Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/Qic5P0inNGW06E3qoTzJVPqtxvg.roa
File: Qic5P0inNGW06E3qoTzJVPqtxvg.roa (raw, json)
Hash identifier: 0obIHHUD+UtHI31v9KYP0NfZraMQB1DcqVcIFipCoMM=
Subject key identifier: 42:27:39:3F:48:A7:34:65:B4:E8:4D:EA:A1:3C:C9:54:FA:AD:C6:F8
Certificate issuer: /CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Certificate serial: 01857039A4A8BA9022933E21D10014E01801
Authority key identifier: D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/Qic5P0inNGW06E3qoTzJVPqtxvg.roa
Signing time: Mon 02 Jan 2023 02:05:03 +0000
ROA not before: Mon 02 Jan 2023 02:05:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56876
IP address blocks: 194.233.0.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:39:a4:a8:ba:90:22:93:3e:21:d1:00:14:e0:18:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Validity
Not Before: Jan 2 02:05:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4227393f48a73465b4e84deaa13cc954faadc6f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:55:00:21:8f:01:c8:af:b1:58:d3:a6:c9:5c:
8d:89:82:43:91:c0:94:90:f7:62:ce:eb:e1:14:f0:
34:3a:90:7a:18:a4:96:dc:2c:9c:fa:7c:d3:be:20:
a5:e6:7f:5a:81:23:d5:87:1f:a3:17:8c:2b:e6:d1:
8c:6e:f9:09:f0:23:f6:7f:0a:d2:57:f0:0b:b5:bd:
32:0a:8a:03:d4:da:af:f3:a4:bd:89:0e:12:c5:bb:
50:3b:59:4f:e2:36:42:09:9e:2c:93:15:37:05:4a:
a1:a4:15:0b:c8:02:c2:6a:9d:98:02:fa:50:7b:ea:
8a:6a:25:c8:5e:0a:0f:0b:d2:ac:bd:97:f4:12:62:
c4:97:a3:7b:2e:0b:7b:51:52:7e:0a:89:0b:2e:af:
8e:cc:11:e8:69:61:54:a2:4c:78:de:b8:ea:f8:b4:
74:04:09:6e:c9:be:21:c5:79:7b:ee:52:40:05:6a:
76:6d:ae:f4:cf:29:58:28:ee:72:a9:37:8a:ac:b8:
da:2f:bd:f4:ad:38:ab:60:02:58:f1:4a:16:ad:95:
17:5d:8d:62:d3:7f:b7:97:b0:94:52:91:fd:04:03:
b5:54:0d:34:55:e7:84:70:bd:d7:79:ff:8c:94:0b:
35:76:7b:ce:c3:4c:a0:0e:f0:a0:df:92:fd:66:e9:
8e:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:27:39:3F:48:A7:34:65:B4:E8:4D:EA:A1:3C:C9:54:FA:AD:C6:F8
X509v3 Authority Key Identifier:
keyid:D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/Qic5P0inNGW06E3qoTzJVPqtxvg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/10cBdWTHEby9V2gKDf0A8qXQmds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.233.0.0/22
Signature Algorithm: sha256WithRSAEncryption
81:5d:7c:36:7b:38:2b:68:50:70:03:85:8b:33:5b:a6:88:32:
bc:09:71:ac:ab:64:33:49:1b:af:64:09:15:3f:9a:a6:65:ed:
ac:81:8c:97:ea:09:24:b9:43:bc:4d:d0:c8:72:83:4b:77:fd:
77:e9:b5:ec:bf:1b:d8:ad:26:fb:b9:f8:64:6f:f4:51:b7:5d:
72:90:3d:1c:ff:ea:43:3f:2a:e5:1e:94:f4:78:4d:40:fd:68:
81:fd:6c:fb:5a:f8:77:f3:ce:b6:6c:01:1b:0b:2b:59:0e:9f:
92:c1:08:03:f5:2b:1a:63:31:25:16:23:07:8b:2a:53:47:aa:
57:6c:2e:ad:46:d7:54:9f:83:5c:29:14:26:12:7a:56:93:8e:
96:dc:9b:28:3e:dc:1a:85:be:72:ff:37:1f:46:03:bc:81:a7:
42:d8:64:88:de:56:50:97:aa:4a:73:d9:51:c2:dd:4e:26:b5:
9b:97:3f:f4:83:77:05:c2:99:4c:44:9f:7d:41:6b:f8:61:32:
9a:d2:e4:91:67:b0:e4:d7:2c:ff:63:b4:ff:cf:d6:f9:40:45:
4a:ef:2f:ac:b8:04:5d:fd:6f:b3:8c:ae:b2:c1:46:43:6c:9a:
4d:04:50:5d:25:8f:7f:77:37:eb:4a:c5:f0:b6:80:2e:f8:58:
81:25:7b:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 04:22:12 2024 by rpki-client on console-fra.rpki-client.org