Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/0ff633-eb4a-4e18-ad56-0d018dbcc7cb/1/q61iIiqmtBN6Fb5QgLwXX-A-zJM.roa
File: q61iIiqmtBN6Fb5QgLwXX-A-zJM.roa (raw, json)
Hash identifier: zvFOZ3nJiZwInvsXa0qv3i5bPWrKHRarIIjMF2vvBFk=
Subject key identifier: AB:AD:62:22:2A:A6:B4:13:7A:15:BE:50:80:BC:17:5F:E0:3E:CC:93
Certificate issuer: /CN=153c9e8487c98b453f974f20317ece3d70f4d5dd
Certificate serial: 01856C65D552434E2033AA1314C5BF399EB5
Authority key identifier: 15:3C:9E:84:87:C9:8B:45:3F:97:4F:20:31:7E:CE:3D:70:F4:D5:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FTyehIfJi0U_l08gMX7OPXD01d0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/0ff633-eb4a-4e18-ad56-0d018dbcc7cb/1/q61iIiqmtBN6Fb5QgLwXX-A-zJM.roa
Signing time: Sun 01 Jan 2023 08:14:51 +0000
ROA not before: Sun 01 Jan 2023 08:14:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199405
IP address blocks: 185.5.224.0/22 maxlen: 22
2a03:840::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:29:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:65:d5:52:43:4e:20:33:aa:13:14:c5:bf:39:9e:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=153c9e8487c98b453f974f20317ece3d70f4d5dd
Validity
Not Before: Jan 1 08:14:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=abad62222aa6b4137a15be5080bc175fe03ecc93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:48:e9:50:96:81:a2:f5:e2:6a:3b:a9:94:35:
74:99:05:46:7b:5b:6a:97:32:fd:05:98:6a:b6:23:
ea:92:ec:9f:77:b5:99:54:83:bb:3f:3a:6c:69:7c:
f5:ca:18:8c:c8:39:d9:ce:16:2c:f2:a3:dc:5a:eb:
5d:fd:c5:d6:49:c7:18:e9:44:34:4e:db:d9:e6:3b:
2d:58:b3:44:d2:32:05:39:ba:20:0e:44:45:15:3a:
55:f8:c0:36:cc:31:28:85:58:0b:a7:ed:6d:d0:cb:
d5:db:cf:f7:0f:b7:2c:41:ea:43:99:a9:61:fb:ba:
19:79:82:0c:21:02:8c:ef:e6:39:42:23:60:1a:92:
3b:f7:58:f7:16:b2:c1:0f:b4:b8:54:1b:63:54:58:
e6:26:53:80:b3:3e:97:6a:e8:f9:ab:6b:01:40:45:
e5:5e:51:03:35:02:19:13:da:aa:ea:d8:2a:5b:a3:
ef:43:b5:6e:09:a5:31:2b:b0:66:3b:0d:9a:7e:29:
69:49:1c:11:3f:b8:d4:30:6a:38:88:7a:3e:df:89:
c2:18:a9:9a:3a:eb:5d:02:be:b1:b4:22:4b:8c:3d:
f1:40:13:ff:d0:70:a6:1e:c3:54:c4:0b:06:a8:85:
87:c2:5f:bc:a7:40:fd:5c:a5:4e:c3:c7:18:a3:d1:
5b:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:AD:62:22:2A:A6:B4:13:7A:15:BE:50:80:BC:17:5F:E0:3E:CC:93
X509v3 Authority Key Identifier:
keyid:15:3C:9E:84:87:C9:8B:45:3F:97:4F:20:31:7E:CE:3D:70:F4:D5:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FTyehIfJi0U_l08gMX7OPXD01d0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0ff633-eb4a-4e18-ad56-0d018dbcc7cb/1/q61iIiqmtBN6Fb5QgLwXX-A-zJM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0ff633-eb4a-4e18-ad56-0d018dbcc7cb/1/FTyehIfJi0U_l08gMX7OPXD01d0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.5.224.0/22
IPv6:
2a03:840::/32
Signature Algorithm: sha256WithRSAEncryption
0b:9d:31:ce:df:f0:6c:f8:00:e0:bc:8d:e8:16:4f:8d:b3:b2:
3e:bf:23:74:d6:a3:62:c4:4b:0b:7f:9b:00:a9:d4:12:a4:08:
c7:24:76:70:8b:cb:30:9c:96:23:23:d0:04:e7:3e:3f:28:be:
b1:9d:9e:11:28:7a:14:45:9e:0d:28:3c:5e:aa:00:3e:68:05:
f7:ba:ee:17:4b:63:c6:6c:b9:4b:25:26:7c:aa:d0:fa:9a:c6:
f0:a1:c4:2a:b2:6f:84:a0:53:ee:c6:2d:ec:c9:93:d8:4a:a7:
a6:02:60:8e:d5:35:5f:23:46:98:b1:96:6b:b1:3a:a4:44:35:
de:50:d3:30:e2:cb:f8:68:4e:7d:c5:c3:53:f4:0a:25:23:04:
eb:5c:40:05:f4:2d:23:f4:f8:40:24:13:80:56:7a:b1:b4:1f:
d8:dc:e7:80:20:ba:15:c8:5d:84:ab:91:9f:3e:e0:1d:10:0c:
de:30:e3:e0:c1:5a:25:41:90:50:1e:11:32:0d:8a:5f:83:61:
db:61:9b:a0:10:e4:37:e8:03:4d:0e:71:8d:4e:2c:6d:42:62:
72:af:a1:b8:27:ea:b9:58:f8:26:87:69:85:99:93:93:32:d7:
50:bb:1b:4d:b5:a8:14:c3:ff:43:f7:14:ab:70:0a:86:1c:3d:
15:9c:b4:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:48 2024 by rpki-client on console-ams.rpki-client.org