Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/4377d6-515c-420a-9134-69e337884cc9/1/qRo2kGgiVDDi-itt6uz9f4oYpl8.roa
File: qRo2kGgiVDDi-itt6uz9f4oYpl8.roa (raw, json)
Hash identifier: 0oB+KH+pwFJOwW77hRPrG6bF+JDIgrmE81iUELx2PQ4=
Subject key identifier: A9:1A:36:90:68:22:54:30:E2:FA:2B:6D:EA:EC:FD:7F:8A:18:A6:5F
Certificate issuer: /CN=de92a1ac8910cf5c865de5b0231b09d04e1132f3
Certificate serial: 018978212BB1583B97EC6F2E94D2190ADBB2
Authority key identifier: DE:92:A1:AC:89:10:CF:5C:86:5D:E5:B0:23:1B:09:D0:4E:11:32:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3pKhrIkQz1yGXeWwIxsJ0E4RMvM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/4377d6-515c-420a-9134-69e337884cc9/1/qRo2kGgiVDDi-itt6uz9f4oYpl8.roa
Signing time: Fri 21 Jul 2023 11:06:26 +0000
ROA not before: Fri 21 Jul 2023 11:06:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 0
IP address blocks: 138.124.182.0/24 maxlen: 32
Validation: Failed, certificate revoked on Fri 04 Aug 2023 13:57:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:78:21:2b:b1:58:3b:97:ec:6f:2e:94:d2:19:0a:db:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de92a1ac8910cf5c865de5b0231b09d04e1132f3
Validity
Not Before: Jul 21 11:06:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a91a369068225430e2fa2b6deaecfd7f8a18a65f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:bd:d9:d5:23:55:66:c1:8a:88:b6:cc:67:32:
ce:7b:d7:29:65:7f:09:3c:a2:9c:be:d8:57:8b:aa:
88:4d:60:01:08:78:22:6b:8a:c1:c3:ab:7e:0d:22:
80:e6:e1:c3:4c:fa:fb:a2:f6:13:ef:c5:17:28:22:
cd:bf:8a:af:3f:2a:1d:13:b8:03:34:71:6d:15:af:
5f:d9:3d:48:c1:29:73:6b:5b:ce:a1:39:88:b1:6d:
38:11:2d:51:c3:bc:f1:43:bd:32:8e:ec:32:a1:68:
be:64:94:b6:f7:db:d7:22:20:9c:d3:ca:92:e8:34:
ad:49:a8:af:a6:22:20:fc:3c:13:1b:40:f2:60:9a:
8e:3c:9a:85:68:ea:4f:48:81:39:84:a4:f9:84:3f:
73:32:a6:95:84:6e:2c:85:7e:80:b9:c8:11:10:be:
ca:34:d8:66:45:b6:ef:43:7d:fc:8f:c4:d8:f4:de:
67:8a:b2:b6:13:cf:d2:55:f7:ca:40:0f:cf:78:62:
df:f1:a6:90:e0:10:c8:1c:3b:04:21:33:a9:25:1e:
b8:5b:32:1f:29:ae:9c:d6:cc:11:02:0c:0c:4c:6d:
df:8b:7e:d4:fe:57:a5:0c:aa:03:f0:9c:99:44:dd:
3d:8c:29:ec:ed:01:26:29:9e:e9:e2:eb:27:dc:56:
ec:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:1A:36:90:68:22:54:30:E2:FA:2B:6D:EA:EC:FD:7F:8A:18:A6:5F
X509v3 Authority Key Identifier:
keyid:DE:92:A1:AC:89:10:CF:5C:86:5D:E5:B0:23:1B:09:D0:4E:11:32:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3pKhrIkQz1yGXeWwIxsJ0E4RMvM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/4377d6-515c-420a-9134-69e337884cc9/1/qRo2kGgiVDDi-itt6uz9f4oYpl8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/4377d6-515c-420a-9134-69e337884cc9/1/3pKhrIkQz1yGXeWwIxsJ0E4RMvM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.124.182.0/24
Signature Algorithm: sha256WithRSAEncryption
12:f4:54:98:99:60:75:d6:83:56:af:e2:bd:42:a0:8b:f0:f3:
bf:96:6d:08:ce:df:f1:28:08:83:34:4a:0c:5a:d9:e2:b9:ac:
3d:c5:7d:8b:96:01:98:73:69:b5:c0:b6:04:63:55:b0:79:a0:
3b:c3:17:1f:1b:62:ff:3a:74:c5:b8:d1:19:8d:a8:22:f3:91:
69:a0:43:2f:37:e7:e3:0a:a3:48:fb:38:4b:80:d7:27:38:1c:
f2:99:1a:f7:41:71:9f:af:df:48:06:ed:83:e6:54:f5:73:ad:
85:8b:74:5d:c4:b0:ca:34:8b:0e:47:04:a5:5b:22:db:6f:c7:
65:8b:74:d6:e2:55:58:36:2b:a5:6a:ee:f1:e1:71:6b:47:11:
08:cc:06:66:dc:fc:3a:55:c7:f3:08:36:53:c1:51:fb:ce:9a:
c9:14:ae:c6:c4:36:d2:26:1a:a5:23:e0:c8:b3:35:b4:b7:c6:
fc:03:5f:ee:15:f8:93:d2:00:fb:21:4f:91:49:4e:e2:39:0b:
df:83:42:cc:c5:76:fc:68:b3:4f:92:05:25:71:13:ec:22:31:
9b:89:71:cb:96:fc:f9:66:9e:d5:69:a3:42:8c:91:b5:2d:4e:
93:2c:62:bf:3e:5f:59:b0:ca:83:5f:71:d3:d5:ff:56:a0:1d:
50:44:2f:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:45 2024 by rpki-client on console-fra.rpki-client.org