Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/ac9af6-7fc3-4d13-a594-060a4738091d/1/Qs9QQvvnN8-KlvMlHGjZCDQUTfE.roa
File: Qs9QQvvnN8-KlvMlHGjZCDQUTfE.roa (raw, json)
Hash identifier: qV5bzXK6L9gElS14665gJpi+QPvepAtAU8v+J9WybC8=
Subject key identifier: 42:CF:50:42:FB:E7:37:CF:8A:96:F3:25:1C:68:D9:08:34:14:4D:F1
Certificate issuer: /CN=53b46ab79b9fc58f5dc4cf29d72dc5267ec3edde
Certificate serial: 018A039C877D4AF19128FBD1A819E5ED375B
Authority key identifier: 53:B4:6A:B7:9B:9F:C5:8F:5D:C4:CF:29:D7:2D:C5:26:7E:C3:ED:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U7Rqt5ufxY9dxM8p1y3FJn7D7d4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/ac9af6-7fc3-4d13-a594-060a4738091d/1/Qs9QQvvnN8-KlvMlHGjZCDQUTfE.roa
Signing time: Thu 17 Aug 2023 13:08:24 +0000
ROA not before: Thu 17 Aug 2023 13:08:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 80.254.228.0/24 maxlen: 24
2a13:5241::/32 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:30:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:03:9c:87:7d:4a:f1:91:28:fb:d1:a8:19:e5:ed:37:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53b46ab79b9fc58f5dc4cf29d72dc5267ec3edde
Validity
Not Before: Aug 17 13:08:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=42cf5042fbe737cf8a96f3251c68d90834144df1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:92:8a:04:93:92:94:8c:56:af:7e:f0:09:5b:
bc:54:8f:27:57:1e:16:75:9f:09:81:fa:61:ec:8b:
22:74:31:c6:15:1c:66:9d:a0:20:2d:f1:bb:1b:be:
11:1d:82:00:db:c8:c1:d8:7c:10:f2:fd:3a:32:b2:
17:ed:ab:86:d7:f4:d0:13:fc:e4:70:51:01:40:8b:
9e:be:77:a7:98:73:eb:17:56:94:4f:fa:fb:c0:57:
41:95:ab:46:54:a9:21:52:c3:70:db:dd:aa:1d:65:
de:7b:c1:d8:e4:77:94:3b:dd:12:11:95:23:9f:14:
43:37:5a:25:35:af:9f:70:b6:42:9e:ef:39:0c:5d:
af:3a:17:4c:25:8a:6f:45:7e:96:88:16:d5:57:69:
5a:00:c9:25:69:b0:0d:ac:1a:d6:af:32:a9:cf:d0:
b3:16:3a:3a:b3:35:f6:ae:32:bf:f7:72:4b:d6:a2:
cb:31:31:75:a0:fb:d4:6d:d0:55:bb:1b:88:32:c8:
61:77:a2:87:9b:2c:63:44:aa:d4:a3:0e:fb:cc:4d:
93:ac:e7:7e:2d:22:6e:f9:aa:71:cf:c5:8a:6d:65:
dd:56:8b:e3:6f:93:fd:8a:f7:64:09:43:70:52:c6:
a7:61:a1:19:71:7e:bd:e0:18:13:c8:42:9c:00:da:
e5:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:CF:50:42:FB:E7:37:CF:8A:96:F3:25:1C:68:D9:08:34:14:4D:F1
X509v3 Authority Key Identifier:
keyid:53:B4:6A:B7:9B:9F:C5:8F:5D:C4:CF:29:D7:2D:C5:26:7E:C3:ED:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U7Rqt5ufxY9dxM8p1y3FJn7D7d4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/ac9af6-7fc3-4d13-a594-060a4738091d/1/Qs9QQvvnN8-KlvMlHGjZCDQUTfE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/ac9af6-7fc3-4d13-a594-060a4738091d/1/U7Rqt5ufxY9dxM8p1y3FJn7D7d4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.254.228.0/24
IPv6:
2a13:5241::/32
Signature Algorithm: sha256WithRSAEncryption
4c:40:ab:e8:4f:66:d2:ef:5e:fc:bb:52:f5:7d:d2:14:f5:41:
40:da:ca:57:3f:30:64:4f:f1:18:63:45:43:f4:a6:4e:3c:8a:
4e:6b:91:4c:8f:c7:1b:93:27:5b:49:bd:12:9f:ac:f6:3f:63:
57:6a:7c:7a:ff:10:3c:f8:d1:c6:01:d5:94:af:d5:60:26:2c:
94:53:62:c8:2b:00:0b:a2:64:91:e5:e1:80:6e:2e:a9:b1:7b:
47:94:b5:b9:25:20:e1:bb:05:80:ba:e7:9c:06:9e:a1:28:48:
93:65:50:37:04:1c:5f:af:f0:60:13:ba:ab:de:d5:0d:93:11:
4d:af:79:06:1a:b6:4b:86:43:d2:1c:81:62:26:a6:68:5b:94:
8a:b0:67:5f:fd:b4:72:b0:9e:23:1d:3e:4b:19:1d:14:c8:36:
8e:49:06:be:e1:00:5d:58:d6:d3:48:4c:b0:03:d9:37:d9:d6:
c0:05:9f:11:98:67:db:aa:df:d4:0d:41:f4:f0:01:e0:f6:72:
fd:bc:81:08:32:f9:26:d1:30:1a:38:3a:99:1b:95:30:e9:40:
d0:25:ce:73:46:d3:80:a5:28:0a:05:bf:23:a8:f6:52:91:99:
3f:35:a0:ad:33:19:5b:d6:9b:e2:e2:16:09:f2:a5:80:71:b9:
62:43:c0:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:34 2024 by rpki-client on console-fra.rpki-client.org