Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/54910b-9a13-4ace-abf2-a2351f4e8915/1/qjjKpQ_8sxjND5wi_JrCbfM6dw8.roa
File: qjjKpQ_8sxjND5wi_JrCbfM6dw8.roa (raw, json)
Hash identifier: ZEOUA9XqDo0DSQQAhjIsab2s9iCQ7dRftRm/QFGlC5o=
Subject key identifier: AA:38:CA:A5:0F:FC:B3:18:CD:0F:9C:22:FC:9A:C2:6D:F3:3A:77:0F
Certificate issuer: /CN=d65003e24cecfbf8e8c15ff637dd15db4d7fae92
Certificate serial: 01856C65B8343854E6B2FDBEBFD20C049D4D
Authority key identifier: D6:50:03:E2:4C:EC:FB:F8:E8:C1:5F:F6:37:DD:15:DB:4D:7F:AE:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1lAD4kzs-_jowV_2N90V201_rpI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/54910b-9a13-4ace-abf2-a2351f4e8915/1/qjjKpQ_8sxjND5wi_JrCbfM6dw8.roa
Signing time: Sun 01 Jan 2023 08:14:43 +0000
ROA not before: Sun 01 Jan 2023 08:14:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8220
IP address blocks: 193.36.242.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:65:b8:34:38:54:e6:b2:fd:be:bf:d2:0c:04:9d:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d65003e24cecfbf8e8c15ff637dd15db4d7fae92
Validity
Not Before: Jan 1 08:14:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=aa38caa50ffcb318cd0f9c22fc9ac26df33a770f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:54:8c:6a:4b:52:f9:ae:cd:d8:3f:0a:7c:06:
2c:da:ca:7e:0f:61:2f:70:31:04:87:92:9b:50:11:
20:d1:d4:1b:d0:5e:a4:97:89:bb:a8:0f:d3:d8:59:
4d:4e:f6:54:e8:ae:74:61:16:4e:85:62:c1:e8:52:
89:3c:8a:77:7f:67:35:d9:c2:4a:d1:f0:ee:14:42:
28:c1:b6:c9:92:d3:b4:d7:05:8b:a0:19:d7:e6:45:
e1:01:38:f6:26:a7:ed:83:d3:f8:c5:a3:c9:18:6c:
ff:6d:e1:ef:f6:11:ee:bd:ef:77:bb:a9:a9:d5:0f:
9e:bd:60:51:ad:2c:f0:39:08:c5:64:a2:b0:6f:93:
47:cd:5d:31:91:ce:50:c2:7f:b5:d0:51:56:68:88:
06:8e:9f:31:16:b4:64:bd:c9:e2:d6:aa:d5:24:0d:
20:c1:27:88:f1:62:94:8f:b1:1a:0a:a3:9b:e0:5b:
b8:f3:03:8a:1e:8d:30:d2:4d:66:f7:6f:4e:68:eb:
9c:e7:70:a2:78:fe:18:b0:67:6c:9d:17:80:9e:62:
61:ad:04:50:0c:2e:ed:cc:a2:c9:8c:59:16:a5:64:
a3:fc:67:ab:be:39:10:b5:d2:e9:11:29:ee:c9:32:
e2:39:b2:a5:e6:72:8d:21:8f:85:e1:98:4f:de:d2:
be:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:38:CA:A5:0F:FC:B3:18:CD:0F:9C:22:FC:9A:C2:6D:F3:3A:77:0F
X509v3 Authority Key Identifier:
keyid:D6:50:03:E2:4C:EC:FB:F8:E8:C1:5F:F6:37:DD:15:DB:4D:7F:AE:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1lAD4kzs-_jowV_2N90V201_rpI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/54910b-9a13-4ace-abf2-a2351f4e8915/1/qjjKpQ_8sxjND5wi_JrCbfM6dw8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/54910b-9a13-4ace-abf2-a2351f4e8915/1/1lAD4kzs-_jowV_2N90V201_rpI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.36.242.0/24
Signature Algorithm: sha256WithRSAEncryption
f4:8d:ba:93:9b:76:3a:30:b0:1c:c5:99:44:37:7f:d1:6f:b8:
b2:b8:07:ae:79:7f:9a:72:f1:24:a8:80:37:80:8e:8e:15:48:
5f:ce:5d:84:0a:68:ce:66:b7:d3:e8:dc:89:eb:55:28:b4:7a:
a8:db:28:fc:56:d9:6b:b6:b8:d0:76:fd:0e:02:4f:13:34:10:
8e:a4:79:3b:fc:00:86:83:e9:98:17:b4:13:73:0c:50:70:22:
47:38:12:4a:6b:3b:11:6b:c1:17:cf:9c:44:9a:9f:7d:7b:da:
b1:6a:4a:05:21:13:5a:4a:5a:86:de:ff:72:00:46:3b:8b:f1:
ae:3a:4a:69:a2:ba:8b:9b:84:b7:96:61:e2:62:13:40:c3:0e:
24:84:a8:e0:d6:ef:56:6c:6d:51:9a:30:aa:b4:b8:29:e4:fe:
da:c2:6e:1e:ba:79:48:f8:7c:74:df:c9:d3:0e:7d:ce:2e:1e:
c5:b8:19:05:29:2c:08:aa:61:65:8e:4b:70:2d:b4:03:9d:53:
9d:e8:0d:27:fe:40:82:95:91:34:cd:36:e4:b8:49:62:73:5f:
32:0f:ed:1f:d4:fe:d3:4e:fb:2e:85:a8:99:bc:83:50:5d:ee:
f1:5f:bd:d0:da:d3:2d:a5:d3:c6:43:bd:66:dc:3b:28:c8:82:
8c:66:17:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 14:36:04 2024 by rpki-client on console-fra.rpki-client.org