocks: 147.136.88.0/21 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:d4:d0:db:32:78:f8:d1:de:d6:8a:ea:99:4b:c1:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=826605b4d27f13968e8794e6ef091223748817d8
Validity
Not Before: Jan 1 19:35:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a58e8e4af95ceb3234ace94ee13c338b2c7f7faa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:ee:6e:47:09:75:e3:72:38:69:1c:dd:53:c5:
00:4c:ce:69:c5:89:15:c5:0c:c0:51:6e:fa:23:a3:
ae:a2:ef:33:d2:01:9a:56:98:9f:6e:7e:0a:60:a0:
ad:c3:4e:f5:96:cd:d6:4d:d7:9c:cf:cc:e3:06:46:
20:59:4d:1b:52:b3:c5:53:21:44:b0:5a:ed:ee:0e:
f9:56:0f:fa:7a:9f:71:27:67:6c:c5:a4:25:23:49:
3a:e5:dc:95:6b:32:8e:9a:9a:50:65:c2:43:db:2c:
a1:9d:95:6a:f5:ab:16:41:cd:8d:32:3b:7a:27:f3:
99:16:08:94:dc:fa:44:75:ca:fb:6b:49:5a:90:ab:
ba:3e:0f:76:43:ea:e9:7f:df:ee:92:5a:61:ec:ea:
46:99:32:cc:fa:e5:26:7b:7c:2e:e0:fc:a4:de:d9:
c8:d0:56:97:aa:7c:aa:2a:ed:b2:74:0f:7d:c0:bd:
a3:d5:44:ef:b2:30:1e:9f:0f:dc:f1:b4:a4:1c:c9:
e1:93:59:4e:fc:e1:3b:00:5d:3b:69:9a:bd:96:cf:
68:2f:01:b2:22:3e:a6:f8:5a:51:bd:71:f3:d7:3f:
02:e6:dd:24:34:5d:fc:5c:54:f7:b2:32:9d:bb:3f:
6e:0e:69:d9:87:2a:38:7d:1f:08:e0:89:b9:8c:80:
64:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:8E:8E:4A:F9:5C:EB:32:34:AC:E9:4E:E1:3C:33:8B:2C:7F:7F:AA
X509v3 Authority Key Identifier:
keyid:82:66:05:B4:D2:7F:13:96:8E:87:94:E6:EF:09:12:23:74:88:17:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/pY6OSvlc6zI0rOlO4Twziyx_f6o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.136.88.0/21
Signature Algorithm: sha256WithRSAEncryption
9e:e9:d8:af:1e:84:fd:8a:54:fd:cb:96:5d:1c:09:d6:58:e0:
c4:41:8e:06:27:1e:60:96:17:e6:d3:c7:bb:be:99:41:ba:12:
3b:f5:62:98:15:65:2f:e0:45:7b:b7:a8:96:2a:1a:cf:ff:f7:
47:5e:62:00:d0:ac:d7:08:28:2e:0c:a1:e8:05:b6:90:c9:d2:
62:29:d2:f4:2b:a3:f8:2e:e0:11:0a:9c:77:fc:98:07:a8:43:
42:f0:68:b7:98:57:14:da:f3:e2:31:65:c0:98:ae:20:96:d5:
b1:a1:e4:52:d5:88:c8:0f:85:b1:ac:cd:07:47:fb:fb:91:7b:
0e:c9:96:5b:5c:d2:91:a9:be:1c:3f:a1:b5:db:4d:c9:ca:50:
39:d0:f9:9b:2d:81:0b:1f:f3:cc:e3:9a:79:68:fe:79:d5:0c:
a0:8a:76:15:80:75:6b:1f:d8:e0:71:e5:9c:d3:79:27:18:fc:
69:87:98:02:8a:a7:36:c8:4c:59:58:5f:65:4c:ce:e9:aa:6c:
0d:63:ff:4c:66:81:0e:78:e8:2b:62:63:e6:a8:1a:df:6d:e8:
d6:39:2c:c2:8a:95:78:a4:b3:40:84:ba:c0:30:ba:31:03:2a:
40:6f:95:a8:87:7f:52:bb:4e:84:43:03:3f:a4:56:05:81:99:
59:e7:78:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:59 2023 by rpki-client on console-fra.rpki-client.org