Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/d72bf3-1ca9-4023-acf5-d5a423442d35/1/qGP4QIUVHtqW5FpjcAQnReUunN4.roa
File: qGP4QIUVHtqW5FpjcAQnReUunN4.roa (raw, json)
Hash identifier: fftOHjE37D7jktU3V1A0HqaNZUZEzemq3wL0U4ckqKk=
Subject key identifier: A8:63:F8:40:85:15:1E:DA:96:E4:5A:63:70:04:27:45:E5:2E:9C:DE
Certificate issuer: /CN=a719fdc70d39f13c3784d325ae2b61f0f3c99f48
Certificate serial: 01856FF942E28818A6BB9022E7F83A744637
Authority key identifier: A7:19:FD:C7:0D:39:F1:3C:37:84:D3:25:AE:2B:61:F0:F3:C9:9F:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pxn9xw058Tw3hNMlrith8PPJn0g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/d72bf3-1ca9-4023-acf5-d5a423442d35/1/qGP4QIUVHtqW5FpjcAQnReUunN4.roa
Signing time: Mon 02 Jan 2023 00:54:44 +0000
ROA not before: Mon 02 Jan 2023 00:54:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44726
IP address blocks: 195.42.124.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:30:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:f9:42:e2:88:18:a6:bb:90:22:e7:f8:3a:74:46:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a719fdc70d39f13c3784d325ae2b61f0f3c99f48
Validity
Not Before: Jan 2 00:54:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a863f84085151eda96e45a6370042745e52e9cde
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:fe:69:e9:ba:98:f7:3d:83:33:72:20:ad:65:
c6:56:34:47:0c:2a:9a:26:10:89:fb:41:90:00:b3:
06:73:16:3a:f7:2c:53:31:c3:66:42:31:2b:f3:db:
e7:fa:73:4b:78:a4:31:8e:36:70:6b:89:8c:bf:ff:
bf:57:12:15:f9:14:e8:7a:ee:42:22:9c:c5:ef:ba:
b5:e0:3c:6f:ca:91:eb:e6:ee:f6:cb:63:da:78:8e:
54:88:03:b2:34:21:f0:fc:ba:76:51:fb:c3:b1:3a:
a4:c5:01:b8:d0:6c:c7:6b:14:fc:e2:0c:31:99:59:
1b:ea:19:27:0e:f5:d0:c2:b6:35:ec:bb:f4:d1:cd:
22:22:82:fc:10:cb:f2:d0:f0:b1:5a:dd:d6:23:37:
4d:24:53:09:36:42:e5:77:54:cb:56:74:9c:83:d8:
14:f8:1a:1a:12:b9:82:3d:64:08:5f:a3:08:75:fe:
17:2a:a7:2e:77:f5:9d:76:00:83:ec:12:13:b2:36:
25:be:25:0e:82:87:24:28:c8:38:9c:5c:63:c5:02:
77:6d:fa:c2:1d:cd:08:a3:82:d2:44:7a:1c:a0:5c:
06:91:96:f3:fd:65:45:c5:20:79:e5:a1:fb:1a:5f:
15:a4:92:a7:de:1e:b2:c1:f6:ff:e7:68:30:5b:87:
e9:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:63:F8:40:85:15:1E:DA:96:E4:5A:63:70:04:27:45:E5:2E:9C:DE
X509v3 Authority Key Identifier:
keyid:A7:19:FD:C7:0D:39:F1:3C:37:84:D3:25:AE:2B:61:F0:F3:C9:9F:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pxn9xw058Tw3hNMlrith8PPJn0g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/d72bf3-1ca9-4023-acf5-d5a423442d35/1/qGP4QIUVHtqW5FpjcAQnReUunN4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/d72bf3-1ca9-4023-acf5-d5a423442d35/1/pxn9xw058Tw3hNMlrith8PPJn0g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.42.124.0/23
Signature Algorithm: sha256WithRSAEncryption
73:5e:6a:ee:c1:41:83:5c:7c:3b:29:b1:be:24:b7:e7:9f:7f:
d7:8c:5e:ac:fc:cb:7d:d6:68:e6:c1:84:30:fc:91:ea:a7:3d:
31:6e:19:32:52:c6:0c:ee:66:86:f2:a1:ff:6a:cb:97:70:5c:
ab:36:5a:44:57:bb:16:75:5a:31:72:20:2a:94:3b:a4:16:0d:
6e:83:06:10:07:c1:56:72:d1:b6:a4:df:58:61:cb:d6:4d:a7:
cc:1c:c7:31:dd:d5:f7:a8:b8:63:36:15:bb:28:25:ae:51:4a:
4b:d0:75:38:5c:12:55:5d:b7:90:c7:b1:ee:e1:a7:f7:21:15:
95:06:d4:7c:77:3b:52:ba:47:db:f1:ea:e2:a2:fe:78:19:1f:
2b:a1:59:1f:7d:32:7c:b7:a5:82:b8:35:98:04:e9:e4:64:b9:
31:c6:db:45:60:8d:c2:f2:d3:04:0a:cd:24:39:67:d7:8f:3d:
88:55:d3:13:27:82:9d:e9:bb:2d:3c:0f:a5:1d:61:91:cd:0a:
34:14:52:60:b0:6b:87:7a:58:77:2f:c8:90:f7:1c:86:97:fa:
15:02:91:23:76:07:5e:52:66:7d:49:ff:29:ae:b8:7b:90:21:
7c:9d:2a:3f:52:70:6c:c4:69:52:1e:b2:f6:cb:37:07:f6:a0:
1c:0e:ba:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:53 2024 by rpki-client on console-fra.rpki-client.org