Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/9ca446-fc5c-4746-b26f-30ce83701b39/1/Qv_LjSq1gG1zjgj80ZK-rj2ztQs.roa
File: Qv_LjSq1gG1zjgj80ZK-rj2ztQs.roa (raw, json)
Hash identifier: yqwUlJ0eu+DNTTp85AiIk4RQstEKNyG/pwfYS82/U3k=
Subject key identifier: 42:FF:CB:8D:2A:B5:80:6D:73:8E:08:FC:D1:92:BE:AE:3D:B3:B5:0B
Certificate issuer: /CN=3433ae1c60672c7591a8f97d68f79fb2a5ee8da7
Certificate serial: 0186CA1BEC504B3356F9CD4E150F8177AD60
Authority key identifier: 34:33:AE:1C:60:67:2C:75:91:A8:F9:7D:68:F7:9F:B2:A5:EE:8D:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NDOuHGBnLHWRqPl9aPefsqXujac.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/9ca446-fc5c-4746-b26f-30ce83701b39/1/Qv_LjSq1gG1zjgj80ZK-rj2ztQs.roa
Signing time: Fri 10 Mar 2023 06:01:12 +0000
ROA not before: Fri 10 Mar 2023 06:01:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59642
IP address blocks: 195.189.96.0/22 maxlen: 32
2a02:ae01::/32 maxlen: 32
Validation: Failed, certificate revoked on Fri 24 Mar 2023 06:36:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:ca:1b:ec:50:4b:33:56:f9:cd:4e:15:0f:81:77:ad:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3433ae1c60672c7591a8f97d68f79fb2a5ee8da7
Validity
Not Before: Mar 10 06:01:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=42ffcb8d2ab5806d738e08fcd192beae3db3b50b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:b2:ac:bc:78:4d:ac:5d:48:dc:b3:a9:7a:48:
16:79:1c:cb:c5:5d:28:6a:31:0e:45:91:07:b7:17:
fd:7b:a3:f4:89:2d:4e:44:46:e7:46:2e:c6:46:80:
3a:90:ec:ac:88:b2:1a:dd:ae:4f:a7:16:59:52:13:
ed:7a:65:e7:fd:a4:f5:18:14:9f:f9:f8:64:c9:a2:
0f:9c:49:f1:f4:28:9f:e0:73:2f:e8:13:17:d4:e7:
6b:b1:e6:33:06:0e:8a:57:7b:91:bb:00:06:cf:a7:
53:49:80:15:ab:41:8a:3e:e2:7f:f0:9f:57:3d:dc:
41:ef:b8:4a:67:1f:c8:78:64:bb:bf:ed:0f:64:30:
c4:7e:a7:d2:cd:32:64:63:12:9a:a7:a7:fb:d4:0c:
73:a7:0e:1f:b7:05:1f:35:b9:26:22:19:eb:60:83:
9b:7a:ae:30:ea:a2:c3:ea:4e:50:73:07:be:b2:02:
59:aa:54:90:0c:e7:e4:28:6b:5c:d0:1a:fd:8f:04:
8a:b2:e5:4d:cf:53:fb:50:92:0f:34:06:f6:fc:00:
7e:2d:00:1a:56:54:e6:81:98:e7:ef:e3:76:dd:0a:
34:bb:81:5f:46:e7:5d:c1:b6:9b:e1:21:e0:47:41:
2e:ca:16:f6:8e:b1:ab:4b:94:90:36:38:3b:bf:be:
7e:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:FF:CB:8D:2A:B5:80:6D:73:8E:08:FC:D1:92:BE:AE:3D:B3:B5:0B
X509v3 Authority Key Identifier:
keyid:34:33:AE:1C:60:67:2C:75:91:A8:F9:7D:68:F7:9F:B2:A5:EE:8D:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NDOuHGBnLHWRqPl9aPefsqXujac.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/9ca446-fc5c-4746-b26f-30ce83701b39/1/Qv_LjSq1gG1zjgj80ZK-rj2ztQs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/9ca446-fc5c-4746-b26f-30ce83701b39/1/NDOuHGBnLHWRqPl9aPefsqXujac.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.189.96.0/22
IPv6:
2a02:ae01::/32
Signature Algorithm: sha256WithRSAEncryption
0a:55:9a:02:19:10:00:00:1a:07:13:bf:78:e5:da:57:91:ba:
25:34:eb:46:78:64:17:ff:6b:bf:9c:d6:ec:0a:ba:a8:b8:02:
e1:11:fc:7e:12:03:66:a2:b6:56:8b:ff:09:42:fa:05:a2:5d:
26:3a:d6:80:37:af:27:47:33:dc:a9:12:e2:dc:85:89:71:cd:
e4:ec:be:09:4b:b6:0c:11:9e:10:1b:2e:47:18:49:db:1d:c8:
29:ea:68:d7:93:32:f0:a8:b0:43:04:a1:62:52:1a:29:da:73:
92:ea:98:3c:c5:b7:58:9e:94:f9:f4:19:dc:ab:66:cd:39:09:
6e:00:b7:2d:57:e8:4c:17:62:14:ae:cb:5d:07:79:a1:6a:ce:
f0:9f:24:49:cd:d5:37:0a:c0:19:ed:f5:2e:e4:d9:d3:13:96:
df:08:c9:f8:7b:2c:d2:5e:92:49:d3:0c:62:83:0e:03:f7:d7:
01:a8:b0:46:7d:78:f5:38:76:8a:73:bf:92:11:0e:77:8a:09:
a4:f0:c5:c2:8b:39:a2:75:e8:42:48:f1:e0:c1:f9:d7:be:d1:
69:85:8a:2e:06:e8:1d:2d:d3:b5:3c:c2:46:17:54:91:3b:12:
45:be:3e:ab:89:bd:a9:41:af:84:fc:9e:03:32:07:45:e2:5b:
f6:dd:35:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:13 2024 by rpki-client on console-fra.rpki-client.org