Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/qkutxZ6BJK58Tyhc8gi7oh9l4Ck.roa
File: qkutxZ6BJK58Tyhc8gi7oh9l4Ck.roa (raw, json)
Hash identifier: 0z+1cQX54EcG844j5fiH+Afrr+BEm3AqCYjGo2HtCFs=
Subject key identifier: AA:4B:AD:C5:9E:81:24:AE:7C:4F:28:5C:F2:08:BB:A2:1F:65:E0:29
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 018E293B8593AECC4B5D0B3150613E010E2E
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/qkutxZ6BJK58Tyhc8gi7oh9l4Ck.roa
Signing time: Sun 10 Mar 2024 16:39:10 +0000
ROA not before: Sun 10 Mar 2024 16:39:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207783
IP address blocks: 194.102.170.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 26 Sep 2024 14:45:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:29:3b:85:93:ae:cc:4b:5d:0b:31:50:61:3e:01:0e:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Mar 10 16:39:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=aa4badc59e8124ae7c4f285cf208bba21f65e029
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:ac:6e:63:6a:27:d7:74:2a:ab:ee:48:8a:43:
21:b0:ab:13:c1:9c:06:52:55:d6:6b:fc:56:2e:84:
60:71:42:70:ed:46:03:64:82:04:fc:5d:07:6e:47:
d0:db:98:a6:6d:5d:91:11:88:77:3c:42:7b:4b:34:
9c:86:43:12:c0:5f:6a:15:fd:34:47:02:0e:35:31:
8b:90:93:ca:6c:8f:7b:75:64:85:e1:a8:3e:05:07:
6e:57:45:1a:6d:61:d4:b4:27:e4:11:2b:89:5f:1f:
21:29:f9:57:6a:d8:75:bd:57:f4:9c:d1:6d:00:7b:
e5:7f:c8:10:ab:08:2d:71:fd:45:d0:63:91:1d:da:
40:d7:db:d4:81:f9:3b:8b:69:bb:2c:dc:5a:b8:32:
26:03:9d:6c:0d:11:75:a9:80:2e:00:80:8a:0c:f7:
cd:e3:5f:d0:9f:e5:2f:5c:e8:a9:10:6f:45:db:58:
a4:fb:7a:f4:f1:51:81:bb:b8:d4:45:41:6e:c8:a4:
1b:75:df:5d:eb:03:c8:57:89:2d:08:70:3b:fb:7e:
f0:dc:73:40:6e:73:32:a8:d1:c7:e6:0f:68:e5:f3:
57:fe:a9:e2:17:f6:1f:70:43:5e:46:30:b9:5b:a9:
3b:f7:8b:38:a4:58:12:6c:c1:54:33:f5:d0:17:17:
cd:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:4B:AD:C5:9E:81:24:AE:7C:4F:28:5C:F2:08:BB:A2:1F:65:E0:29
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/qkutxZ6BJK58Tyhc8gi7oh9l4Ck.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.102.170.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:b5:f0:5d:33:88:2e:1b:66:51:3f:87:22:f3:ce:b4:0f:73:
7a:3d:34:5b:46:2a:f1:f7:71:5d:9e:ef:9a:17:71:8a:16:a6:
75:f1:eb:fd:28:a8:ce:07:07:73:b7:c6:fd:68:0e:08:d3:96:
b0:6f:1a:bd:3a:9a:06:3c:d4:61:88:8b:1b:3c:29:26:f1:7b:
ab:0b:62:48:19:33:c6:99:b6:d6:4b:b6:51:e1:91:dd:be:a2:
62:63:c2:a4:4b:06:cf:0d:16:52:77:27:b4:24:dc:49:b1:b0:
9e:fe:90:cf:fe:a3:8c:61:ad:7c:9d:a6:20:1f:98:fe:23:ff:
c7:f2:a8:74:1d:57:fc:ff:c5:e5:32:4b:ed:17:fa:3e:fc:01:
bc:2b:fc:9e:24:ea:90:63:f4:e3:a7:bf:98:fa:cd:bb:ae:09:
7a:e4:d2:af:13:e2:6c:53:32:0a:f2:b4:aa:c7:03:06:60:5a:
c7:d1:f1:c6:42:fa:52:a7:79:19:d1:7b:16:a2:5e:81:3d:6c:
53:31:a6:5f:17:14:4e:e5:b0:de:61:19:34:0a:65:5d:31:ef:
8f:67:22:fe:db:3d:92:87:a9:c3:38:0f:51:90:63:e2:03:db:
f2:60:bd:d9:d6:c3:29:a1:ab:be:95:59:a4:31:48:18:f0:bc:
0a:ed:7a:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 26 19:18:10 2024 by rpki-client on console-ams.rpki-client.org