Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/q6vAL6MsbH5woJA-pQ4DkLZMp9s.roa
File: q6vAL6MsbH5woJA-pQ4DkLZMp9s.roa (raw, json)
Hash identifier: 9bWXST40os1lgDC/6mVabSzUzEjPOB/CQP2Id07Qb+4=
Subject key identifier: AB:AB:C0:2F:A3:2C:6C:7E:70:A0:90:3E:A5:0E:03:90:B6:4C:A7:DB
Certificate issuer: /CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Certificate serial: 01881F3D677B4D6E8E8D8CDFEC4065BCDD3A
Authority key identifier: D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/q6vAL6MsbH5woJA-pQ4DkLZMp9s.roa
Signing time: Mon 15 May 2023 11:48:17 +0000
ROA not before: Mon 15 May 2023 11:48:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 64267
IP address blocks: 195.180.137.0/24 maxlen: 24
194.233.149.0/24 maxlen: 24
195.180.149.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:1f:3d:67:7b:4d:6e:8e:8d:8c:df:ec:40:65:bc:dd:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Validity
Not Before: May 15 11:48:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ababc02fa32c6c7e70a0903ea50e0390b64ca7db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:2b:40:18:a7:3f:bf:10:33:22:a4:ce:e2:db:
dd:9b:57:17:08:34:e8:19:01:e4:99:ce:cc:4c:0d:
50:64:00:6f:af:72:58:c4:90:79:68:e7:3d:68:dd:
0e:49:ee:41:65:09:58:17:40:07:7d:d7:b6:33:b8:
da:6e:57:5e:57:74:55:fe:fc:10:6a:9f:e2:fa:ec:
96:13:06:d9:e3:a2:64:76:29:2a:ae:05:ba:30:23:
48:c4:51:76:f9:7a:df:90:5c:da:b7:63:c1:5d:ba:
ca:f4:64:7a:e3:19:2f:fd:d9:bc:b8:61:23:3f:d5:
7b:58:64:bb:15:3d:b1:67:ca:9e:37:fa:61:5d:ae:
e7:04:45:9c:54:c4:27:be:92:88:ae:d1:a5:e5:27:
85:32:79:99:79:8d:d6:57:b2:fd:7d:ff:24:b8:1f:
89:7e:d4:56:48:bd:8a:f7:40:bd:bc:6f:53:dc:a4:
83:04:bd:3d:4f:e6:7b:44:e8:65:f2:54:34:0e:5a:
7f:fa:e3:f7:14:ad:b9:de:9b:e2:7d:57:a9:bb:d7:
87:c0:1a:8e:99:a0:61:ad:a0:50:5e:6d:0b:e4:2c:
cf:ac:e5:22:f9:86:f7:93:39:55:7c:f6:53:d4:3d:
67:5f:20:5c:6c:94:df:9d:23:40:57:40:19:a3:51:
62:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:AB:C0:2F:A3:2C:6C:7E:70:A0:90:3E:A5:0E:03:90:B6:4C:A7:DB
X509v3 Authority Key Identifier:
keyid:D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/q6vAL6MsbH5woJA-pQ4DkLZMp9s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/10cBdWTHEby9V2gKDf0A8qXQmds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.233.149.0/24
195.180.137.0/24
195.180.149.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:6f:d9:9f:4e:34:c6:16:4b:e4:2a:48:1f:3e:ab:f6:05:46:
37:08:1d:a5:75:84:9e:90:da:13:02:1d:cf:27:37:ee:87:17:
76:09:a3:b9:b0:19:4e:33:99:d4:f3:21:c8:97:e4:bf:94:88:
48:ca:c0:96:ff:05:55:4f:95:8d:15:be:30:f3:20:1f:81:cd:
00:fb:a3:f2:b8:33:d0:88:bc:c0:72:e2:5c:dc:73:4e:7a:c9:
80:9a:61:01:d4:78:08:cb:85:4e:4d:5b:82:e3:b1:5a:97:d7:
21:99:99:e2:19:3b:8a:3b:21:65:4e:36:20:a7:f7:fe:59:c2:
a8:5e:17:60:2b:ca:f9:b1:d4:3c:01:4f:64:36:96:d9:c2:ed:
9c:49:73:d2:36:d8:ea:83:eb:13:50:b9:23:99:55:b2:4c:54:
6e:58:30:ca:12:90:59:8b:df:82:40:03:1b:22:c1:cd:05:32:
78:cc:28:0b:0f:06:c0:20:52:76:a9:31:48:19:3b:e1:aa:d8:
c7:18:ca:2d:64:50:07:b9:20:35:e8:a2:36:f1:44:c1:02:db:
cf:2c:8c:f0:15:10:1c:9e:ff:e3:fa:49:be:6c:58:5d:88:ca:
1d:08:68:54:ed:18:eb:61:72:68:54:c1:6c:05:94:6c:a8:f8:
c9:34:8c:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:42 2023 by rpki-client on console-fra.rpki-client.org