Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/22b7ab-fc11-407a-bd3c-63411367d90a/1/qG55N1NpCr1-0mzrNJK6QGtCS0M.roa
File: qG55N1NpCr1-0mzrNJK6QGtCS0M.roa (raw, json)
Hash identifier: NPjpf+tR1xLLNdW95BpxlOuo6RSZdxD06gwu2mJoJqY=
Subject key identifier: A8:6E:79:37:53:69:0A:BD:7E:D2:6C:EB:34:92:BA:40:6B:42:4B:43
Certificate issuer: /CN=9f0743496c7ff3effb870601139cad9d2f271e10
Certificate serial: 018570796B51FA335EF319236782E1D3EB4B
Authority key identifier: 9F:07:43:49:6C:7F:F3:EF:FB:87:06:01:13:9C:AD:9D:2F:27:1E:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nwdDSWx_8-_7hwYBE5ytnS8nHhA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/22b7ab-fc11-407a-bd3c-63411367d90a/1/qG55N1NpCr1-0mzrNJK6QGtCS0M.roa
Signing time: Mon 02 Jan 2023 03:14:43 +0000
ROA not before: Mon 02 Jan 2023 03:14:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 185.89.249.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:79:6b:51:fa:33:5e:f3:19:23:67:82:e1:d3:eb:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f0743496c7ff3effb870601139cad9d2f271e10
Validity
Not Before: Jan 2 03:14:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a86e793753690abd7ed26ceb3492ba406b424b43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:13:5c:cd:86:56:35:b8:9c:28:9f:fb:12:87:
db:28:5e:27:52:ac:57:c6:74:46:73:e9:3c:88:4b:
04:7a:45:d7:dd:c2:ff:de:e9:c4:11:88:83:34:ac:
be:ae:7f:2a:06:32:d0:69:bb:2a:5c:da:08:5f:3b:
5d:5d:f3:f1:d7:b4:61:3c:6c:04:f5:e1:77:a1:55:
64:d4:03:c4:eb:1a:02:45:e5:11:ac:cf:ad:a5:ce:
81:ff:9b:7f:1b:40:d7:0c:ff:28:a7:5c:18:3a:19:
70:2b:c2:7c:67:ea:bf:c2:2c:a6:b3:87:78:db:fa:
a8:2f:5f:ad:5b:f1:46:73:73:07:4e:a1:77:1b:d2:
da:19:8b:e9:48:b4:47:f8:00:d2:5b:76:2f:b2:48:
d9:b8:6b:a5:7e:dd:73:a1:45:f9:61:cc:ab:bd:f3:
0f:23:f6:66:ad:0f:de:74:c6:72:42:fe:d3:2b:6b:
ac:ad:0a:28:ba:38:fa:05:3e:a8:51:13:bf:7a:7d:
e9:8a:b7:ab:66:58:22:60:48:91:89:50:d4:df:30:
4f:3c:c4:1c:e3:f6:55:72:6f:26:d6:23:6d:ef:d9:
9f:74:ac:a1:e1:53:05:68:64:8b:01:02:46:af:c7:
26:d0:34:fb:29:63:47:1e:68:d8:7d:2a:52:cf:97:
34:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:6E:79:37:53:69:0A:BD:7E:D2:6C:EB:34:92:BA:40:6B:42:4B:43
X509v3 Authority Key Identifier:
keyid:9F:07:43:49:6C:7F:F3:EF:FB:87:06:01:13:9C:AD:9D:2F:27:1E:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nwdDSWx_8-_7hwYBE5ytnS8nHhA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/22b7ab-fc11-407a-bd3c-63411367d90a/1/qG55N1NpCr1-0mzrNJK6QGtCS0M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/22b7ab-fc11-407a-bd3c-63411367d90a/1/nwdDSWx_8-_7hwYBE5ytnS8nHhA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.89.249.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:7d:69:a1:64:cc:e1:c0:68:c7:94:49:16:c1:ef:42:cd:e2:
ac:b0:b8:19:7b:92:24:f7:7d:8a:a1:49:65:1c:3a:f6:14:d2:
bf:98:05:cb:7f:73:32:29:a2:71:54:ec:ac:d6:c9:45:bf:4f:
86:82:98:1f:8e:60:5e:45:eb:8c:b2:26:a6:11:e8:0a:e1:60:
b9:98:30:4f:38:97:10:c3:2f:69:8f:c3:43:82:4c:1a:74:8a:
d2:89:7f:0e:94:ab:a1:93:17:30:8f:c5:2b:96:0d:a7:87:12:
c8:35:75:13:f3:66:50:ef:88:d1:3c:e8:52:06:41:e1:80:6c:
32:53:9e:58:dc:3b:7e:6a:3f:db:6b:61:b5:d0:1e:28:ee:c7:
7f:f3:5b:76:a3:4d:7f:c5:fe:50:f7:83:61:54:8e:b1:7d:07:
20:59:d4:e3:1a:cc:4b:7c:a7:e5:e5:f8:9a:a8:24:60:be:ac:
6c:12:81:f7:0a:aa:f9:00:7a:c9:9c:29:c8:02:df:c7:09:51:
f8:2b:39:a6:a1:77:5a:ac:d7:00:8e:19:60:d6:0b:67:93:4e:
54:77:d1:82:0f:81:ff:63:0f:8b:bd:90:9f:78:19:ce:42:8e:
bc:68:4a:76:4b:a8:65:41:a3:44:7f:69:ad:00:a3:44:ae:4a:
2c:35:9a:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:26 2023 by rpki-client on console-fra.rpki-client.org