Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/b75d64-9a55-490c-8c58-3fe17481f608/1/qkvNRi1mwoeOrzzxeCqdnjBHrAg.roa
File: qkvNRi1mwoeOrzzxeCqdnjBHrAg.roa (raw, json)
Hash identifier: oh+k60Kv7eCI51hhO3EY4r6J2SSP8VvuZX6wks9B5YE=
Subject key identifier: AA:4B:CD:46:2D:66:C2:87:8E:AF:3C:F1:78:2A:9D:9E:30:47:AC:08
Certificate issuer: /CN=d6f807660bf2cd92aee391442a5343af718c18c7
Certificate serial: 018570CC10BCC9514694446000BE7EACB6EB
Authority key identifier: D6:F8:07:66:0B:F2:CD:92:AE:E3:91:44:2A:53:43:AF:71:8C:18:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1vgHZgvyzZKu45FEKlNDr3GMGMc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/b75d64-9a55-490c-8c58-3fe17481f608/1/qkvNRi1mwoeOrzzxeCqdnjBHrAg.roa
Signing time: Mon 02 Jan 2023 04:44:59 +0000
ROA not before: Mon 02 Jan 2023 04:44:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44574
IP address blocks: 193.9.248.0/24 maxlen: 24
91.212.90.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 22 Jun 2023 16:31:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:cc:10:bc:c9:51:46:94:44:60:00:be:7e:ac:b6:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d6f807660bf2cd92aee391442a5343af718c18c7
Validity
Not Before: Jan 2 04:44:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=aa4bcd462d66c2878eaf3cf1782a9d9e3047ac08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:8d:8a:e3:8d:ec:4e:fc:bb:dd:90:d8:6d:62:
b3:67:cf:3c:47:f3:b1:e8:2f:06:ad:c8:5f:06:27:
8a:8d:3f:93:7c:20:d2:c3:98:a6:63:38:c1:28:bd:
bc:d3:25:74:4f:fa:50:e8:bb:96:76:22:62:45:d4:
9d:cd:e6:10:97:1e:f3:72:53:85:b9:2e:88:1e:08:
7a:87:39:e0:c3:ba:a3:38:e4:85:bb:3b:3c:4e:56:
62:e0:96:15:82:88:55:bb:f6:55:8b:ef:13:8a:4c:
de:a4:8c:38:47:ba:a0:c8:4b:a7:a7:ec:09:84:af:
a3:57:ec:71:ac:85:a6:26:ff:af:4c:4d:43:54:58:
ae:02:2e:61:10:61:7b:0d:ad:a2:a3:54:1d:c8:ca:
72:c8:e1:4a:6b:45:9b:87:00:61:55:6e:38:4a:56:
0b:76:97:90:57:e4:33:89:79:af:a8:d9:3f:8e:42:
89:ba:a2:98:0c:e9:74:c4:9f:8f:88:e7:1f:5f:c2:
69:5d:63:65:8d:11:88:d5:82:6e:e2:c3:ee:f3:23:
08:67:27:36:30:63:cb:29:18:10:92:b6:a9:89:a2:
12:c2:87:a7:e9:0a:0a:96:d1:9f:9d:51:ab:0f:f9:
c0:08:ec:97:17:e3:c5:c1:db:29:ae:ac:46:a0:f1:
a8:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:4B:CD:46:2D:66:C2:87:8E:AF:3C:F1:78:2A:9D:9E:30:47:AC:08
X509v3 Authority Key Identifier:
keyid:D6:F8:07:66:0B:F2:CD:92:AE:E3:91:44:2A:53:43:AF:71:8C:18:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1vgHZgvyzZKu45FEKlNDr3GMGMc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/b75d64-9a55-490c-8c58-3fe17481f608/1/qkvNRi1mwoeOrzzxeCqdnjBHrAg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/b75d64-9a55-490c-8c58-3fe17481f608/1/1vgHZgvyzZKu45FEKlNDr3GMGMc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.212.90.0/24
193.9.248.0/24
Signature Algorithm: sha256WithRSAEncryption
61:37:df:2e:74:0f:af:0e:a4:c8:c4:2d:d2:2f:45:e3:7d:1b:
9d:af:d2:eb:6b:df:14:bd:57:ed:7f:6f:bb:f1:ec:de:6f:b4:
fb:ea:f8:36:13:b0:1a:9f:23:50:a1:54:31:0f:b2:8f:ba:e2:
22:1b:d0:a6:15:8b:40:cb:0f:7a:39:a4:40:26:f3:b8:9d:9b:
1a:d2:dc:fb:07:b4:fb:f9:16:b9:6e:21:87:21:f6:17:0d:77:
bd:83:e2:17:28:29:47:51:cc:bb:73:a7:b6:50:ec:2c:c8:a2:
98:43:bf:a2:49:3b:5a:07:22:06:87:9a:35:65:e9:98:bc:01:
51:fd:b4:a6:9e:a0:9c:9c:65:a0:a8:d0:ea:d7:31:18:25:41:
ff:e2:44:c3:40:7d:28:60:24:e4:a6:49:d2:0f:6c:04:ad:69:
25:0f:25:a9:3b:de:13:1c:98:af:fc:b8:64:2a:c2:d5:4d:f1:
80:f6:2f:a4:12:f5:a6:5c:7e:1c:78:71:80:57:9e:f9:a0:41:
b4:f7:7a:7d:f6:61:d4:80:74:c7:fe:33:4a:fc:43:65:ac:c2:
37:85:b9:19:44:3f:ce:c1:bf:2a:c0:db:e5:fb:5c:58:f3:a9:
d2:41:18:a2:17:c3:97:51:82:f6:be:f1:d4:f3:71:87:bb:64:
02:1d:a4:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:33 2024 by rpki-client on console-fra.rpki-client.org