Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/2adc39-3630-425f-af29-fbb0d3c10423/1/qWmn8jHjXEZJQlmLkhFzwBpUN3U.roa
File: qWmn8jHjXEZJQlmLkhFzwBpUN3U.roa (raw, json)
Hash identifier: qjUeclPORFG3AhV49iidAPdywkSu2QYGmy5P04wMX6c=
Subject key identifier: A9:69:A7:F2:31:E3:5C:46:49:42:59:8B:92:11:73:C0:1A:54:37:75
Certificate issuer: /CN=b16abdd9420f04ba9c1cd2c34dc7b352988af8d9
Certificate serial: 018572C38A774F682A8536F4F621F3458950
Authority key identifier: B1:6A:BD:D9:42:0F:04:BA:9C:1C:D2:C3:4D:C7:B3:52:98:8A:F8:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sWq92UIPBLqcHNLDTcezUpiK-Nk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/2adc39-3630-425f-af29-fbb0d3c10423/1/qWmn8jHjXEZJQlmLkhFzwBpUN3U.roa
Signing time: Mon 02 Jan 2023 13:54:55 +0000
ROA not before: Mon 02 Jan 2023 13:54:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8315
IP address blocks: 2.56.171.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:c3:8a:77:4f:68:2a:85:36:f4:f6:21:f3:45:89:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b16abdd9420f04ba9c1cd2c34dc7b352988af8d9
Validity
Not Before: Jan 2 13:54:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a969a7f231e35c464942598b921173c01a543775
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:fd:01:be:2a:bb:39:33:1e:9f:64:d3:16:67:
e2:e7:17:92:7b:bc:bc:b4:2a:1c:23:6a:79:6a:6c:
ae:a2:20:d4:28:8e:38:b4:cf:3a:be:cf:50:2a:68:
a2:59:fa:de:97:90:62:9d:ef:ab:3c:99:55:8c:80:
66:9c:6e:4f:e1:61:8f:78:65:ea:3b:2d:1c:23:d8:
a9:30:55:83:ce:a8:ed:39:9b:a3:d2:2b:12:0e:d7:
72:56:88:f6:1a:42:0c:d4:59:df:22:dd:23:24:b4:
b9:86:9e:b2:49:6b:41:25:f9:af:6c:61:22:ba:37:
92:ba:8f:d0:f8:28:cb:ab:5c:30:fc:4e:75:d0:24:
29:46:2d:05:b0:07:b3:83:43:e5:37:3d:84:61:ee:
b0:ad:e7:5f:b5:0c:20:60:32:a7:e9:56:b4:1f:75:
2f:6f:80:f8:58:af:77:e7:33:66:d1:f5:0d:ee:7b:
f4:7a:de:4f:cc:e3:22:5a:7b:46:37:34:bb:42:70:
d7:b1:a3:c1:3c:4f:75:47:fc:2f:4b:68:0d:dd:81:
56:c1:73:16:6f:fb:5e:bf:de:08:66:fb:29:94:4f:
e2:5c:91:d3:72:43:c6:bf:0f:f6:c7:51:53:8a:48:
b7:52:10:55:f4:52:7e:32:75:c9:de:d3:5d:6e:fd:
c7:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:69:A7:F2:31:E3:5C:46:49:42:59:8B:92:11:73:C0:1A:54:37:75
X509v3 Authority Key Identifier:
keyid:B1:6A:BD:D9:42:0F:04:BA:9C:1C:D2:C3:4D:C7:B3:52:98:8A:F8:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sWq92UIPBLqcHNLDTcezUpiK-Nk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/2adc39-3630-425f-af29-fbb0d3c10423/1/qWmn8jHjXEZJQlmLkhFzwBpUN3U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/2adc39-3630-425f-af29-fbb0d3c10423/1/sWq92UIPBLqcHNLDTcezUpiK-Nk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.171.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:16:6d:3f:b2:4a:ea:f2:d9:d8:38:12:a0:e2:1f:60:ef:38:
67:db:dc:d6:4d:e3:b5:1c:83:8e:9d:11:d0:ca:ec:ff:f7:33:
67:1c:e8:1f:dc:40:c8:58:c4:b2:96:83:c2:bf:36:9c:c8:2b:
22:4f:f5:b4:2e:27:e6:36:ed:e2:59:24:63:ca:a8:b5:2b:97:
2a:f8:3c:27:23:02:46:aa:f3:40:9c:a2:bc:f4:a7:b5:c2:b0:
4e:4d:90:05:8a:b3:fc:37:e1:b5:aa:06:26:07:31:b8:02:1b:
d4:f1:14:9c:97:26:01:b6:cc:42:40:e8:a1:29:53:aa:28:8a:
c3:9e:0e:48:48:94:35:b5:00:4c:f1:ad:4e:29:e3:71:7c:d6:
d5:09:91:fb:1a:84:5e:5f:6f:6d:5b:57:32:2c:c4:a9:00:63:
50:77:4a:cb:fa:95:ee:97:58:5e:11:b0:9e:89:77:c0:7f:f4:
99:7b:b1:e8:91:86:5d:18:2e:0d:97:d5:9b:28:b5:c2:ef:08:
54:0a:cf:61:8a:77:1e:ff:19:1e:45:1f:d8:5a:a2:32:9d:7c:
4e:53:95:c4:ef:63:15:90:16:0b:ef:9c:04:31:ab:b8:a1:bd:
cc:e5:0a:62:d8:2d:db:24:07:4c:8d:1a:a4:60:cd:96:82:a5:
25:d8:db:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 11:51:11 2024 by rpki-client on console-fra.rpki-client.org