Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/wqlSbX6hCnFlgpkuqrNVGn5i0NA.roa
File: wqlSbX6hCnFlgpkuqrNVGn5i0NA.roa (raw, json)
Hash identifier: MEg37xH6p4BIvayVQowMdwfWiJAG5X6/ZAPx5PXdiIA=
Subject key identifier: C2:A9:52:6D:7E:A1:0A:71:65:82:99:2E:AA:B3:55:1A:7E:62:D0:D0
Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd
Certificate serial: 018775AC2A33FC878049310358EAEC88B905
Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/wqlSbX6hCnFlgpkuqrNVGn5i0NA.roa
Signing time: Wed 12 Apr 2023 13:33:49 +0000
ROA not before: Wed 12 Apr 2023 13:33:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 55154
IP address blocks: 80.93.205.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 16 May 2023 10:08:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:75:ac:2a:33:fc:87:80:49:31:03:58:ea:ec:88:b9:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd
Validity
Not Before: Apr 12 13:33:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c2a9526d7ea10a716582992eaab3551a7e62d0d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:38:e8:05:db:5c:74:4e:0a:5b:24:45:bb:3a:
87:5c:78:24:c3:bf:7a:eb:db:81:b9:69:7a:8b:6c:
a1:fd:a5:a0:0e:23:87:7b:cf:ab:02:0d:d0:02:9d:
4e:77:73:e7:e3:94:41:aa:e5:96:2c:98:62:e9:7d:
67:31:de:da:1e:e7:66:cd:d6:5a:84:b5:1b:b3:52:
c6:9e:00:0f:8e:0a:3d:f7:b8:97:9b:bf:1d:6a:ea:
9a:ed:02:95:3e:76:96:f0:01:c0:47:a4:86:3c:b2:
85:5b:f3:ed:35:bf:ab:64:35:22:c1:d0:6d:7e:b1:
4b:ff:ed:fb:ff:ae:7f:00:d5:72:ec:40:71:e7:9c:
7f:5d:e7:15:1d:eb:96:da:ad:ac:b3:1e:86:17:ce:
55:e6:10:04:bc:75:92:cc:32:4a:70:65:7c:2e:ee:
90:7e:ce:4b:a9:45:0c:e5:7d:fb:9c:01:98:5e:83:
92:a8:42:b4:e7:5d:cb:18:02:f9:90:69:13:51:5b:
14:95:64:ac:64:a7:55:33:95:a9:39:a0:78:f5:dd:
20:b0:fa:5a:03:4e:5c:89:be:10:e2:c7:74:bd:5f:
a2:05:3a:0f:07:2c:4f:e2:1e:8e:ce:48:4a:4f:b7:
42:6c:d1:bc:83:21:04:4d:bb:2d:b1:44:19:a7:1b:
f7:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:A9:52:6D:7E:A1:0A:71:65:82:99:2E:AA:B3:55:1A:7E:62:D0:D0
X509v3 Authority Key Identifier:
keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/wqlSbX6hCnFlgpkuqrNVGn5i0NA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.93.205.0/24
Signature Algorithm: sha256WithRSAEncryption
20:ad:13:2a:b3:9a:28:bb:c6:96:5b:2a:6a:a9:54:c2:f7:92:
c8:83:7a:07:a5:eb:f6:6d:3c:e8:6c:4c:2c:0a:72:e3:46:05:
8d:1a:1a:fb:f1:7e:5a:fe:c0:72:62:e7:b4:8b:20:a1:48:23:
8e:09:6b:95:bc:0c:a0:fc:20:b0:21:1c:0a:02:f0:cf:54:71:
60:35:20:b6:99:58:a9:82:90:1e:94:3a:19:b7:c8:ab:27:ba:
cc:fe:e2:30:1d:ae:d4:0e:48:50:e9:61:38:a2:86:cd:0a:11:
ed:08:3a:e4:7a:bd:8e:8b:f9:9d:5e:0b:bf:cd:eb:da:72:a4:
08:fc:86:db:cf:ec:64:19:87:4a:1d:be:79:01:cb:eb:9a:7e:
53:6f:1e:df:88:30:58:97:c4:5e:f3:7e:6a:1f:26:b2:df:4e:
be:94:a7:a8:aa:ac:26:2e:46:98:99:c3:a4:df:9e:9e:05:c5:
a2:df:91:70:6f:38:41:4b:e6:b6:40:a1:53:a1:28:26:50:33:
27:c3:e6:72:2e:5b:c7:86:3f:33:d0:7a:a6:d5:55:8d:e9:a1:
b0:3c:e2:5d:20:59:0c:1c:af:c5:a6:fc:2e:95:4e:41:e6:8f:
e2:71:57:93:d7:db:79:d7:f7:8f:ab:ff:bb:13:b4:04:16:51:
cf:be:f9:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:44 2024 by rpki-client on console-fra.rpki-client.org