Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/9ede92-a838-40bc-a266-162b02bb15bd/1/_2sHQ9NVI6QQPCrKxCJoI6lan60.roa
File: _2sHQ9NVI6QQPCrKxCJoI6lan60.roa (raw, json)
Hash identifier: BTrJNsCzwg0SmC7PZUoV0+Nu6RXoSX2n1K35rqt3Qm8=
Subject key identifier: FF:6B:07:43:D3:55:23:A4:10:3C:2A:CA:C4:22:68:23:A9:5A:9F:AD
Certificate issuer: /CN=501459c027a86e1a55709f860937fe2f81b312f0
Certificate serial: 0187B48DC027B6F782201C93772230A0DA71
Authority key identifier: 50:14:59:C0:27:A8:6E:1A:55:70:9F:86:09:37:FE:2F:81:B3:12:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UBRZwCeobhpVcJ-GCTf-L4GzEvA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/9ede92-a838-40bc-a266-162b02bb15bd/1/_2sHQ9NVI6QQPCrKxCJoI6lan60.roa
Signing time: Mon 24 Apr 2023 18:36:41 +0000
ROA not before: Mon 24 Apr 2023 18:36:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35280
IP address blocks: 147.233.128.0/17 maxlen: 17
147.233.0.0/17 maxlen: 17
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:b4:8d:c0:27:b6:f7:82:20:1c:93:77:22:30:a0:da:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=501459c027a86e1a55709f860937fe2f81b312f0
Validity
Not Before: Apr 24 18:36:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ff6b0743d35523a4103c2acac4226823a95a9fad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:5f:17:40:77:58:22:9c:a2:ed:51:02:e9:54:
a7:bc:a2:06:93:cc:cb:9d:ce:eb:6f:57:c8:94:72:
c8:92:e1:12:eb:e9:33:79:8b:f7:6c:3e:f8:4e:88:
8c:d3:fa:5c:89:db:26:2f:a1:70:cc:ff:e8:42:d0:
b0:74:13:00:48:ce:cf:51:4f:6a:d9:df:27:b3:27:
d4:ad:3f:49:0c:11:20:c1:86:8b:98:e0:6b:e5:39:
85:7e:70:9f:c8:fc:06:e5:10:99:bd:da:75:89:59:
9e:22:b4:51:fe:e2:c1:78:a5:c3:17:03:a1:3e:d9:
61:2c:88:3f:a1:f4:c8:c3:4b:dd:14:2e:b5:fd:f6:
67:12:04:b5:67:6f:33:f0:83:03:5a:45:59:6d:0d:
3d:a6:25:67:9f:77:5c:34:90:f5:6c:60:11:88:73:
aa:cf:c0:7b:3a:b6:df:25:98:5d:66:0c:82:71:77:
89:1a:11:3f:8c:62:b4:bb:7e:3a:58:61:16:4a:b9:
3f:70:4c:77:db:29:b6:54:55:24:22:69:22:ee:fe:
a4:72:99:e8:20:80:c0:36:f6:98:20:62:14:ed:e8:
01:9b:5f:0c:4f:d2:6b:0d:21:5a:02:ca:1f:6d:a6:
b5:27:48:7a:cd:a7:c5:6b:18:5a:e8:93:af:75:bd:
98:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:6B:07:43:D3:55:23:A4:10:3C:2A:CA:C4:22:68:23:A9:5A:9F:AD
X509v3 Authority Key Identifier:
keyid:50:14:59:C0:27:A8:6E:1A:55:70:9F:86:09:37:FE:2F:81:B3:12:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UBRZwCeobhpVcJ-GCTf-L4GzEvA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/9ede92-a838-40bc-a266-162b02bb15bd/1/_2sHQ9NVI6QQPCrKxCJoI6lan60.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/9ede92-a838-40bc-a266-162b02bb15bd/1/UBRZwCeobhpVcJ-GCTf-L4GzEvA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.233.0.0/16
Signature Algorithm: sha256WithRSAEncryption
20:64:b5:e4:4f:29:82:06:59:86:55:b9:de:10:cd:73:53:55:
b0:88:55:9e:a6:cd:b6:b1:f3:61:a8:0d:4c:5f:de:de:6c:be:
02:42:2b:7b:18:7a:da:7c:3d:2d:20:56:0a:e0:d5:e7:d5:74:
0a:bf:c5:1d:6d:00:e1:33:6c:79:fe:c1:d6:cb:ac:82:3d:fd:
31:19:c0:d1:bf:26:c8:05:0e:34:ee:31:a6:3b:ab:4a:f0:0d:
33:4f:2c:64:06:0e:90:96:e2:ad:10:b3:ba:e1:87:f6:1c:9d:
9d:d4:23:8c:0f:b5:3a:ac:2d:3e:6a:46:de:c6:58:f3:5f:44:
7f:fc:8c:5a:79:d3:6a:da:41:f4:d2:34:24:54:e9:e0:10:d3:
8f:46:93:9e:e3:28:0c:8c:b8:55:04:84:b0:93:9e:ee:e9:c2:
42:ed:7b:11:69:16:38:cb:7e:8c:7b:f0:4c:8d:d7:16:e6:c9:
61:69:e4:aa:0b:bb:80:05:c7:c0:fc:a5:b4:a1:e6:e2:c5:b0:
db:ed:49:7c:81:a2:42:30:8f:3c:ed:04:20:8c:de:f4:23:e9:
6a:9a:61:88:11:26:9d:fe:f2:ef:5f:36:74:8a:0d:1e:cd:09:
3a:c5:66:05:5e:08:50:8f:98:d7:f9:df:b2:79:cd:9a:de:70:
b8:91:a2:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:00 2024 by rpki-client on console-ams.rpki-client.org