Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/9ede92-a838-40bc-a266-162b02bb15bd/1/TZ8B9yF6GYQ2BCNE71DYCmFpy_A.roa
File: TZ8B9yF6GYQ2BCNE71DYCmFpy_A.roa (raw, json)
Hash identifier: lhUF1bv7iRgLeWgr9zlUwXmpq/klCnY3vd2itIEfNUc=
Subject key identifier: 4D:9F:01:F7:21:7A:19:84:36:04:23:44:EF:50:D8:0A:61:69:CB:F0
Certificate issuer: /CN=501459c027a86e1a55709f860937fe2f81b312f0
Certificate serial: 0187F69AFE03A12CB3EEFF662688BF403F85
Authority key identifier: 50:14:59:C0:27:A8:6E:1A:55:70:9F:86:09:37:FE:2F:81:B3:12:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UBRZwCeobhpVcJ-GCTf-L4GzEvA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/9ede92-a838-40bc-a266-162b02bb15bd/1/TZ8B9yF6GYQ2BCNE71DYCmFpy_A.roa
Signing time: Sun 07 May 2023 14:26:05 +0000
ROA not before: Sun 07 May 2023 14:26:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198949
IP address blocks: 147.233.128.0/17 maxlen: 17
147.233.0.0/17 maxlen: 17
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:f6:9a:fe:03:a1:2c:b3:ee:ff:66:26:88:bf:40:3f:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=501459c027a86e1a55709f860937fe2f81b312f0
Validity
Not Before: May 7 14:26:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4d9f01f7217a198436042344ef50d80a6169cbf0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:f5:4c:b0:6e:ec:3a:8e:50:cc:89:fc:68:45:
56:a0:19:df:cf:50:24:d8:cd:2e:95:82:75:57:49:
c0:b0:88:fb:9c:16:e2:26:e0:c4:1b:8d:de:71:b6:
1d:a3:24:79:ee:18:e0:8f:fc:0d:3b:a5:ec:2a:00:
84:95:36:9b:28:ba:b8:b4:12:e5:fe:42:13:71:e3:
5b:aa:1e:20:6a:e3:a1:d2:81:3a:44:be:a6:14:b4:
15:d6:31:d5:be:76:20:37:94:98:7d:4a:15:e2:95:
c6:f3:f6:83:b8:d7:44:06:d9:54:ec:98:b9:89:b9:
21:3f:8e:c7:a9:2e:e9:d3:e4:e9:23:27:2a:4e:35:
b3:5c:50:ab:1a:7f:c3:ee:6f:8f:db:50:35:48:c2:
ce:56:ad:4a:16:fe:61:25:fc:84:21:1e:c6:74:a9:
1f:21:a9:39:5a:4e:56:f5:d0:af:d1:18:ca:b5:5f:
86:f7:36:9b:d7:e0:ef:cd:4c:c1:b8:19:7c:5a:ed:
dd:67:93:71:eb:fd:48:26:9c:a1:9e:32:5e:47:6f:
3d:0f:09:fe:fa:98:2a:72:aa:a4:19:4e:74:26:11:
6d:c2:aa:92:68:0c:cc:56:b2:c1:c7:85:00:b8:6e:
26:92:c9:ed:bc:29:2c:db:26:8d:d9:b3:b1:66:b6:
08:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:9F:01:F7:21:7A:19:84:36:04:23:44:EF:50:D8:0A:61:69:CB:F0
X509v3 Authority Key Identifier:
keyid:50:14:59:C0:27:A8:6E:1A:55:70:9F:86:09:37:FE:2F:81:B3:12:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UBRZwCeobhpVcJ-GCTf-L4GzEvA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/9ede92-a838-40bc-a266-162b02bb15bd/1/TZ8B9yF6GYQ2BCNE71DYCmFpy_A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/9ede92-a838-40bc-a266-162b02bb15bd/1/UBRZwCeobhpVcJ-GCTf-L4GzEvA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.233.0.0/16
