Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/Qrw9jp-HaDbaQ45IAnojnWSGpGw.roa
File: Qrw9jp-HaDbaQ45IAnojnWSGpGw.roa (raw, json)
Hash identifier: S1/37N67TA7YUoZ/4PjAAehwE2ics1wxZ79hXso45d0=
Subject key identifier: 42:BC:3D:8E:9F:87:68:36:DA:43:8E:48:02:7A:23:9D:64:86:A4:6C
Certificate issuer: /CN=81cca9f15e1921953a628c8ad2ac4be977b6c303
Certificate serial: 01856F42E6C2083B2EB702288FBA149A6E26
Authority key identifier: 81:CC:A9:F1:5E:19:21:95:3A:62:8C:8A:D2:AC:4B:E9:77:B6:C3:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/Qrw9jp-HaDbaQ45IAnojnWSGpGw.roa
Signing time: Sun 01 Jan 2023 21:35:33 +0000
ROA not before: Sun 01 Jan 2023 21:35:33 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61176
IP address blocks: 5.160.15.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:42:e6:c2:08:3b:2e:b7:02:28:8f:ba:14:9a:6e:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81cca9f15e1921953a628c8ad2ac4be977b6c303
Validity
Not Before: Jan 1 21:35:33 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=42bc3d8e9f876836da438e48027a239d6486a46c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:78:25:ae:60:a9:24:3c:68:fe:41:ed:89:c4:
67:8b:31:6d:e9:7d:8b:60:88:e0:a6:12:15:8b:d9:
e0:a1:cb:07:bf:b6:63:f7:10:9d:4b:13:b5:50:2a:
be:c7:72:4a:46:40:3d:be:ae:99:74:b1:66:20:ca:
0b:8d:2e:39:d6:f4:9a:fb:3a:cb:ee:aa:c2:88:eb:
f6:ba:ac:47:a4:6a:98:08:42:b0:9b:e5:56:31:df:
fc:1d:12:d5:46:82:f0:07:aa:9a:fa:f4:79:73:3e:
b1:2b:5f:76:85:35:8b:27:9e:c3:f8:e4:9f:cd:98:
fc:82:9f:ec:da:fb:67:ac:f0:af:72:4e:5e:0f:dd:
1a:11:4e:ba:96:6d:ec:ca:8d:4f:8f:e3:09:ac:6f:
fa:87:83:9c:50:06:0f:cb:63:bf:c9:3a:5a:d5:02:
63:9e:85:0f:61:ab:16:cc:7a:45:3b:6f:5b:1b:df:
61:ad:0e:19:39:f7:04:ab:68:d6:72:f9:f6:59:76:
b6:07:2f:01:eb:73:f9:76:54:b9:d7:90:24:38:1c:
e6:a3:37:74:b1:a9:37:67:08:a3:e4:80:3b:12:5c:
b9:ea:5e:4e:08:f1:f7:46:7a:d6:d8:24:08:18:8f:
dd:19:d1:f5:ed:d5:76:cf:0b:70:d1:4a:a5:fe:c4:
bd:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:BC:3D:8E:9F:87:68:36:DA:43:8E:48:02:7A:23:9D:64:86:A4:6C
X509v3 Authority Key Identifier:
keyid:81:CC:A9:F1:5E:19:21:95:3A:62:8C:8A:D2:AC:4B:E9:77:B6:C3:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/Qrw9jp-HaDbaQ45IAnojnWSGpGw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.160.15.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:9a:09:df:d9:28:65:14:23:8d:8d:3a:00:c0:f6:dd:a7:7b:
e3:71:f7:87:60:8e:00:39:22:6b:db:7b:eb:3b:30:8d:69:91:
90:c4:38:84:b4:04:4f:a4:62:f5:65:18:04:24:ca:b4:8e:7a:
94:d9:37:4e:67:9d:71:24:bb:d5:e4:5b:b7:7f:76:b3:d8:7b:
ea:62:5d:fa:12:b1:c1:38:36:18:6d:a7:a5:b6:14:8b:ab:bf:
ba:8f:7a:cc:e5:ce:89:a1:9c:4e:cf:96:51:3b:2d:f0:9e:96:
47:6f:ed:05:02:6c:84:43:fd:bd:de:fa:7c:19:10:e1:93:3e:
c4:0f:46:0f:cd:cc:41:89:bb:bc:d3:28:e6:fe:0b:fc:34:09:
85:d1:56:b6:0d:8b:71:55:20:c4:0b:3f:12:2e:f1:30:c1:43:
4a:38:c0:00:4e:23:0d:1d:82:e6:f9:6b:95:f5:8d:48:f2:4d:
e6:a2:05:8f:17:26:03:b2:e6:70:09:0a:8a:ac:f9:04:ea:03:
8b:c2:f4:ff:64:28:70:61:b2:8f:ca:2f:98:47:bb:92:58:25:
30:3f:06:71:f1:dc:60:ae:74:81:ef:8b:e4:64:e8:b3:f5:3f:
91:5b:3b:c1:f8:6b:2b:8d:d9:a8:28:5d:0d:ff:f0:a3:e6:97:
3e:f4:5c:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 13:10:51 2024 by rpki-client on console-ams.rpki-client.org