Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/32f8d3-7328-45f0-a007-402238638ea3/1/QYvzDhC8aArIQjHarnGXIIzQZX4.roa
File: QYvzDhC8aArIQjHarnGXIIzQZX4.roa (raw, json)
Hash identifier: DwDgmYWvnThAdNDJknn5eLGr+rNHDgXf6AA5XHgZIeY=
Subject key identifier: 41:8B:F3:0E:10:BC:68:0A:C8:42:31:DA:AE:71:97:20:8C:D0:65:7E
Certificate issuer: /CN=5f1f213b8c792b7e013fa5041f5b89971e6f62d6
Certificate serial: 0186315BD8E76459F10F305ADF6C42BECE1D
Authority key identifier: 5F:1F:21:3B:8C:79:2B:7E:01:3F:A5:04:1F:5B:89:97:1E:6F:62:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xx8hO4x5K34BP6UEH1uJlx5vYtY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/32f8d3-7328-45f0-a007-402238638ea3/1/QYvzDhC8aArIQjHarnGXIIzQZX4.roa
Signing time: Wed 08 Feb 2023 14:09:08 +0000
ROA not before: Wed 08 Feb 2023 14:09:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51290
IP address blocks: 193.9.30.0/23 maxlen: 23
2a0f:9a80::/29 maxlen: 29
Validation: Failed, certificate revoked on Fri 10 Mar 2023 12:57:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:31:5b:d8:e7:64:59:f1:0f:30:5a:df:6c:42:be:ce:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f1f213b8c792b7e013fa5041f5b89971e6f62d6
Validity
Not Before: Feb 8 14:09:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=418bf30e10bc680ac84231daae7197208cd0657e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:ca:ad:21:60:7a:06:af:87:95:f7:b1:f5:77:
a0:70:9a:bd:91:27:a3:31:42:f2:79:3f:d1:d2:a8:
7e:b0:f5:61:1c:e2:0b:67:d6:6b:6d:d2:6c:3a:91:
08:2c:eb:88:f1:1b:d3:ba:28:49:58:3f:ef:9f:ac:
38:7d:43:35:59:8d:21:99:85:ab:ca:71:27:e9:99:
a8:32:00:d6:4f:fc:65:b4:b2:7b:f2:43:3a:d1:40:
a9:f9:45:08:ac:c2:5d:d2:0e:5f:e6:2b:34:82:d2:
5f:80:70:13:4e:38:b8:07:f6:c6:d7:73:2d:ed:de:
c3:27:26:6a:fc:c4:eb:ac:16:dd:eb:11:5a:b5:f7:
8a:03:78:4f:9f:8d:5b:d8:35:c0:e7:76:9d:6a:c3:
cd:a2:ea:ac:3b:e8:eb:8e:e8:21:b6:4f:65:3a:ee:
1d:84:fd:e6:65:2e:e7:50:df:ec:0f:45:3b:f7:5b:
6f:33:f1:f6:10:a5:bb:cf:f2:f4:87:a7:14:40:0a:
fe:66:60:03:30:8c:be:91:90:e2:6a:0a:c2:37:68:
46:51:41:b9:c0:9d:2b:26:82:9a:60:a6:f6:f9:95:
de:f1:da:f1:26:89:0f:76:93:84:4a:ec:8a:23:b4:
18:81:92:d6:6e:7e:c2:f2:5e:40:ca:c3:c2:e5:ef:
04:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:8B:F3:0E:10:BC:68:0A:C8:42:31:DA:AE:71:97:20:8C:D0:65:7E
X509v3 Authority Key Identifier:
keyid:5F:1F:21:3B:8C:79:2B:7E:01:3F:A5:04:1F:5B:89:97:1E:6F:62:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xx8hO4x5K34BP6UEH1uJlx5vYtY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/32f8d3-7328-45f0-a007-402238638ea3/1/QYvzDhC8aArIQjHarnGXIIzQZX4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/32f8d3-7328-45f0-a007-402238638ea3/1/Xx8hO4x5K34BP6UEH1uJlx5vYtY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.9.30.0/23
IPv6:
2a0f:9a80::/29
Signature Algorithm: sha256WithRSAEncryption
38:e3:81:1c:af:70:9b:53:85:ba:27:ce:c6:9e:fa:5a:8c:7e:
16:65:d3:39:67:7b:8b:c4:59:18:53:be:1d:37:2e:95:c2:2a:
b8:a3:9d:b7:ba:38:62:8c:70:b3:1b:57:c4:11:27:5d:fa:15:
d9:f7:da:a4:7e:e1:29:ba:bd:4c:8b:f2:48:73:02:70:83:53:
78:53:45:51:aa:68:48:0d:ff:b5:42:6d:01:28:b7:66:3c:2f:
ea:7c:ea:4e:40:99:32:4e:a0:b6:dd:04:4c:2e:a2:f4:b7:1a:
e1:e5:27:57:fb:76:0a:e9:76:76:33:0a:9f:f9:c6:81:47:d0:
00:fd:ba:47:75:60:fa:9a:65:7a:dd:23:7f:03:93:16:79:7b:
79:ed:a8:f7:6f:a0:6f:ff:38:8e:ed:37:f0:91:17:f7:9c:2c:
2c:ca:d6:29:38:f5:a7:4d:dc:20:51:28:b7:40:64:23:1e:76:
e6:df:97:72:08:5c:cf:63:12:83:2f:7e:c2:cb:e0:d5:33:e2:
ce:ad:11:ae:d1:ab:fc:57:14:25:46:29:02:f0:c3:c5:7a:b0:
29:62:22:50:60:03:4a:1b:d1:02:b8:e1:1d:08:28:2f:f2:69:
4c:13:6f:4a:d0:7f:4b:a6:d8:76:f5:ed:54:57:68:39:b5:a6:
ba:61:f6:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:29 2024 by rpki-client on console-fra.rpki-client.org