Signature Algorithm: sha256WithRSAEncryption
93:89:d1:6f:f2:ca:7b:a2:d3:83:ed:2e:70:43:03:8f:85:43:
da:36:0a:20:57:e0:42:2e:fb:12:e7:f8:ff:6f:6c:a7:15:b8:
8e:c9:17:6e:9f:5e:41:9a:18:5a:db:47:03:ba:fb:3a:0b:89:
d8:b1:85:a3:ab:90:6a:0f:9e:fc:e7:91:5e:ee:38:5a:4b:b7:
74:17:c4:76:f1:a9:9a:01:d5:a0:7e:3e:aa:e0:c9:b1:8d:51:
42:d5:64:f7:e3:31:38:3f:0b:fc:13:1a:50:e5:58:89:03:e7:
10:2f:3a:33:cd:4d:6e:19:a1:1e:b4:07:28:04:00:88:ff:3d:
52:70:be:cd:45:5c:67:8e:bb:a2:bd:b9:f4:6d:a3:74:b6:06:
57:9a:7f:c2:ca:31:1e:50:bf:cf:8b:d1:00:01:38:bb:8f:bb:
90:4c:f0:b5:7e:f1:57:8d:ca:55:9f:31:d6:d1:2e:7f:c3:8c:
8a:0d:16:0e:08:a0:12:27:74:35:33:20:c0:37:0b:a8:ee:e5:
ff:73:11:c1:8d:ba:54:01:01:be:be:79:c9:da:f6:ff:07:9d:
7c:2d:9a:d6:e1:93:a9:79:e0:b9:2a:a5:7c:51:84:54:e3:4f:
ab:67:4b:75:f9:64:26:87:64:7a:a9:3c:3f:a2:36:35:ff:3f:
88:a7:66:73
-----BEGIN CERTIFICATE-----
MIIE/DCCA+SgAwIBAgISAYf2mv4DoSyz7v9mJoi/QD+FMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUwMTQ1OWMwMjdhODZlMWE1NTcwOWY4NjA5MzdmZTJmODFi
MzEyZjAwHhcNMjMwNTA3MTQyNjA1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0ZDlmMDFmNzIxN2ExOTg0MzYwNDIzNDRlZjUwZDgwYTYxNjljYmYwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwfVMsG7sOo5QzIn8aEVWoBnfz1Ak
2M0ulYJ1V0nAsIj7nBbiJuDEG43ecbYdoyR57hjgj/wNO6XsKgCElTabKLq4tBLl
/kITceNbqh4gauOh0oE6RL6mFLQV1jHVvnYgN5SYfUoV4pXG8/aDuNdEBtlU7Ji5
ibkhP47HqS7p0+TpIycqTjWzXFCrGn/D7m+P21A1SMLOVq1KFv5hJfyEIR7GdKkf
Iak5Wk5W9dCv0RjKtV+G9zab1+DvzUzBuBl8Wu3dZ5Nx6/1IJpyhnjJeR289Dwn+
+pgqcqqkGU50JhFtwqqSaAzMVrLBx4UAuG4mksntvCks2yaN2bOxZrYIewIDAQAB
o4ICCDCCAgQwHQYDVR0OBBYEFE2fAfchehmENgQjRO9Q2AphacvwMB8GA1UdIwQY
MBaAFFAUWcAnqG4aVXCfhgk3/i+BsxLwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVUJSWndDZW9iaHBWY0otR0NUZi1MNEd6RXZBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYi85ZWRlOTItYTgzOC00MGJjLWEyNjYt
MTYyYjAyYmIxNWJkLzEvVFo4Qjl5RjZHWVEyQkNORTcxRFlDbUZweV9BLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYi85ZWRlOTItYTgzOC00MGJjLWEyNjYtMTYyYjAyYmIxNWJk
LzEvVUJSWndDZW9iaHBWY0otR0NUZi1MNEd6RXZBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAk+kwDQYJ
KoZIhvcNAQELBQADggEBAJOJ0W/yynui04PtLnBDA4+FQ9o2CiBX4EIu+xLn+P9v
bKcVuI7JF26fXkGaGFrbRwO6+zoLidixhaOrkGoPnvznkV7uOFpLt3QXxHbxqZoB
1aB+PqrgybGNUULVZPfjMTg/C/wTGlDlWIkD5xAvOjPNTW4ZoR60BygEAIj/PVJw
vs1FXGeOu6K9ufRto3S2Bleaf8LKMR5Qv8+L0QABOLuPu5BM8LV+8VeNylWfMdbR
Ln/DjIoNFg4IoBIndDUzIMA3C6ju5f9zEcGNulQBAb6+ecna9v8HnXwtmtbhk6l5
4LkqpXxRhFTjT6tnS3X5ZCaHZHqpPD+iNjX/P4inZnM=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:00 2024 by rpki-client on console-ams.rpki-client.org