Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/bb01ce-b9b0-4b15-9400-394f50d4ba38/1/qWEIbhWFuPr5DjJGckFRwyEdxok.roa
File: qWEIbhWFuPr5DjJGckFRwyEdxok.roa (raw, json)
Hash identifier: lixSdt5l0Uz5ESuCm99PMlwXaP0exGq8+8oMG2V52+w=
Subject key identifier: A9:61:08:6E:15:85:B8:FA:F9:0E:32:46:72:41:51:C3:21:1D:C6:89
Certificate issuer: /CN=27b24fd66efe6dc5c3aab2e2e651a4e207fe62e7
Certificate serial: 01856B256869210F7A5D297790BB0EC2B087
Authority key identifier: 27:B2:4F:D6:6E:FE:6D:C5:C3:AA:B2:E2:E6:51:A4:E2:07:FE:62:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J7JP1m7-bcXDqrLi5lGk4gf-Yuc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/bb01ce-b9b0-4b15-9400-394f50d4ba38/1/qWEIbhWFuPr5DjJGckFRwyEdxok.roa
Signing time: Sun 01 Jan 2023 02:24:51 +0000
ROA not before: Sun 01 Jan 2023 02:24:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25019
IP address blocks: 185.51.123.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 26 May 2023 18:58:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:25:68:69:21:0f:7a:5d:29:77:90:bb:0e:c2:b0:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27b24fd66efe6dc5c3aab2e2e651a4e207fe62e7
Validity
Not Before: Jan 1 02:24:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a961086e1585b8faf90e3246724151c3211dc689
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:9b:d1:8e:b7:9d:28:1a:83:4b:59:c3:b8:89:
15:2b:ae:41:42:54:cc:6d:7b:3a:70:8c:81:b9:90:
fb:66:01:97:c0:ee:89:a0:11:c3:a9:70:60:87:7f:
dd:28:58:47:b8:0f:10:ff:5a:bc:ff:15:5c:4d:c8:
74:84:9e:12:7e:4e:67:97:81:76:5c:0e:52:a3:22:
7b:3f:a3:9d:b4:86:b3:46:a4:54:1b:fb:6a:af:f1:
cb:7b:f8:d7:5d:86:3a:87:94:68:c8:7f:51:44:68:
ab:82:7d:f2:88:72:4e:86:55:72:d2:56:15:f5:ef:
5d:11:99:2c:fe:dc:2d:e0:79:4c:02:20:81:18:b4:
70:fe:4d:8a:2b:5f:d9:29:82:e8:e7:ee:d1:a4:7b:
14:c2:11:60:3b:37:f5:bd:c2:14:19:2b:71:0f:23:
47:94:a4:e4:a2:aa:4f:56:5e:f7:ea:94:20:00:f8:
2a:4b:44:40:da:78:0d:eb:6f:1d:ae:3a:fd:d9:7c:
96:70:59:b2:6d:2a:26:de:39:b9:f6:1d:a3:06:cf:
90:a2:b8:99:39:6c:68:97:83:75:56:f0:eb:67:f1:
97:6e:11:7f:cd:65:78:9b:1d:2b:cf:9d:9d:de:32:
69:a1:62:b0:da:c1:78:cd:b2:c3:fb:3e:f2:cb:6d:
83:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:61:08:6E:15:85:B8:FA:F9:0E:32:46:72:41:51:C3:21:1D:C6:89
X509v3 Authority Key Identifier:
keyid:27:B2:4F:D6:6E:FE:6D:C5:C3:AA:B2:E2:E6:51:A4:E2:07:FE:62:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J7JP1m7-bcXDqrLi5lGk4gf-Yuc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/bb01ce-b9b0-4b15-9400-394f50d4ba38/1/qWEIbhWFuPr5DjJGckFRwyEdxok.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/bb01ce-b9b0-4b15-9400-394f50d4ba38/1/J7JP1m7-bcXDqrLi5lGk4gf-Yuc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.51.123.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:7c:25:4d:7c:d0:ad:5a:96:66:6d:bf:87:b7:71:f3:a6:cb:
ba:2d:4c:70:a4:2b:f2:92:4e:d4:b5:f8:98:8d:bd:7c:ae:3a:
ca:8d:ea:6a:56:5e:9f:ff:69:8c:a1:21:93:ec:c0:b3:4b:96:
33:3b:f9:c1:43:e0:98:b0:50:e3:3d:88:e3:63:4c:85:68:c8:
05:ca:bd:3d:57:c6:9f:45:ea:0a:45:b7:9d:4a:66:d1:97:41:
07:bf:af:fe:43:12:18:c6:af:da:c7:17:fb:77:13:b5:0f:de:
9d:3d:21:b6:1d:63:b2:4d:76:1c:99:4a:53:69:6a:01:79:c2:
93:a8:33:99:39:c6:c2:ed:7f:bf:94:5b:51:ca:ff:4f:a3:85:
ac:03:87:de:aa:d1:f2:b5:4e:c8:ed:eb:88:9d:ea:a4:a0:95:
32:f9:11:6a:b3:f6:8b:57:0e:7a:62:99:ca:a9:15:f9:42:5f:
8b:0a:d4:21:fe:5b:4e:ef:3d:d8:d8:1a:b1:25:10:d8:95:6c:
51:82:4f:fa:c4:c6:ea:ce:6a:e9:77:8b:14:9b:40:c2:6a:25:
0e:5e:fd:59:83:66:16:f3:d5:e1:55:e2:35:97:b8:9d:2c:58:
05:55:c6:2f:2b:4d:eb:31:43:6b:15:11:39:dc:1c:b0:26:50:
a6:a6:24:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:07 2024 by rpki-client on console-fra.rpki-client.org