Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/qyp2CawoREeNEiDr6LGd2yWbUvA.roa
File: qyp2CawoREeNEiDr6LGd2yWbUvA.roa (raw, json)
Hash identifier: pHYkaPlYSCMKv9fyqGR24Ud9jHw0c2klG1I9c4oKxQM=
Subject key identifier: AB:2A:76:09:AC:28:44:47:8D:12:20:EB:E8:B1:9D:DB:25:9B:52:F0
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 0192F0CC6C170BBB946EB5D0565318F08421
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/qyp2CawoREeNEiDr6LGd2yWbUvA.roa
Signing time: Sun 03 Nov 2024 06:53:01 +0000
ROA not before: Sun 03 Nov 2024 06:53:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214295
IP address blocks: 87.120.93.0/24 maxlen: 24
171.22.28.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 17:50:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:f0:cc:6c:17:0b:bb:94:6e:b5:d0:56:53:18:f0:84:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Nov 3 06:53:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ab2a7609ac2844478d1220ebe8b19ddb259b52f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:42:7a:85:84:c7:08:8d:dc:99:3b:df:25:58:
2c:30:37:6e:11:88:ba:b5:bc:9e:15:60:e5:64:e7:
e7:28:9f:eb:df:89:77:17:9f:4d:6e:c0:54:04:8e:
16:1c:64:99:2a:92:60:fe:ca:16:4f:7b:db:e2:5c:
34:08:9f:17:60:54:bb:8b:11:ce:df:f1:3d:cd:44:
5d:cd:12:95:37:59:c3:d6:42:56:3d:ed:30:3f:d4:
a7:ef:c1:18:55:72:02:31:90:16:f4:99:a2:ce:37:
10:ce:4b:97:db:91:17:3b:e5:d6:55:76:31:33:3a:
c2:1c:e9:88:ce:83:a3:1e:20:62:dd:bc:c0:47:a2:
93:2f:2e:83:a0:15:cb:4c:8e:f5:d9:6c:a2:b9:bd:
82:62:59:10:59:d4:c2:5f:1a:a5:27:e9:04:e2:ac:
96:87:14:19:4b:3d:38:bf:cd:c0:d1:8e:6c:cd:7b:
60:a6:73:48:e4:75:49:8e:95:06:bf:76:df:3f:12:
0b:77:d5:b4:ec:e0:73:20:90:f4:3c:46:54:fe:46:
1b:1c:82:60:e0:1b:d3:b8:87:f0:1e:e9:2f:ad:27:
e4:ab:9f:67:b9:53:9d:99:ac:06:d1:15:be:b3:2a:
a0:23:d5:1b:72:ec:0e:8d:2e:7a:ee:da:92:08:62:
fd:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:2A:76:09:AC:28:44:47:8D:12:20:EB:E8:B1:9D:DB:25:9B:52:F0
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/qyp2CawoREeNEiDr6LGd2yWbUvA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.120.93.0/24
171.22.28.0/24
Signature Algorithm: sha256WithRSAEncryption
76:df:f9:96:a5:4b:86:58:8e:c5:8c:c8:09:65:0e:3c:7f:90:
3b:5d:2a:f5:44:f8:b1:75:16:3b:d0:df:cc:e3:da:c2:1e:08:
6b:dc:74:92:1d:b6:ae:80:62:2f:4a:cd:ba:fa:ae:27:47:5d:
40:3d:c4:07:fa:71:e6:74:89:79:4c:ee:49:ae:7a:68:92:2d:
be:0d:81:4d:3c:e9:2b:02:96:26:73:d3:60:b8:37:d1:82:9c:
43:f8:cb:89:e3:87:34:4a:d1:70:d2:04:2b:58:86:ab:d3:78:
b5:e1:3a:3d:21:2b:ab:be:db:03:50:03:83:62:f3:06:6a:b5:
75:39:d2:3e:72:6c:b3:7c:77:85:cf:af:13:1c:f2:f6:09:aa:
1f:51:d2:60:e9:d9:74:a2:e4:a3:4c:6c:0b:70:ee:b6:59:c3:
c7:b2:04:01:18:28:a3:1f:c3:29:cb:ff:bd:08:41:c1:7f:87:
f6:bf:76:d4:31:fc:de:a1:f6:84:9e:64:9f:9a:1d:82:23:11:
31:c4:0b:17:12:c8:4c:31:6d:4e:aa:0d:1e:c3:24:ea:77:3c:
cf:d2:9e:b9:e2:35:ee:db:c2:bc:dc:95:01:f5:67:d8:f4:ef:
77:c7:6c:32:f8:4a:fa:4e:00:33:bc:63:5d:ac:f8:6f:c0:a5:
d1:88:56:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:24:03 2025 by rpki-client