Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/IyPbp1uRTUk4eRfZJWwxh8cJ9Rw.roa
File: IyPbp1uRTUk4eRfZJWwxh8cJ9Rw.roa (raw, json)
Hash identifier: KR8DBCTpFF+Q12Cx5nyWg0V6b+9LPkxOvoOSaAWbxk4=
Subject key identifier: 23:23:DB:A7:5B:91:4D:49:38:79:17:D9:25:6C:31:87:C7:09:F5:1C
Certificate issuer: /CN=f93ac6cd2240249bba60171f086e9101cc87ca24
Certificate serial: 01856E790A7CEC8B3B9037765B39CF41DAE9
Authority key identifier: F9:3A:C6:CD:22:40:24:9B:BA:60:17:1F:08:6E:91:01:CC:87:CA:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-TrGzSJAJJu6YBcfCG6RAcyHyiQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/IyPbp1uRTUk4eRfZJWwxh8cJ9Rw.roa
Signing time: Sun 01 Jan 2023 17:55:04 +0000
ROA not before: Sun 01 Jan 2023 17:55:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 64249
IP address blocks: 147.189.132.0/24 maxlen: 24
147.189.137.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 23 May 2023 17:15:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:79:0a:7c:ec:8b:3b:90:37:76:5b:39:cf:41:da:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f93ac6cd2240249bba60171f086e9101cc87ca24
Validity
Not Before: Jan 1 17:55:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2323dba75b914d49387917d9256c3187c709f51c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:5e:13:62:79:5a:1f:23:11:6c:52:b0:b9:e6:
fe:50:f0:d4:10:10:4b:d1:3a:87:67:76:7f:e7:df:
89:8f:75:5a:23:b3:63:a0:e2:9b:56:ca:96:df:7b:
10:60:ee:db:04:29:98:fa:e4:5b:84:b6:0c:3b:03:
4f:e2:ad:e5:66:f8:19:67:2d:5c:59:2d:f4:5e:41:
c8:32:54:3a:0f:e6:b9:0e:90:f7:56:08:93:09:14:
db:bb:6c:9e:0a:39:1f:4e:2b:a4:88:cc:48:f3:f2:
8c:f3:e7:ee:fd:99:9b:d3:e0:4e:ee:b5:55:32:d8:
54:56:21:3a:06:13:15:b8:3a:df:41:c4:cc:14:6e:
c9:76:21:bc:55:ae:a1:a0:7e:74:3a:66:4a:1d:49:
3c:b8:b0:b6:52:ec:69:9e:d4:fb:f6:6c:ac:64:2f:
fd:58:96:70:05:17:02:86:48:4e:83:bb:97:01:45:
14:a1:39:76:61:fd:7f:4d:a0:0d:84:ae:96:e7:ea:
d5:fb:b4:bc:0d:78:7c:8c:13:55:5d:a9:38:4e:ba:
a5:78:9f:64:ca:82:d7:d4:1a:fa:7f:8a:09:31:4a:
5a:83:6b:24:62:ab:52:e9:09:36:bd:70:d5:46:7b:
b0:27:01:a2:e5:29:97:3e:96:1d:56:6e:d2:f7:4d:
a3:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:23:DB:A7:5B:91:4D:49:38:79:17:D9:25:6C:31:87:C7:09:F5:1C
X509v3 Authority Key Identifier:
keyid:F9:3A:C6:CD:22:40:24:9B:BA:60:17:1F:08:6E:91:01:CC:87:CA:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-TrGzSJAJJu6YBcfCG6RAcyHyiQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/IyPbp1uRTUk4eRfZJWwxh8cJ9Rw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/1-TrGzSJAJJu6YBcfCG6RAcyHyiQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.189.132.0/24
147.189.137.0/24
Signature Algorithm: sha256WithRSAEncryption
33:ae:25:1f:59:f5:30:f0:3f:00:22:7c:b6:69:c7:85:95:ff:
99:fe:90:12:3d:f5:22:57:12:d0:71:6c:cb:3a:f3:85:86:4b:
89:1d:c9:34:ae:14:54:8f:12:eb:6c:d0:0e:8c:8e:9a:1b:db:
36:38:2e:6b:81:b6:e8:8c:fc:01:9f:dd:f2:df:01:a7:3f:4f:
90:06:20:13:16:f2:3f:69:3d:4b:37:7a:de:e4:3d:e8:0e:ac:
e5:f7:98:d9:d2:52:db:fe:b7:9f:ec:1d:4f:6e:28:51:bb:f9:
2b:5c:5e:24:fc:df:83:95:34:5b:1d:45:b5:77:27:1e:08:13:
bf:5f:62:05:a1:6a:30:fd:25:a8:87:19:12:d5:15:72:99:c8:
cd:55:da:23:8d:76:ac:d2:41:3f:6a:02:53:79:c7:00:8d:8e:
0a:3b:9e:b9:a3:3a:67:45:5f:00:3c:01:7f:94:3f:0f:94:82:
07:07:67:7a:46:cd:8e:58:91:6d:3d:33:42:62:56:54:2a:cb:
e7:b0:c0:75:d9:92:8e:d7:57:e5:b1:6e:c8:01:b6:45:84:b8:
b3:e2:87:a5:31:da:6c:d2:09:36:ea:46:98:4c:d0:cd:d5:e2:
c2:19:42:f6:02:a8:6c:5c:8b:2a:fa:95:7a:0d:ef:8e:ff:51:
1d:7b:0f:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:08 2024 by rpki-client on console-ams.rpki-client.org