Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/hQooulXurFNW_y_f_Q16a7zqaSQ.roa
File: hQooulXurFNW_y_f_Q16a7zqaSQ.roa (raw, json)
Hash identifier: 4bxRKMDBqWrHjPYTfhzBBUyp6098XLcQ6UlyuVqbJ28=
Subject key identifier: 85:0A:28:BA:55:EE:AC:53:56:FF:2F:DF:FD:0D:7A:6B:BC:EA:69:24
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018BD75ADB386C889E7D43FE4860CAA22F77
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/hQooulXurFNW_y_f_Q16a7zqaSQ.roa
Signing time: Thu 16 Nov 2023 08:58:57 +0000
ROA not before: Thu 16 Nov 2023 08:58:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207083
IP address blocks: 2.59.254.0/24 maxlen: 24
85.31.45.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 14 Dec 2023 08:13:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:d7:5a:db:38:6c:88:9e:7d:43:fe:48:60:ca:a2:2f:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Nov 16 08:58:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=850a28ba55eeac5356ff2fdffd0d7a6bbcea6924
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:15:b5:ee:c1:84:00:9b:2e:56:7b:73:12:1e:
80:4a:f2:9b:37:b5:b4:77:28:b3:e0:f9:cd:b1:90:
01:96:64:59:0c:7a:e1:9c:83:ec:16:e1:d7:02:18:
8c:01:04:0c:cd:a8:60:51:1b:f0:7f:15:8d:49:13:
e4:15:71:2a:d0:a2:13:b3:d3:02:af:6b:b3:49:06:
29:2c:89:30:90:48:60:cb:5c:1b:9b:91:99:84:7b:
55:63:a2:13:08:c9:2d:c4:e8:96:b1:ee:da:8f:f5:
2d:77:40:19:c1:3e:59:ff:9f:f6:5d:b7:4c:3b:e6:
e1:74:50:c6:26:4d:07:16:ca:66:12:67:c7:bc:99:
33:0d:96:d8:28:51:8a:04:f6:b7:a5:7b:fa:5f:cb:
2a:2e:de:4d:66:45:9f:fa:25:2b:a0:95:f2:05:cd:
76:80:e4:07:74:80:5b:dc:f4:6b:30:2b:46:0b:1b:
12:7b:af:f2:69:27:40:49:59:84:a3:61:87:f4:26:
7c:3a:25:41:34:87:d4:e1:22:05:a5:53:64:f1:a9:
b5:7e:44:03:35:5e:76:e0:43:63:12:99:8c:d3:25:
89:a8:dd:12:3f:9c:96:70:9c:bf:1f:8c:f0:20:b6:
3f:79:66:af:69:86:c5:0a:e7:c3:82:74:f6:79:b6:
77:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:0A:28:BA:55:EE:AC:53:56:FF:2F:DF:FD:0D:7A:6B:BC:EA:69:24
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/hQooulXurFNW_y_f_Q16a7zqaSQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.59.254.0/24
85.31.45.0/24
Signature Algorithm: sha256WithRSAEncryption
28:0c:cd:33:c0:99:77:4a:65:b3:f1:f8:a3:48:36:f1:74:ca:
6b:6f:09:f2:b6:5f:45:4e:5e:0d:33:d2:e3:c2:c0:90:9c:07:
ff:c9:5b:be:cf:d2:ba:ae:15:6f:c8:a2:89:fa:6c:32:e0:c6:
d2:cc:ed:71:f7:ab:c2:d5:05:84:8a:20:f6:d9:e1:9e:78:96:
85:a5:dc:f9:eb:f6:7c:83:b0:23:ea:26:01:f7:7e:40:d2:1a:
88:d4:95:7e:73:65:a9:c2:01:d4:d2:60:71:df:6a:58:19:e1:
5e:44:01:cb:87:b0:c0:fe:a9:7a:0b:8b:a3:91:d3:95:c9:1e:
3d:c2:a3:1c:82:ee:21:af:4f:43:66:14:2a:73:27:0d:f5:a5:
7d:4c:30:e7:03:d5:ac:c9:51:28:6e:c2:7b:cc:26:a5:b4:a4:
74:67:3b:50:5f:03:39:29:81:06:c0:82:40:74:10:e5:51:b8:
fd:c4:44:ff:62:64:79:f5:91:32:b6:d5:a8:08:76:f0:be:9b:
a8:6d:78:af:8d:ef:bc:d3:a4:c2:9e:4c:f7:18:a8:f1:ed:84:
e1:ab:9b:ee:6b:7d:54:61:75:85:ae:a7:10:eb:5f:d9:5f:f9:
01:2b:05:75:e1:a0:49:26:17:46:f4:6e:77:23:d8:96:41:d6:
d2:2e:9f:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:50:40 2024 by rpki-client on console-ams.rpki-client.org