Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/fa73f8-33e0-4032-84ec-a96ef6f6435c/1/qTg6ZsgwM2JVU99oInjAIBKysMc.roa
File: qTg6ZsgwM2JVU99oInjAIBKysMc.roa (raw, json)
Hash identifier: CEq46uWSzg/HH4cJAFCI1fR6rXbsnlnyXOGBAk4fiQg=
Subject key identifier: A9:38:3A:66:C8:30:33:62:55:53:DF:68:22:78:C0:20:12:B2:B0:C7
Certificate issuer: /CN=d04265fb11c2a220bc350718673e0704d1edadde
Certificate serial: 0185712762BC3B747B9BB84217DC6CF560D8
Authority key identifier: D0:42:65:FB:11:C2:A2:20:BC:35:07:18:67:3E:07:04:D1:ED:AD:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0EJl-xHCoiC8NQcYZz4HBNHtrd4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/fa73f8-33e0-4032-84ec-a96ef6f6435c/1/qTg6ZsgwM2JVU99oInjAIBKysMc.roa
Signing time: Mon 02 Jan 2023 06:24:44 +0000
ROA not before: Mon 02 Jan 2023 06:24:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209371
IP address blocks: 149.3.171.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 31 Jan 2023 15:03:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:27:62:bc:3b:74:7b:9b:b8:42:17:dc:6c:f5:60:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d04265fb11c2a220bc350718673e0704d1edadde
Validity
Not Before: Jan 2 06:24:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a9383a66c83033625553df682278c02012b2b0c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:6a:66:3a:33:16:e4:20:8c:27:54:a1:2e:3b:
fe:d1:02:32:89:d1:1f:6f:84:66:22:a2:1c:b9:2b:
97:92:77:21:ac:14:cc:28:41:24:a4:b0:6c:68:52:
85:dc:d1:20:13:d3:a0:54:80:19:c4:55:94:9d:06:
9f:63:b9:5f:41:07:5b:e4:ee:1b:be:55:6e:4a:13:
dc:ac:cf:a2:60:8d:76:a4:c2:b2:c4:d5:e9:51:0e:
c2:25:aa:de:8e:35:bf:75:4c:84:bb:59:35:29:94:
47:0b:2d:e1:c9:63:c9:72:7e:4c:b1:5a:89:42:9b:
ac:c4:9c:30:e1:f3:4c:fc:0a:e9:8f:c1:ca:43:d8:
bf:ab:a4:d0:bf:64:45:4d:d9:2b:b1:fd:91:f8:b6:
bd:7d:f6:4c:cf:52:40:a9:fc:5b:8b:1a:1d:4f:3d:
c6:e6:24:f6:62:e0:71:0a:25:36:c6:56:3f:99:3f:
e4:6e:a4:c5:cb:03:b3:d7:5e:df:10:ef:61:dc:23:
b5:ba:e7:8e:c4:df:5b:0b:a5:7b:3f:8b:7a:75:a8:
c3:76:97:02:6f:98:78:0c:38:2b:f5:50:25:43:d8:
d9:b6:55:83:4d:da:e0:7e:56:0e:54:90:94:fb:ad:
19:44:66:58:44:f0:66:2e:66:22:94:75:1d:1d:0d:
90:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:38:3A:66:C8:30:33:62:55:53:DF:68:22:78:C0:20:12:B2:B0:C7
X509v3 Authority Key Identifier:
keyid:D0:42:65:FB:11:C2:A2:20:BC:35:07:18:67:3E:07:04:D1:ED:AD:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0EJl-xHCoiC8NQcYZz4HBNHtrd4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/fa73f8-33e0-4032-84ec-a96ef6f6435c/1/qTg6ZsgwM2JVU99oInjAIBKysMc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/fa73f8-33e0-4032-84ec-a96ef6f6435c/1/0EJl-xHCoiC8NQcYZz4HBNHtrd4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
149.3.171.0/24
Signature Algorithm: sha256WithRSAEncryption
13:c7:fc:f9:d9:b4:cb:fb:66:01:20:dd:48:51:7e:ba:ad:8e:
1b:2d:3d:fb:69:e7:1f:e8:57:54:30:12:f7:5d:0b:b2:12:13:
a1:dc:8a:db:09:4e:75:65:c7:97:1c:33:b1:d9:f0:60:f3:0c:
b9:86:00:b9:1d:93:9f:c9:56:6a:f4:10:30:09:c0:0b:42:d0:
c8:02:3f:d1:48:f3:b9:8f:a2:7b:fc:90:e1:77:76:bc:a4:ad:
dd:78:24:6b:8a:49:33:a8:aa:a8:72:de:32:9b:92:9d:8f:7b:
b2:36:fa:c3:b7:ae:6a:ec:e6:bf:c8:dc:8e:d8:73:2a:56:7d:
1d:01:cb:b1:2c:d6:c3:b8:cb:d5:e1:9e:40:64:5b:7a:0e:f5:
f3:85:79:5b:4b:e8:cf:08:24:c2:61:c4:f6:8d:64:04:92:d1:
ae:2d:ed:70:94:57:02:4a:77:2a:c2:c5:dc:03:54:2b:40:16:
d1:7a:6a:8b:d1:3c:1a:29:ad:54:46:6f:db:55:fa:c5:01:4b:
41:85:7c:54:f0:01:df:85:7c:8c:ae:67:f0:03:c7:5b:32:b2:
a2:17:60:de:41:7e:a0:c6:7f:79:b8:c1:e2:f2:65:cb:4f:d5:
46:76:b3:df:c6:cb:5a:33:c1:8f:a0:fd:9d:5e:60:67:62:22:
1e:1b:1e:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:32 2024 by rpki-client on console-ams.rpki-client.org