Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/qdkeErGpEQb1KJDCsrqG_tBEucM.roa
File: qdkeErGpEQb1KJDCsrqG_tBEucM.roa (raw, json)
Hash identifier: JxiGxY4LGQCAC9d75ri/l0OFNrUd0CF7SEKZ02KvPYM=
Subject key identifier: A9:D9:1E:12:B1:A9:11:06:F5:28:90:C2:B2:BA:86:FE:D0:44:B9:C3
Certificate issuer: /CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Certificate serial: 018572BA7E710589C21910D966427235A6C9
Authority key identifier: 68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/qdkeErGpEQb1KJDCsrqG_tBEucM.roa
Signing time: Mon 02 Jan 2023 13:45:02 +0000
ROA not before: Mon 02 Jan 2023 13:45:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48707
IP address blocks: 212.91.6.0/23 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:ba:7e:71:05:89:c2:19:10:d9:66:42:72:35:a6:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Validity
Not Before: Jan 2 13:45:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a9d91e12b1a91106f52890c2b2ba86fed044b9c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:f4:8c:16:00:4a:dd:f4:d4:2d:f4:a7:cc:ad:
7d:11:ec:46:1f:e1:05:5d:2d:5b:e5:c1:cb:90:57:
7b:41:b6:23:a2:00:ca:b5:3e:0d:c3:ba:09:6c:12:
02:31:53:b8:ea:09:dd:a4:d9:98:e3:a7:8e:65:0a:
2a:c3:5c:bd:2c:97:cf:dc:23:3f:76:8d:a8:49:3e:
bd:7c:08:7c:0d:5e:37:22:12:d0:6e:e0:c8:11:56:
83:ff:b7:84:bd:9b:69:34:de:c7:94:ec:b0:9f:5c:
1d:3c:ed:e3:37:cf:fd:13:da:83:1e:ee:a7:89:a0:
39:96:58:81:e2:d8:b7:a2:97:02:3d:63:25:bd:2f:
40:3c:50:84:52:a3:bc:40:e8:5a:c6:16:0b:41:1e:
33:c8:7e:c8:29:64:5d:2d:05:5d:cd:8e:e6:1b:1c:
10:f1:6f:d0:a7:d4:91:e7:8e:0f:39:bc:48:c8:f3:
07:d2:81:50:63:e9:25:82:e1:dc:c7:72:51:db:aa:
b9:32:32:c3:12:de:10:28:94:52:c5:72:9e:38:61:
5d:ff:0e:4a:8b:6d:fd:1e:d1:7b:32:fe:4a:19:8a:
9c:da:6c:5c:b1:9e:2e:31:65:4b:7c:d3:1c:4f:0a:
e3:9a:eb:13:ab:20:91:53:56:ab:c7:f1:80:87:7b:
5b:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:D9:1E:12:B1:A9:11:06:F5:28:90:C2:B2:BA:86:FE:D0:44:B9:C3
X509v3 Authority Key Identifier:
keyid:68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/qdkeErGpEQb1KJDCsrqG_tBEucM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/aMUQ_JuGXZbjr8fFYFbvrZozDFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.91.6.0/23
Signature Algorithm: sha256WithRSAEncryption
1b:f1:e1:9b:96:52:38:eb:8b:a9:4d:ca:ce:fe:36:bc:fc:52:
41:2e:3d:99:d1:4f:bc:d4:c4:c9:5b:cb:77:fd:93:ff:23:40:
fc:8a:01:d1:f0:66:45:c1:b4:ff:05:21:50:5a:30:3d:c0:da:
5c:1b:34:03:7e:3c:6d:46:d0:f0:62:79:0b:c7:48:72:01:7f:
e4:82:db:67:d1:ec:fc:41:e7:b0:30:a9:ba:33:97:52:03:70:
e4:f7:cb:e1:15:fe:df:11:bd:fa:ab:6d:3e:e2:7b:12:39:b6:
00:a7:2e:6a:75:a7:88:70:02:54:bf:76:f7:69:50:2c:d0:28:
c0:48:5b:06:da:aa:be:d0:4f:b9:cf:f9:e1:e4:6d:d3:d8:51:
0a:cb:e9:cc:84:11:d6:02:dd:34:68:1e:de:4e:94:22:71:6a:
aa:b6:93:fa:2f:93:97:99:27:f3:ce:b9:93:f7:09:f7:69:87:
76:83:33:00:29:04:c2:f2:d3:b5:cc:50:9b:ff:ca:e6:d8:a6:
da:89:0a:6c:e2:ab:f0:01:ce:ca:90:df:b3:8b:a2:95:21:b4:
e4:55:1b:71:1e:56:82:0e:67:31:22:61:2c:cf:91:11:33:eb:
31:87:eb:0e:a6:9b:22:5f:e0:00:fc:7f:98:08:36:4c:53:24:
aa:8c:f0:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 3 12:44:54 2023 by rpki-client on console-ams.rpki-client.org