Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/200fa4-4578-4ae8-9ffb-2ed269384a74/1/qSluYwNnwbYE_ZnQd893FSfQeL0.roa
File: qSluYwNnwbYE_ZnQd893FSfQeL0.roa (raw, json)
Hash identifier: sXTh2Xs0170BdVCmAg0Y/WK60X2N+3LY3tfSXJwhqVY=
Subject key identifier: A9:29:6E:63:03:67:C1:B6:04:FD:99:D0:77:CF:77:15:27:D0:78:BD
Certificate issuer: /CN=80d72537cc54ac10b4abfacc72c1b754c171af8f
Certificate serial: 018E0B2163576894BAA3B0EC25A1334E4FBD
Authority key identifier: 80:D7:25:37:CC:54:AC:10:B4:AB:FA:CC:72:C1:B7:54:C1:71:AF:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gNclN8xUrBC0q_rMcsG3VMFxr48.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/200fa4-4578-4ae8-9ffb-2ed269384a74/1/qSluYwNnwbYE_ZnQd893FSfQeL0.roa
Signing time: Mon 04 Mar 2024 20:22:01 +0000
ROA not before: Mon 04 Mar 2024 20:22:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 23470
IP address blocks: 171.22.216.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 18 Mar 2024 21:07:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:0b:21:63:57:68:94:ba:a3:b0:ec:25:a1:33:4e:4f:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80d72537cc54ac10b4abfacc72c1b754c171af8f
Validity
Not Before: Mar 4 20:22:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a9296e630367c1b604fd99d077cf771527d078bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:e9:61:d1:08:3e:23:a2:eb:72:65:04:5e:8b:
12:99:c5:f9:4f:8f:9a:88:5b:34:51:fb:6f:a3:0e:
ab:91:a8:2c:09:99:3a:45:70:16:a3:80:e0:fa:48:
e1:27:b5:50:a0:1b:42:ce:44:3c:55:4d:75:f9:a4:
82:16:b8:12:2a:e2:78:ad:85:60:ba:cf:8f:b1:4c:
1c:bd:0e:75:ed:30:f8:8b:59:3f:93:11:12:50:e5:
e7:1f:5c:b6:a6:d9:5a:ca:a0:ac:69:60:e7:ca:f5:
90:31:72:07:97:b1:df:f9:dc:48:04:3a:c8:0b:7d:
44:37:5c:e9:e7:68:ae:df:78:86:04:8e:e8:3c:7e:
bb:a2:ac:42:c3:e9:86:f8:22:6b:12:17:65:03:54:
86:b2:97:2f:5d:d4:50:53:e7:c6:39:95:61:2a:65:
19:6d:65:c2:3f:2e:e5:56:f7:61:a5:a6:ad:e3:07:
6d:07:02:6d:6e:80:73:46:bd:67:0a:a9:e7:35:a0:
bb:ad:71:12:97:48:f8:7e:4e:55:99:7a:73:f2:7f:
a1:5b:52:84:2f:98:16:78:ae:b0:b4:8a:b8:56:de:
33:01:36:b6:f8:43:57:80:f4:98:24:f8:e7:da:76:
f4:e2:b4:74:7f:d4:f1:0a:4f:53:91:f4:b3:50:4f:
db:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:29:6E:63:03:67:C1:B6:04:FD:99:D0:77:CF:77:15:27:D0:78:BD
X509v3 Authority Key Identifier:
keyid:80:D7:25:37:CC:54:AC:10:B4:AB:FA:CC:72:C1:B7:54:C1:71:AF:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gNclN8xUrBC0q_rMcsG3VMFxr48.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/200fa4-4578-4ae8-9ffb-2ed269384a74/1/qSluYwNnwbYE_ZnQd893FSfQeL0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/200fa4-4578-4ae8-9ffb-2ed269384a74/1/gNclN8xUrBC0q_rMcsG3VMFxr48.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
171.22.216.0/22
Signature Algorithm: sha256WithRSAEncryption
06:e0:02:3f:23:9d:e1:8c:fd:d1:46:3d:37:35:60:c4:7c:af:
b2:42:2a:38:19:0c:6c:36:70:ca:95:11:71:ba:9b:0f:c9:b9:
26:4f:88:0b:eb:2d:ec:b4:bb:33:65:d9:18:99:20:73:d5:c8:
1d:2b:da:cf:bb:15:79:27:9d:b8:84:9f:0e:7d:31:18:4c:b1:
a7:7e:98:0e:5b:23:91:e4:14:01:3d:52:51:fa:77:f5:24:00:
7c:ac:58:02:d2:da:ff:a1:d3:9b:63:4d:06:03:12:3d:30:83:
d5:5b:72:21:45:ad:f8:5a:b9:08:24:25:64:db:ed:c4:7e:40:
b4:6c:f9:29:d0:a7:6f:1d:f8:51:cc:19:e6:d4:08:95:17:6a:
d7:f8:6c:2d:12:b4:37:22:dc:b4:f8:ea:cc:68:2b:b6:0f:0a:
bd:9f:09:c3:23:02:ec:5f:0d:5e:f4:b3:ac:a2:b0:d5:3e:2f:
9d:f9:4b:38:4f:07:37:fb:e2:19:19:c2:13:a7:a3:47:91:10:
bc:0b:42:62:9a:15:2d:68:9f:a8:c8:f5:cf:92:69:82:97:e2:
a5:ba:07:0f:c2:56:4d:fd:d9:f4:49:7c:81:de:c6:4f:c8:3a:
5b:e8:bd:a3:20:1c:62:42:6f:6d:aa:54:22:c5:3e:b0:1d:a1:
c0:23:80:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 18 23:13:17 2024 by rpki-client on console-ams.rpki-client.org