Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/QO7qwZNMHC21psOg8QgoqSQ5mNk.roa
File: QO7qwZNMHC21psOg8QgoqSQ5mNk.roa (raw, json)
Hash identifier: Dq90mNH/+7Wg8xI4w0Q5hVHp4KCx1w8nbm++WCy/fSw=
Subject key identifier: 40:EE:EA:C1:93:4C:1C:2D:B5:A6:C3:A0:F1:08:28:A9:24:39:98:D9
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 01857328426B886299F2C8FECBBCB32A56F2
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/QO7qwZNMHC21psOg8QgoqSQ5mNk.roa
Signing time: Mon 02 Jan 2023 15:44:56 +0000
ROA not before: Mon 02 Jan 2023 15:44:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 196609
IP address blocks: 195.110.14.0/23 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:28:42:6b:88:62:99:f2:c8:fe:cb:bc:b3:2a:56:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Jan 2 15:44:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=40eeeac1934c1c2db5a6c3a0f10828a9243998d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:e1:cc:b2:86:28:79:3f:71:c1:ec:9e:a6:bb:
63:11:09:34:9f:b0:fb:b1:68:17:9a:94:50:a0:7b:
3f:9d:71:d2:5f:4b:c9:33:f6:f7:a6:34:ba:f7:14:
08:99:01:0d:8a:ac:4c:cb:8f:a4:90:7f:51:fb:de:
f1:0a:b7:1b:03:ae:b4:11:dd:8f:41:36:ef:ae:81:
b7:7b:e0:4c:24:51:1f:97:51:b7:7c:9c:84:71:ed:
84:3c:5b:5c:5e:72:b1:2c:e2:dd:64:65:1c:70:ad:
91:78:c3:36:b2:22:a9:1f:54:b8:36:82:dc:f6:30:
d1:06:ac:57:ff:4a:6b:8c:fd:ea:33:3e:f8:f0:ae:
84:cb:3b:0e:ed:05:ba:91:df:6d:b3:db:f4:ae:2d:
90:de:ff:14:86:20:ce:70:a1:ef:63:9d:65:2e:a3:
71:6b:2b:c2:8e:e3:01:3a:32:cc:3a:bf:25:55:ad:
0f:07:54:63:28:18:4c:9d:6a:5f:66:87:94:d5:70:
23:ed:2c:27:76:aa:cf:26:bf:20:5e:f4:60:44:3d:
f5:71:ca:a0:61:e5:60:4c:05:f8:0a:a1:6d:a2:f1:
0a:64:98:43:1a:e0:98:7b:11:c4:22:67:9c:47:5a:
e5:b0:d0:2a:eb:06:75:52:66:bd:2d:87:f0:aa:c1:
08:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:EE:EA:C1:93:4C:1C:2D:B5:A6:C3:A0:F1:08:28:A9:24:39:98:D9
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/QO7qwZNMHC21psOg8QgoqSQ5mNk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.110.14.0/23
Signature Algorithm: sha256WithRSAEncryption
ab:c2:a4:dc:5e:4b:29:b2:77:7a:50:ca:94:40:1d:0d:9e:62:
76:db:f1:fa:73:9e:e3:8d:15:ce:a5:bc:48:24:fb:03:64:9e:
54:fe:e4:40:04:04:98:ad:5a:76:eb:5e:c1:cc:b0:66:5a:3c:
da:2b:1c:ee:c8:c1:31:b9:b5:aa:fe:d6:a9:13:ba:0f:34:8d:
19:60:be:d4:46:a9:dd:24:4a:f9:b0:31:92:84:8b:59:93:41:
03:de:b2:fe:f6:cd:94:4a:3b:a4:ec:04:6f:c2:bc:90:57:cf:
b3:30:02:22:6b:90:6d:af:34:f9:f3:e4:36:65:f3:1c:fa:11:
56:04:13:02:08:8b:b6:49:b0:5e:0e:14:e4:77:7e:9b:25:47:
86:ed:cc:31:8d:98:d4:d0:c6:1d:fb:be:9a:c5:d2:40:81:bc:
28:6e:9e:b3:0c:fe:28:52:94:18:fd:86:ee:65:46:a8:04:00:
d0:b5:46:b4:18:bd:73:3b:0c:2e:cb:e5:f7:98:03:19:97:cd:
47:a1:75:8b:14:61:43:bc:1c:f7:17:d3:8a:ab:34:f7:ca:58:
66:9c:71:e8:ac:4d:17:e7:02:74:dc:56:93:41:00:e9:d9:6d:
5a:52:e3:15:ec:b3:a5:52:41:4d:b0:8b:ca:8c:4b:57:b0:b4:
e0:59:54:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:54 2024 by rpki-client on console-ams.rpki-client.org