Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/fe5094-f188-47f6-b945-e4c7180730cb/1/1Q98za8uGj0hGFJiCgeGdy7ZbqQ.roa
File: 1Q98za8uGj0hGFJiCgeGdy7ZbqQ.roa (raw, json)
Hash identifier: N5kDee2twIDjn1rBiIAxaJgCnsN9gdcqFZGJRJPl28w=
Subject key identifier: D5:0F:7C:CD:AF:2E:1A:3D:21:18:52:62:0A:07:86:77:2E:D9:6E:A4
Certificate issuer: /CN=c20e52dab06da4175b45c777961f4ea39b9307b7
Certificate serial: 01856F66EB58DD521A791DA66152B25A2ABE
Authority key identifier: C2:0E:52:DA:B0:6D:A4:17:5B:45:C7:77:96:1F:4E:A3:9B:93:07:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wg5S2rBtpBdbRcd3lh9Oo5uTB7c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/fe5094-f188-47f6-b945-e4c7180730cb/1/1Q98za8uGj0hGFJiCgeGdy7ZbqQ.roa
Signing time: Sun 01 Jan 2023 22:14:54 +0000
ROA not before: Sun 01 Jan 2023 22:14:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56650
IP address blocks: 193.34.205.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:66:eb:58:dd:52:1a:79:1d:a6:61:52:b2:5a:2a:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c20e52dab06da4175b45c777961f4ea39b9307b7
Validity
Not Before: Jan 1 22:14:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d50f7ccdaf2e1a3d211852620a0786772ed96ea4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:79:e3:86:3f:bb:eb:ed:36:82:99:20:e0:7e:
1e:3d:6b:10:da:a2:21:fd:d9:26:ef:a1:9b:4b:1b:
39:ee:27:7b:b5:c9:83:d5:67:a6:5c:e1:49:8f:5f:
7c:af:d3:9b:39:9f:c0:7f:1b:da:8a:ed:d3:62:68:
94:55:ad:06:39:49:4d:40:6b:58:42:a3:f3:f9:a4:
66:da:32:55:4f:6c:13:c1:52:56:91:28:10:b4:9d:
0b:bb:97:c2:07:9e:44:c1:f0:27:aa:53:17:5a:4f:
59:5a:32:ad:e6:ed:23:79:ae:72:d9:9d:7a:82:ae:
f4:e3:d0:37:8f:23:60:ba:a2:22:e5:32:41:da:54:
54:cc:1b:34:1a:1a:40:4b:5e:75:d2:7f:d4:48:0a:
be:37:fd:69:96:4f:44:61:ab:22:5a:a4:c7:ce:81:
14:ed:9f:41:db:d3:22:fb:c7:0f:9e:f9:2c:7b:57:
49:88:71:af:b7:e2:f9:f2:87:00:f1:12:33:7f:51:
74:a9:85:4b:ce:88:e6:c5:1d:68:21:28:75:01:3a:
76:9d:c1:34:aa:33:45:53:b0:19:1d:ca:10:5d:59:
5a:ac:8f:4a:23:ad:cc:2a:be:f6:6a:8a:ed:d5:24:
a9:fd:7d:fb:46:7b:0b:2b:25:3a:09:24:e5:9e:0f:
dd:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:0F:7C:CD:AF:2E:1A:3D:21:18:52:62:0A:07:86:77:2E:D9:6E:A4
X509v3 Authority Key Identifier:
keyid:C2:0E:52:DA:B0:6D:A4:17:5B:45:C7:77:96:1F:4E:A3:9B:93:07:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wg5S2rBtpBdbRcd3lh9Oo5uTB7c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/fe5094-f188-47f6-b945-e4c7180730cb/1/1Q98za8uGj0hGFJiCgeGdy7ZbqQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/fe5094-f188-47f6-b945-e4c7180730cb/1/wg5S2rBtpBdbRcd3lh9Oo5uTB7c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.34.205.0/24
Signature Algorithm: sha256WithRSAEncryption
b6:93:81:ec:89:06:91:78:cc:6b:80:df:c7:50:fe:5e:ad:98:
3b:36:b3:3c:90:58:1d:e8:49:5b:53:35:6e:e7:35:b2:cf:1e:
8a:15:fb:74:c8:c9:81:3b:8f:99:78:64:28:68:5a:49:4c:dd:
a9:80:c4:7e:b8:0d:37:db:32:66:15:f2:2e:78:0e:0b:fb:4d:
a9:44:31:23:0e:53:eb:73:5f:e4:3c:a2:bc:15:5c:92:08:d3:
73:d1:76:b3:76:9d:11:13:55:c8:b7:71:ae:46:bc:ff:f0:aa:
87:1d:1c:0d:78:0d:eb:a9:a2:e6:ce:e1:d8:5d:45:46:12:54:
f8:db:14:29:97:bd:b0:6a:a3:77:17:23:e4:c0:be:19:d0:32:
df:50:78:2d:61:0c:df:0d:06:c6:13:69:b3:52:a7:c8:f4:42:
23:c3:15:eb:2e:e7:ff:34:09:eb:07:b3:9f:d4:5c:7d:9b:64:
3e:80:96:b6:6e:d6:e9:57:d4:9f:2e:2c:49:3b:9a:c4:0b:0e:
cb:86:7b:29:9a:04:b1:0d:69:5c:43:75:77:26:29:07:95:a5:
23:8b:45:15:95:14:b7:8c:18:47:1f:d9:70:44:1b:2a:0f:3b:
43:e5:02:b9:e8:07:20:a2:ae:42:7c:44:61:b4:7f:46:2b:9f:
15:a6:1b:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:21 2024 by rpki-client on console-ams.rpki-client.org