Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/qympo35CjjvJfBacOkbYU5F615g.roa
File: qympo35CjjvJfBacOkbYU5F615g.roa (raw, json)
Hash identifier: A3A0OTymStu8JkhN+KTVkUN+XGizfWhZgauKxekbbQ4=
Subject key identifier: AB:29:A9:A3:7E:42:8E:3B:C9:7C:16:9C:3A:46:D8:53:91:7A:D7:98
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 01856F670140A0658548A9DF0C4F74A66304
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/qympo35CjjvJfBacOkbYU5F615g.roa
Signing time: Sun 01 Jan 2023 22:14:59 +0000
ROA not before: Sun 01 Jan 2023 22:14:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201364
IP address blocks: 194.87.246.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 06 Feb 2023 09:43:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:67:01:40:a0:65:85:48:a9:df:0c:4f:74:a6:63:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jan 1 22:14:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ab29a9a37e428e3bc97c169c3a46d853917ad798
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:06:63:5e:dd:5c:87:bf:b6:09:2c:ee:bf:18:
dd:ed:a4:a6:73:d2:ce:39:27:a7:08:64:d7:b7:44:
16:87:97:ce:c2:2a:da:05:fb:c2:88:0a:09:e8:fe:
b1:5a:08:a3:36:4a:7c:d0:c9:2d:7c:d0:c7:f0:3e:
21:b5:98:0f:62:c7:31:a5:b2:a7:bb:19:f8:cc:99:
0c:c9:a8:fb:85:67:63:dd:a1:25:3e:b7:24:d1:c2:
28:a5:04:fd:b3:ee:d9:e2:c7:c3:29:93:ce:03:06:
82:29:39:b6:7a:0e:1a:d4:d3:ff:3d:6d:83:06:b5:
72:5d:25:87:b5:f3:d3:2c:c4:99:27:4b:45:24:3f:
3b:07:f5:3c:71:b4:2d:c7:d7:2b:eb:57:6f:6f:2b:
6a:12:9a:97:d7:1f:4d:a8:8d:5d:c2:a8:cc:e1:8f:
0a:b4:05:91:7f:ea:8c:1d:85:6f:b7:76:07:a0:44:
1f:a1:bf:ac:7b:d1:e7:9b:c5:02:71:22:42:e7:0e:
17:e1:b2:fb:d4:91:c9:6e:84:b2:73:b3:f0:d9:e5:
ef:f5:26:1c:c6:b8:52:f8:07:1f:c4:ff:db:3f:45:
28:9a:6d:bc:b3:df:e8:04:6d:51:9d:61:de:b8:0e:
cd:10:08:e8:8b:e4:05:38:f4:64:7b:c4:35:57:25:
63:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:29:A9:A3:7E:42:8E:3B:C9:7C:16:9C:3A:46:D8:53:91:7A:D7:98
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/qympo35CjjvJfBacOkbYU5F615g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.87.246.0/24
Signature Algorithm: sha256WithRSAEncryption
52:fa:f4:01:1a:df:af:6a:6e:64:18:47:2d:3a:41:ef:30:75:
b7:0e:2b:a2:0c:88:96:26:95:f1:7c:19:6d:c8:aa:09:3a:a6:
ed:a1:3f:6c:8f:a5:4f:1f:8f:9c:67:f5:ef:32:34:45:fa:dc:
c5:83:6b:69:2b:7c:a7:06:e0:b3:39:51:d9:91:a9:78:1b:f1:
90:06:de:8f:8c:0a:a3:44:ff:5a:b7:ac:b2:91:18:72:26:13:
cb:fd:90:32:eb:34:31:9b:e6:b5:64:6c:5a:43:6b:88:28:e7:
80:e6:87:54:c2:71:ba:7e:31:dc:6e:ea:4f:32:cc:84:0b:95:
d5:6f:fa:18:b6:93:a1:6d:7a:04:19:f3:85:cd:05:9b:bd:ef:
97:18:1d:dd:64:69:dc:e6:fd:5c:28:7a:5a:3c:0c:bc:66:3c:
a9:32:f5:5b:27:bd:87:c0:be:4e:c7:c3:3a:3e:78:26:4c:02:
f6:f6:57:6c:da:88:72:12:4c:84:dd:27:b4:13:28:de:c2:09:
66:6e:b2:50:17:31:ed:20:95:3f:22:c5:e6:5c:41:5c:f4:94:
8e:cb:c6:e2:a4:43:8a:7c:6d:d4:71:59:87:09:a7:b1:4c:a3:
08:b4:c4:a8:9c:0c:c3:17:25:0a:0b:17:f5:1e:05:e3:b5:b0:
3f:46:35:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:49:47 2024 by rpki-client on console-ams.rpki-client.org