Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/q-S_WRzxmhKdTo4U5YA190AXNwM.roa
File: q-S_WRzxmhKdTo4U5YA190AXNwM.roa (raw, json)
Hash identifier: dQ8T7hIMpyqXEpre4/MIFoe6SpCOCsJSEFhCcroc1jw=
Subject key identifier: AB:E4:BF:59:1C:F1:9A:12:9D:4E:8E:14:E5:80:35:F7:40:17:37:03
Certificate issuer: /CN=6ddb38b343da2d119309edaa19c7a78870327ebe
Certificate serial: 018D3082724CC9D8F8D1DEBE2618CF521690
Authority key identifier: 6D:DB:38:B3:43:DA:2D:11:93:09:ED:AA:19:C7:A7:88:70:32:7E:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bds4s0PaLRGTCe2qGceniHAyfr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/q-S_WRzxmhKdTo4U5YA190AXNwM.roa
Signing time: Mon 22 Jan 2024 09:31:11 +0000
ROA not before: Mon 22 Jan 2024 09:31:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48715
IP address blocks: 188.212.97.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 27 Mar 2024 17:19:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:30:82:72:4c:c9:d8:f8:d1:de:be:26:18:cf:52:16:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ddb38b343da2d119309edaa19c7a78870327ebe
Validity
Not Before: Jan 22 09:31:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=abe4bf591cf19a129d4e8e14e58035f740173703
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:32:41:be:69:4c:9b:f6:1b:f8:a4:14:fa:16:
61:78:fc:de:92:a1:05:35:09:c0:68:a0:9a:3a:68:
ac:c8:9e:cb:a8:45:b1:a6:62:3d:7f:41:8e:89:fd:
9e:8e:25:f1:da:f4:c2:f3:6e:37:04:84:cb:04:2b:
ec:ff:b2:c4:6c:49:09:42:b4:9e:9a:bb:be:4e:b9:
48:67:59:87:a5:46:73:49:99:b7:88:f0:b2:bd:07:
2a:15:ad:0d:88:db:17:e6:84:d9:17:74:65:96:ea:
47:3f:62:42:b8:b9:35:07:5d:93:42:79:b6:c0:f7:
0b:75:d2:bd:1f:4e:05:97:98:9b:b2:a9:ac:a9:6f:
38:5f:bc:df:7e:db:67:5e:5f:32:c4:e2:47:02:3c:
91:4d:53:62:e2:e6:93:6a:07:b5:31:35:39:2c:a9:
c6:42:9a:62:24:85:44:a8:12:bd:de:54:ce:82:67:
73:d2:59:31:d0:96:a5:50:38:51:39:98:1e:b6:1d:
5b:f5:af:83:47:36:77:62:9b:be:71:2e:76:3d:f4:
9c:0f:78:d9:42:78:93:46:ff:8a:94:d8:a4:dc:6f:
6d:df:a2:13:51:56:65:80:8c:f8:97:ad:54:07:7b:
5f:01:67:75:b0:71:d7:7f:4e:7c:ef:bb:99:2f:a6:
a9:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:E4:BF:59:1C:F1:9A:12:9D:4E:8E:14:E5:80:35:F7:40:17:37:03
X509v3 Authority Key Identifier:
keyid:6D:DB:38:B3:43:DA:2D:11:93:09:ED:AA:19:C7:A7:88:70:32:7E:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bds4s0PaLRGTCe2qGceniHAyfr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/q-S_WRzxmhKdTo4U5YA190AXNwM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/bds4s0PaLRGTCe2qGceniHAyfr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.212.97.0/24
Signature Algorithm: sha256WithRSAEncryption
57:54:c3:65:2b:f0:4c:20:c7:69:92:67:8f:fa:11:07:9c:9f:
28:e8:d6:e4:58:e1:29:79:c1:0e:8f:53:5e:bd:ff:12:7e:dc:
98:8c:3d:0e:38:1b:bc:d0:74:5d:f9:95:7f:38:a4:ce:a2:5f:
0c:dc:12:4b:f2:a3:b1:fa:ba:bb:bc:00:cc:20:52:fd:21:47:
59:4c:c6:fa:ae:29:a1:86:68:55:1a:01:0c:2e:a1:55:00:51:
4d:48:12:f3:a1:e4:57:6a:67:b1:4c:05:3a:07:2b:05:ce:27:
d3:c6:4a:41:b5:38:fc:3f:fa:1e:23:88:b4:d3:ce:fe:c1:c8:
ed:06:6c:f7:d8:6a:46:83:e9:2c:29:c2:d8:ca:62:a7:89:eb:
35:68:13:19:83:d7:e0:2d:58:79:8c:f3:3e:bf:7d:f7:f2:ab:
59:b5:89:72:68:a0:24:06:57:0a:b4:c4:f4:c3:fe:9c:73:d1:
4e:b7:1f:89:d9:ef:ef:39:be:19:a3:35:02:9c:e5:03:35:f2:
56:d9:30:28:25:52:bd:ac:dd:74:0b:cf:71:e6:06:fe:5a:49:
53:a6:cc:45:2f:e1:08:eb:4e:cd:7e:67:3f:90:7f:41:8f:d8:
fa:82:46:aa:d0:0a:6c:51:ec:ea:55:3c:4a:61:16:fc:fb:fb:
74:18:c5:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 27 20:51:07 2024 by rpki-client on console-fra.rpki-client.org