Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/Q-wm1u8-uS1bGzI2u9k0xDgd0g4.roa
File: Q-wm1u8-uS1bGzI2u9k0xDgd0g4.roa (raw, json)
Hash identifier: HK37I1/3SZ+PJ3K1RQzXN0SowP+nyx6z4+Y627VVS6E=
Subject key identifier: 43:EC:26:D6:EF:3E:B9:2D:5B:1B:32:36:BB:D9:34:C4:38:1D:D2:0E
Certificate issuer: /CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Certificate serial: 01856FF9820B3F4338FFB117E435EE25D8EF
Authority key identifier: 05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/Q-wm1u8-uS1bGzI2u9k0xDgd0g4.roa
Signing time: Mon 02 Jan 2023 00:55:00 +0000
ROA not before: Mon 02 Jan 2023 00:55:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198938
IP address blocks: 213.222.50.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:f9:82:0b:3f:43:38:ff:b1:17:e4:35:ee:25:d8:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Validity
Not Before: Jan 2 00:55:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=43ec26d6ef3eb92d5b1b3236bbd934c4381dd20e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:14:0b:97:df:36:1c:de:59:5d:12:07:f2:02:
cc:1a:a3:fb:46:8f:da:08:d0:69:80:12:21:93:ba:
e9:6f:0b:4d:59:c0:9b:35:da:7c:94:7a:4a:82:d2:
ff:59:70:2e:48:99:9c:af:e1:71:79:ba:d8:a7:80:
ad:b9:c1:36:86:59:e2:06:4c:05:51:23:7f:6c:7b:
61:dc:c9:60:db:3e:b3:5d:a4:f0:33:83:4d:af:19:
75:1b:11:c1:4f:e1:46:fa:fd:ad:b6:7d:1c:12:08:
d0:d7:21:0e:a4:11:f3:ab:cd:4d:4d:52:08:10:47:
7e:21:cc:aa:31:e5:71:a9:25:8b:ac:89:63:c6:d2:
95:57:e6:16:8d:fa:57:f1:bc:44:e2:63:de:c9:39:
44:47:ab:96:e0:25:d8:03:b5:3c:0c:81:bb:23:8e:
71:3f:1f:aa:ef:c9:21:1a:34:77:e6:ce:53:85:f8:
9c:22:e8:c0:b7:d6:d3:da:1d:71:a7:2f:2c:e3:54:
41:59:e7:2f:f4:2b:fa:a3:19:7c:76:f4:0e:92:33:
8f:af:f2:2b:c4:fe:6b:b7:c4:40:a0:5e:b6:66:e9:
b5:10:bc:86:db:5c:ee:70:10:57:ab:34:b2:e1:b6:
53:ac:1d:8d:1b:8e:50:dd:74:fd:ed:c5:9b:73:c8:
b3:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:EC:26:D6:EF:3E:B9:2D:5B:1B:32:36:BB:D9:34:C4:38:1D:D2:0E
X509v3 Authority Key Identifier:
keyid:05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/Q-wm1u8-uS1bGzI2u9k0xDgd0g4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/BUjO3xcCntmKEIETxsEJ7KzNguw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.222.50.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:bb:19:0d:79:0f:3c:98:48:c0:50:cf:9d:2c:0c:74:ed:d5:
6c:3e:e2:c6:32:f0:c4:7b:7d:7e:3f:b4:cb:20:53:97:a1:e9:
e8:13:8a:98:62:ec:38:a3:a8:39:95:94:8f:3c:07:3d:c6:ed:
34:fe:df:94:3f:e5:2e:8a:5b:4a:0d:90:3c:85:f1:ab:bb:1d:
12:df:ee:cb:a4:55:36:2d:25:d2:13:1a:bb:6a:6c:0a:88:57:
e3:b2:44:b3:5f:da:42:c8:60:c7:99:59:76:87:1d:d9:13:9d:
87:8e:33:b4:c7:ad:85:49:1c:c2:30:37:37:d9:0f:2b:b7:4c:
c0:ae:4d:0c:71:0e:bc:69:ef:92:43:e9:2f:af:09:64:cf:f1:
4f:73:d1:4a:c4:e5:e3:2b:4a:ec:30:75:55:45:8a:e1:71:65:
87:13:03:9c:95:e0:8c:ff:ec:0f:b7:65:40:50:b6:9c:2a:14:
2d:d4:7d:84:26:46:5d:39:a2:29:09:ff:7c:c9:e8:20:5e:54:
df:31:0c:ab:db:dc:f2:d2:e8:2c:6a:2b:90:7d:74:d2:ee:3e:
bd:7c:0e:bb:ba:ab:4e:99:29:cc:d8:ea:8e:a3:09:91:25:aa:
b2:9d:b6:a0:b9:6d:73:15:83:0d:d0:73:45:15:63:cf:56:e3:
99:ec:6e:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:18:44 2024 by rpki-client on console-ams.rpki-client.org