Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/98abe5-bd01-464f-96ab-40b6d67fcd94/1/Q_19vAiDSS2H3WIMzLZKehLpZXo.roa
File: Q_19vAiDSS2H3WIMzLZKehLpZXo.roa (raw, json)
Hash identifier: SUwuYQcFIXuE6WgcXkM3Oa3rDmV1S4frvgW9XHErXy4=
Subject key identifier: 43:FD:7D:BC:08:83:49:2D:87:DD:62:0C:CC:B6:4A:7A:12:E9:65:7A
Certificate issuer: /CN=2f6a434c4b5d239c4e6e41b7e585c8d58f8995ab
Certificate serial: 01856E6F9F62C67C4B67A94A48096B744290
Authority key identifier: 2F:6A:43:4C:4B:5D:23:9C:4E:6E:41:B7:E5:85:C8:D5:8F:89:95:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L2pDTEtdI5xObkG35YXI1Y-Jlas.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/98abe5-bd01-464f-96ab-40b6d67fcd94/1/Q_19vAiDSS2H3WIMzLZKehLpZXo.roa
Signing time: Sun 01 Jan 2023 17:44:47 +0000
ROA not before: Sun 01 Jan 2023 17:44:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56547
IP address blocks: 5.201.172.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:30:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:6f:9f:62:c6:7c:4b:67:a9:4a:48:09:6b:74:42:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f6a434c4b5d239c4e6e41b7e585c8d58f8995ab
Validity
Not Before: Jan 1 17:44:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=43fd7dbc0883492d87dd620cccb64a7a12e9657a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:3c:bd:e2:18:d6:d2:58:62:68:4b:e1:a2:01:
5c:8e:ab:37:5e:9f:24:f2:b9:7a:c8:5d:0d:bc:d1:
ba:9d:a6:85:fd:98:d2:f1:f6:bd:18:9a:2d:54:bb:
c8:73:d0:0a:3a:c8:7d:b0:5a:97:71:d9:9f:90:53:
b7:49:31:42:fd:be:cf:d0:6a:3e:0c:5e:3d:3d:b5:
35:17:a3:f4:e4:7b:34:c4:44:7e:9b:0a:76:57:7e:
8c:91:9f:56:e1:39:2f:0c:74:e7:aa:7c:71:74:9f:
46:3a:a9:8d:aa:3e:57:52:9a:5d:60:4e:37:73:a7:
56:6f:81:64:b7:36:1d:cb:0b:90:28:73:c7:ac:c2:
a8:4e:1a:be:2d:01:b6:b6:31:63:a8:78:a7:32:81:
cd:77:32:17:63:22:53:5a:98:09:69:8d:ad:1f:4a:
c2:08:66:0e:a4:93:34:4e:f8:06:0d:a6:09:35:94:
3c:22:89:78:16:33:0c:84:77:c0:f0:67:14:00:d7:
4e:60:44:18:e9:ff:21:b0:18:11:94:64:b5:34:72:
8e:b8:32:3e:bc:c0:e8:89:bb:83:a8:4f:90:35:d1:
ad:fc:ee:32:df:3b:10:84:84:b1:7b:48:97:53:94:
44:31:4d:0d:c2:3f:34:c0:07:f1:97:e4:0f:5a:7a:
78:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:FD:7D:BC:08:83:49:2D:87:DD:62:0C:CC:B6:4A:7A:12:E9:65:7A
X509v3 Authority Key Identifier:
keyid:2F:6A:43:4C:4B:5D:23:9C:4E:6E:41:B7:E5:85:C8:D5:8F:89:95:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L2pDTEtdI5xObkG35YXI1Y-Jlas.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/98abe5-bd01-464f-96ab-40b6d67fcd94/1/Q_19vAiDSS2H3WIMzLZKehLpZXo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/98abe5-bd01-464f-96ab-40b6d67fcd94/1/L2pDTEtdI5xObkG35YXI1Y-Jlas.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.201.172.0/23
Signature Algorithm: sha256WithRSAEncryption
37:47:b9:87:d5:c7:a0:aa:18:f6:92:69:49:d0:25:7f:8a:50:
cf:56:18:3d:4c:d6:17:96:7b:2d:cc:ee:6c:03:48:fd:33:46:
4b:32:2e:8c:72:40:c2:2b:e1:0b:b4:e2:b9:b7:39:90:5b:ef:
98:d7:b3:59:80:57:11:78:4f:83:70:e1:43:21:d6:1c:f5:69:
cb:84:1d:55:7c:41:d2:91:60:80:97:2c:81:74:96:6f:97:c6:
22:e8:a8:94:8c:74:ca:f9:29:a3:f5:bb:8f:d8:b3:b6:72:45:
a5:0f:aa:08:73:ce:0f:5a:6f:15:77:14:99:17:4a:9d:49:4b:
84:11:1e:25:b6:8b:e5:21:16:ab:68:9f:db:a8:1d:3c:8d:67:
e5:72:56:4d:ac:11:e6:53:7b:6b:38:49:db:a8:05:c1:23:5b:
18:96:87:5e:08:8f:82:bb:25:61:67:93:6c:81:f2:21:02:ce:
a6:1b:10:cd:6b:a6:7c:02:86:aa:5a:16:59:1a:df:95:57:a1:
df:f9:85:2a:f6:5b:78:62:a6:7c:ae:23:8e:dc:ba:f9:a1:9e:
63:80:76:48:3d:81:51:98:8d:cc:8b:c6:79:f9:0f:24:61:77:
f1:16:fd:ec:4f:44:54:56:56:70:fc:f7:63:37:98:d0:53:bf:
07:51:52:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:12 2024 by rpki-client on console-fra.rpki-client.org