Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/8efd8b-e516-4c49-92cb-89296ccb35f5/1/sqF1b4-ut_njsOU_r7k7Xi1WN3E.roa
File: sqF1b4-ut_njsOU_r7k7Xi1WN3E.roa (raw, json)
Hash identifier: oVBgAP6ndSOk+FhPKuD4WOtFLUtUU4HNJGMXim4HqSo=
Subject key identifier: B2:A1:75:6F:8F:AE:B7:F9:E3:B0:E5:3F:AF:B9:3B:5E:2D:56:37:71
Certificate issuer: /CN=4d0ade54c27e6fcddace262c4fdf790f320fed9c
Certificate serial: 01856F8B7F7BCC49F4EF3C4EDE7DB394F291
Authority key identifier: 4D:0A:DE:54:C2:7E:6F:CD:DA:CE:26:2C:4F:DF:79:0F:32:0F:ED:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TQreVMJ-b83aziYsT995DzIP7Zw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/8efd8b-e516-4c49-92cb-89296ccb35f5/1/sqF1b4-ut_njsOU_r7k7Xi1WN3E.roa
Signing time: Sun 01 Jan 2023 22:54:51 +0000
ROA not before: Sun 01 Jan 2023 22:54:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60130
IP address blocks: 185.56.184.0/22 maxlen: 24
2a02:5560::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:8b:7f:7b:cc:49:f4:ef:3c:4e:de:7d:b3:94:f2:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d0ade54c27e6fcddace262c4fdf790f320fed9c
Validity
Not Before: Jan 1 22:54:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b2a1756f8faeb7f9e3b0e53fafb93b5e2d563771
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:e6:08:91:47:d8:9b:2c:59:37:b9:31:35:3e:
67:6f:7e:57:a4:ca:42:fd:5b:6a:23:36:2e:24:ce:
79:1f:a0:5f:fa:fb:74:00:89:34:26:69:12:a7:ef:
0b:43:83:8a:6e:dd:dc:29:1d:98:3e:b0:d4:a0:99:
31:17:67:49:6b:ae:57:08:ce:b3:80:e3:1c:ac:59:
40:6c:31:4f:bb:5a:06:2f:4b:3b:1c:80:28:a2:c3:
6d:80:b3:ef:df:3e:64:f4:ef:21:1f:58:cd:9b:f5:
e0:73:43:4c:72:7b:cd:d3:bb:eb:fd:ea:31:69:ff:
ec:cb:c9:1f:bf:55:cd:57:2d:00:10:7b:c6:2e:30:
c3:f2:54:41:07:01:3f:e5:36:57:f7:32:4e:52:c4:
de:c1:12:03:10:e3:ed:a8:ad:d3:35:0f:ab:f0:5a:
ae:81:ab:b7:6e:b8:cf:89:cc:9f:2e:9c:7c:fc:f5:
ee:ac:61:49:24:76:33:1d:6a:23:ee:b3:b9:18:0c:
40:19:17:1f:e9:3a:d4:f3:82:2e:59:d8:d6:09:53:
34:47:4f:1f:f2:42:42:5c:64:cd:4c:ce:31:79:f6:
9d:83:96:9f:0b:75:46:8e:03:eb:88:cf:bf:85:26:
18:fc:c4:43:99:db:6b:83:e8:a8:2e:36:ba:ee:60:
14:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:A1:75:6F:8F:AE:B7:F9:E3:B0:E5:3F:AF:B9:3B:5E:2D:56:37:71
X509v3 Authority Key Identifier:
keyid:4D:0A:DE:54:C2:7E:6F:CD:DA:CE:26:2C:4F:DF:79:0F:32:0F:ED:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TQreVMJ-b83aziYsT995DzIP7Zw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/8efd8b-e516-4c49-92cb-89296ccb35f5/1/sqF1b4-ut_njsOU_r7k7Xi1WN3E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/8efd8b-e516-4c49-92cb-89296ccb35f5/1/TQreVMJ-b83aziYsT995DzIP7Zw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.56.184.0/22
IPv6:
2a02:5560::/32
Signature Algorithm: sha256WithRSAEncryption
8e:ce:16:69:8f:7b:ff:aa:c1:b9:ed:60:18:07:6b:ad:42:4e:
6c:d5:10:12:fc:53:07:76:a5:85:4e:5d:f6:53:54:90:e3:c6:
27:4a:9a:d0:d9:fb:04:1f:72:b2:ee:13:f7:c6:e5:8d:c7:99:
9b:fa:8e:3c:81:ed:44:ab:02:19:91:55:16:7c:40:50:f1:51:
41:74:52:15:5e:1e:25:52:d5:ba:53:3e:31:98:68:ee:cd:c3:
9e:0c:e6:95:00:32:89:9f:b2:08:29:a4:41:32:bd:d5:1e:ee:
57:d3:c3:ea:5d:b2:ec:22:5c:63:63:92:79:8a:22:0f:b6:81:
9f:1e:60:ad:6e:15:c5:ad:f6:47:05:36:7f:f0:f7:87:87:b1:
e6:41:14:29:0d:b5:45:bc:d1:af:36:c4:53:c2:cf:4b:ec:70:
80:38:fc:c3:f1:5d:57:b9:0a:04:1f:67:fd:c3:03:c6:27:8c:
0d:d8:b2:f5:5f:06:57:a5:33:29:03:34:79:63:81:82:4b:b5:
c4:26:fb:71:67:13:41:86:f4:12:97:47:6e:fb:51:db:1b:d5:
ab:6e:85:ee:3a:fc:8e:41:0c:44:d6:d0:30:67:07:c2:db:de:
e2:b1:f6:fe:da:70:9f:bf:e6:ec:0d:f7:1d:21:70:59:68:c5:
93:ef:fd:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:30 2024 by rpki-client on console-fra.rpki-client.org