Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/976597-659b-44e4-92b2-9d8ea234295b/1/q6UYNXjGhjZHusLXuBbawBW9UME.roa
File: q6UYNXjGhjZHusLXuBbawBW9UME.roa (raw, json)
Hash identifier: IlxGzQ6+18jT1AGx6SU4ahKIcx0bl1k4+gHpGh4cYSs=
Subject key identifier: AB:A5:18:35:78:C6:86:36:47:BA:C2:D7:B8:16:DA:C0:15:BD:50:C1
Certificate issuer: /CN=57f9c1fb22bce1ef241dd7ef892a518d0566a8ab
Certificate serial: 018570DE281CC86D9BE75740AE09469BEBD3
Authority key identifier: 57:F9:C1:FB:22:BC:E1:EF:24:1D:D7:EF:89:2A:51:8D:05:66:A8:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V_nB-yK84e8kHdfviSpRjQVmqKs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/976597-659b-44e4-92b2-9d8ea234295b/1/q6UYNXjGhjZHusLXuBbawBW9UME.roa
Signing time: Mon 02 Jan 2023 05:04:45 +0000
ROA not before: Mon 02 Jan 2023 05:04:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43355
IP address blocks: 193.111.180.0/22 maxlen: 24
2a0b:7240::/29 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:30:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:de:28:1c:c8:6d:9b:e7:57:40:ae:09:46:9b:eb:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57f9c1fb22bce1ef241dd7ef892a518d0566a8ab
Validity
Not Before: Jan 2 05:04:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=aba5183578c6863647bac2d7b816dac015bd50c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:75:ff:2a:bf:a3:6a:97:ef:a2:dc:19:da:63:
3c:3e:64:04:cf:7f:65:73:2c:ae:a6:82:6a:a1:3c:
8f:f5:f8:30:2e:7a:2b:43:85:79:97:a9:01:8d:67:
6c:1e:14:d4:9f:df:12:a9:c4:62:ef:e2:6d:aa:37:
b9:c9:34:bc:7d:95:1b:61:57:51:50:4f:1b:44:44:
7b:12:03:1c:a3:79:fe:5d:34:02:48:e1:79:04:62:
80:a9:eb:ac:53:8d:55:2f:ef:00:f9:cf:09:0b:b8:
5d:57:00:0e:ee:57:6c:c7:dc:12:29:11:bb:68:f8:
5d:13:72:be:c1:e0:b5:e8:49:d4:1d:da:25:be:dc:
53:c9:c8:5e:fa:ea:95:0a:f4:14:b4:5f:99:ed:7b:
f6:1a:1c:fd:68:f8:f9:82:61:84:cf:f8:7f:18:34:
78:df:96:07:46:f1:30:6a:9d:af:a4:38:82:88:fb:
af:ce:2c:4d:95:8b:01:06:43:cb:19:af:23:2c:59:
3d:6f:f3:21:94:5a:37:81:c4:94:f3:fe:23:68:02:
3e:1d:5f:a3:c8:df:be:e9:89:ed:40:49:62:40:09:
82:32:d2:6c:c3:ed:34:1c:43:48:ad:91:53:f8:06:
eb:1e:d4:b4:5d:1d:4c:29:9c:95:5f:f7:f0:83:b5:
9e:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:A5:18:35:78:C6:86:36:47:BA:C2:D7:B8:16:DA:C0:15:BD:50:C1
X509v3 Authority Key Identifier:
keyid:57:F9:C1:FB:22:BC:E1:EF:24:1D:D7:EF:89:2A:51:8D:05:66:A8:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V_nB-yK84e8kHdfviSpRjQVmqKs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/976597-659b-44e4-92b2-9d8ea234295b/1/q6UYNXjGhjZHusLXuBbawBW9UME.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/976597-659b-44e4-92b2-9d8ea234295b/1/V_nB-yK84e8kHdfviSpRjQVmqKs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.111.180.0/22
IPv6:
2a0b:7240::/29
Signature Algorithm: sha256WithRSAEncryption
97:9f:66:07:ce:be:70:1f:e8:09:16:2c:3e:5b:cd:1d:45:03:
4f:69:1f:24:e0:cb:57:72:66:27:c8:58:86:43:49:a3:67:e1:
d3:ad:f7:0d:cd:d0:57:d3:26:52:0d:1a:39:9c:97:be:d3:0e:
4c:9e:8e:88:26:8a:a7:cd:ab:49:fc:58:eb:c0:65:91:d6:14:
68:ff:50:dc:d6:d2:78:ba:bd:b6:d8:60:b6:de:ff:89:d7:e1:
ac:ad:90:4c:db:16:96:ad:12:5d:0c:20:0c:72:ef:08:0e:53:
ec:96:77:7e:1b:ea:05:64:24:d0:4d:ab:d7:e5:78:e0:1f:8a:
8c:f3:12:6e:ab:ea:0c:bd:09:02:dd:a8:c2:b7:7b:82:1d:40:
f2:2e:08:fa:b0:4c:fc:a5:cc:56:21:44:0f:bc:56:88:23:dd:
0f:b2:c9:a5:bd:fc:14:81:a7:27:70:cd:27:cd:0a:e8:12:92:
00:51:95:c6:ef:20:6c:7f:53:39:ae:3a:70:9f:df:4d:6b:04:
48:a1:b4:06:1f:48:1e:49:cb:d4:19:1f:18:f2:20:38:3a:1d:
5f:3b:84:74:21:3f:a5:a5:55:fc:46:84:25:99:ea:75:6e:b2:
6e:19:b7:c4:e9:35:1f:36:74:0a:82:99:1b:67:05:c2:d2:6d:
4f:6a:e1:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:23 2024 by rpki-client on console-fra.rpki-client.org