Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/bI6kW3NXL9_IwYWwsDwPJt4fvrU.roa
File: bI6kW3NXL9_IwYWwsDwPJt4fvrU.roa (raw, json)
Hash identifier: rba58NiMfSRqgyunTUta1Hohq35usaJN/wMe9BJXECQ=
Subject key identifier: 6C:8E:A4:5B:73:57:2F:DF:C8:C1:85:B0:B0:3C:0F:26:DE:1F:BE:B5
Certificate issuer: /CN=f93ac6cd2240249bba60171f086e9101cc87ca24
Certificate serial: 0188499BC358A7CEAB381E2B1B272685FB7C
Authority key identifier: F9:3A:C6:CD:22:40:24:9B:BA:60:17:1F:08:6E:91:01:CC:87:CA:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-TrGzSJAJJu6YBcfCG6RAcyHyiQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/bI6kW3NXL9_IwYWwsDwPJt4fvrU.roa
Signing time: Tue 23 May 2023 17:15:24 +0000
ROA not before: Tue 23 May 2023 17:15:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 64249
IP address blocks: 147.189.137.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:30:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:49:9b:c3:58:a7:ce:ab:38:1e:2b:1b:27:26:85:fb:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f93ac6cd2240249bba60171f086e9101cc87ca24
Validity
Not Before: May 23 17:15:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6c8ea45b73572fdfc8c185b0b03c0f26de1fbeb5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:03:c7:08:eb:78:b1:b6:a6:2a:2c:37:c2:ae:
43:8d:ef:91:1a:dd:55:9b:8e:27:e6:e2:b2:cb:4c:
6b:ea:dd:5b:87:75:7d:82:11:7d:5e:48:3e:72:84:
f5:a4:18:51:16:bc:48:1f:20:a8:09:b2:85:b5:6e:
f7:f6:f5:2b:0e:41:4c:27:d7:e4:fd:36:91:24:23:
ba:00:15:e8:c6:0d:3d:55:c2:d0:88:79:f4:7c:11:
3a:d8:70:9c:7d:e0:d2:21:e2:3b:55:ec:6a:09:01:
36:1f:79:77:e6:bd:c6:10:98:86:d0:f5:06:8e:ef:
ec:74:67:8a:fb:5c:1b:0f:78:1d:88:e8:1c:32:62:
c8:07:8c:0e:fa:7a:26:b1:55:96:f3:ca:63:ee:21:
27:11:75:67:cd:54:14:72:97:56:d2:e2:e6:a1:90:
82:70:66:3c:5d:75:b6:64:c3:e8:47:41:ff:27:fe:
78:ec:bf:07:59:20:d7:11:77:38:e3:39:92:ed:57:
fa:ad:0e:d2:25:7b:e5:62:d6:c7:39:f3:a0:11:ad:
1c:d3:f7:98:4a:26:2f:5b:b5:cd:46:89:a3:3d:0f:
a5:3e:52:e8:35:b6:05:3d:b3:0e:0a:b2:6b:b9:cf:
fc:5a:6e:8c:0e:4a:c9:9f:00:7c:76:c0:1c:5a:14:
fa:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:8E:A4:5B:73:57:2F:DF:C8:C1:85:B0:B0:3C:0F:26:DE:1F:BE:B5
X509v3 Authority Key Identifier:
keyid:F9:3A:C6:CD:22:40:24:9B:BA:60:17:1F:08:6E:91:01:CC:87:CA:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-TrGzSJAJJu6YBcfCG6RAcyHyiQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/bI6kW3NXL9_IwYWwsDwPJt4fvrU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/1-TrGzSJAJJu6YBcfCG6RAcyHyiQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.189.137.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:e7:96:a3:2c:64:b1:c8:ec:00:22:7f:74:30:5f:49:21:84:
1e:38:80:11:ec:b1:f8:24:bb:07:34:34:6d:ff:aa:f0:54:c4:
d9:86:0e:9b:8f:3a:62:97:eb:fa:98:ec:7a:cf:d2:ab:be:d0:
77:62:bf:ce:24:0e:36:77:a4:f5:74:c1:75:7c:7e:4a:2e:2f:
f7:fa:2d:49:00:65:1e:7d:ad:9e:63:d3:e0:74:68:bf:7f:13:
79:c0:1a:6a:48:f2:62:67:6a:16:4d:d5:6b:a4:23:7a:a7:0e:
4d:8c:f8:c3:85:2e:c3:bc:df:da:fc:cf:02:f7:53:1f:dc:80:
c0:75:da:28:54:e8:93:95:d5:da:3b:8e:82:e5:e5:6d:35:75:
8a:3e:cd:cc:6e:eb:84:0d:1f:eb:24:d3:c1:79:4e:0c:16:5c:
4e:66:c6:51:77:9f:66:90:fa:a9:62:5f:c1:63:2f:71:69:19:
47:f8:10:86:25:30:87:e2:44:e3:55:0d:03:c7:f0:14:2b:14:
21:fb:7b:75:c6:10:5a:0b:5e:37:8c:0e:20:24:53:1c:0e:af:
eb:74:84:3f:5a:73:1d:87:b0:de:82:ea:e8:52:a7:a6:c1:6e:
b0:16:71:37:6c:2a:43:11:64:04:00:9b:92:c4:07:8c:f1:17:
97:18:77:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:08 2024 by rpki-client on console-ams.rpki-client.org