Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/a1399a-ea6b-4a09-8b40-90c0bde09869/1/QyBi5ZBIiAYRIJ2jO8PzmVOyA6E.roa
File: QyBi5ZBIiAYRIJ2jO8PzmVOyA6E.roa (raw, json)
Hash identifier: HMsB4DSYWd1XqPiI9hYxWlb67NT11jXEjjSYUvWIwqA=
Subject key identifier: 43:20:62:E5:90:48:88:06:11:20:9D:A3:3B:C3:F3:99:53:B2:03:A1
Certificate issuer: /CN=ad80679b96ca322bfa85500cab206c6d47412edf
Certificate serial: 01856F7955C3642F22E33691FCF32301566D
Authority key identifier: AD:80:67:9B:96:CA:32:2B:FA:85:50:0C:AB:20:6C:6D:47:41:2E:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rYBnm5bKMiv6hVAMqyBsbUdBLt8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/a1399a-ea6b-4a09-8b40-90c0bde09869/1/QyBi5ZBIiAYRIJ2jO8PzmVOyA6E.roa
Signing time: Sun 01 Jan 2023 22:35:00 +0000
ROA not before: Sun 01 Jan 2023 22:35:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 195.42.240.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:30:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:79:55:c3:64:2f:22:e3:36:91:fc:f3:23:01:56:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad80679b96ca322bfa85500cab206c6d47412edf
Validity
Not Before: Jan 1 22:35:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=432062e59048880611209da33bc3f39953b203a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:c9:3b:f3:43:e6:39:26:12:b6:ee:f3:fd:35:
e2:73:12:87:ed:19:b2:cc:a6:20:d4:52:e4:c2:62:
e6:90:5e:42:5a:e6:f6:1e:08:c7:67:69:e5:50:da:
c7:16:a0:2b:35:93:78:48:70:31:db:55:ca:22:74:
74:00:e6:f9:b7:5d:8a:b0:0f:ad:c0:bc:31:05:78:
84:47:44:1a:a4:3f:76:d5:8b:2b:22:de:90:fc:9e:
24:dd:8b:21:df:b0:a9:8e:4f:42:58:88:10:ec:d9:
55:c1:a1:7e:5e:55:20:93:88:e6:df:bf:dc:ee:1f:
44:c2:69:71:b8:89:db:38:7e:d8:c8:84:63:24:7d:
a5:41:a1:de:91:09:af:e9:ff:e2:fe:f5:d3:1f:e3:
12:0d:b7:c2:d8:71:7a:30:66:7e:c8:f9:7a:4a:24:
b9:aa:71:38:96:d1:68:93:e8:ed:1f:98:fb:78:73:
37:60:73:8f:8c:57:52:cc:86:a3:28:5a:35:3b:f2:
c9:45:00:ec:78:18:28:09:a9:28:5d:2e:3e:0a:80:
98:ef:23:13:e2:28:41:53:f0:6e:12:fc:f7:51:3a:
34:ea:1b:67:c1:53:3d:b3:9d:53:c0:27:ee:10:cb:
8a:5a:b4:46:b4:97:1d:79:d1:50:ad:a0:61:86:11:
7f:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:20:62:E5:90:48:88:06:11:20:9D:A3:3B:C3:F3:99:53:B2:03:A1
X509v3 Authority Key Identifier:
keyid:AD:80:67:9B:96:CA:32:2B:FA:85:50:0C:AB:20:6C:6D:47:41:2E:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rYBnm5bKMiv6hVAMqyBsbUdBLt8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/a1399a-ea6b-4a09-8b40-90c0bde09869/1/QyBi5ZBIiAYRIJ2jO8PzmVOyA6E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/a1399a-ea6b-4a09-8b40-90c0bde09869/1/rYBnm5bKMiv6hVAMqyBsbUdBLt8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.42.240.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:ed:88:78:93:f9:30:6e:ba:22:5e:2a:e1:f6:c3:81:a8:8d:
be:7e:27:69:4c:df:42:ee:7b:36:a6:ab:b2:f3:5d:3d:18:c1:
c0:6c:4a:7d:9e:0f:ec:40:ab:27:50:ef:c1:83:34:a8:4d:4c:
24:71:cc:02:7f:69:c4:d9:df:ec:57:37:30:a1:92:6b:fd:df:
99:3c:0a:c4:1b:37:40:88:7c:14:47:fd:03:a0:2c:6a:20:b5:
dd:d0:89:7e:67:ea:ed:bd:77:37:84:7b:85:ad:55:b2:e8:5e:
3c:ee:24:1d:74:84:6d:af:92:2b:75:35:94:45:d6:c7:58:6a:
0b:45:7a:a9:d8:e0:cd:ce:0f:5c:24:26:98:f1:f6:6d:76:6d:
f6:5b:1e:8e:ad:9c:d9:cc:e7:71:98:88:32:8d:8a:eb:30:a8:
35:4e:f5:33:18:66:07:08:b8:ea:54:ae:41:eb:e7:ad:49:b0:
6c:fd:03:c9:13:d1:0a:a5:62:fe:56:1c:50:5a:1c:96:b2:e4:
cc:dc:49:e5:9b:f9:e7:d8:d9:5b:a3:87:6f:bc:5f:10:57:aa:
40:da:b1:89:d1:6b:d8:ad:7d:8c:d2:26:13:56:75:84:e0:9b:
ab:65:ae:2c:35:f9:f4:00:90:60:14:34:2d:71:ac:ee:96:44:
bf:cc:43:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:32 2024 by rpki-client on console-ams.rpki-client.org