Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/6c7dab-3c1b-4d50-9ffd-ab1ea4353b7f/1/_QbAAi-2fjnS2qxsV-48Ca5JzNM.roa
File: _QbAAi-2fjnS2qxsV-48Ca5JzNM.roa (raw, json)
Hash identifier: CbtMiNAF3MYCQoFrZcE5Ky/sr4bIKL0IT4myobs0eao=
Subject key identifier: FD:06:C0:02:2F:B6:7E:39:D2:DA:AC:6C:57:EE:3C:09:AE:49:CC:D3
Certificate issuer: /CN=4a7f7876d4c5554b772a57e7f1c4ced37fb5e19e
Certificate serial: 0188237FAB9E16FBBC0070C8C9E46FF91A2A
Authority key identifier: 4A:7F:78:76:D4:C5:55:4B:77:2A:57:E7:F1:C4:CE:D3:7F:B5:E1:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sn94dtTFVUt3Klfn8cTO03-14Z4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/6c7dab-3c1b-4d50-9ffd-ab1ea4353b7f/1/_QbAAi-2fjnS2qxsV-48Ca5JzNM.roa
Signing time: Tue 16 May 2023 07:39:09 +0000
ROA not before: Tue 16 May 2023 07:39:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200346
IP address blocks: 193.22.254.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:30:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:23:7f:ab:9e:16:fb:bc:00:70:c8:c9:e4:6f:f9:1a:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a7f7876d4c5554b772a57e7f1c4ced37fb5e19e
Validity
Not Before: May 16 07:39:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fd06c0022fb67e39d2daac6c57ee3c09ae49ccd3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:b8:45:32:21:ea:83:3b:36:40:49:b7:4d:eb:
11:68:bc:9f:d9:00:78:18:fb:26:6c:7d:36:36:bb:
51:bd:0a:a1:9e:a3:b8:f3:c9:f3:7b:27:68:5c:57:
52:6b:9b:19:07:36:a9:0f:68:65:74:a3:72:d4:50:
70:bf:5e:e7:f5:d9:ca:a6:39:4c:52:5a:d2:21:b4:
45:92:bd:6a:67:4d:c0:5c:43:ab:5a:72:05:46:85:
73:b5:ab:2a:cd:1b:17:5e:fe:e3:9a:bb:44:4a:3d:
39:06:ec:7f:58:7b:50:da:30:2d:92:48:34:5d:17:
19:2a:61:ae:7a:a9:dc:76:5f:d5:9f:48:89:13:a3:
cb:64:55:78:b6:0c:0d:37:c8:8c:63:81:39:d3:08:
9f:c1:f5:54:d0:d0:3e:e5:1f:78:e0:3b:30:a4:6f:
64:41:d6:ed:5e:ad:10:16:23:58:66:6b:45:bd:3a:
bf:3a:b4:39:1c:29:87:36:b8:bc:68:e0:be:2d:53:
ce:cf:b8:a7:6b:bc:1d:e2:38:25:cc:d4:fe:63:69:
c3:ad:5e:46:f3:93:f2:d8:78:33:7b:3e:46:c8:22:
6b:5f:4b:d0:b4:32:e0:0b:dc:af:89:36:42:e1:36:
ca:44:77:67:68:a3:b9:e1:df:d2:9e:3b:d3:90:c0:
be:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:06:C0:02:2F:B6:7E:39:D2:DA:AC:6C:57:EE:3C:09:AE:49:CC:D3
X509v3 Authority Key Identifier:
keyid:4A:7F:78:76:D4:C5:55:4B:77:2A:57:E7:F1:C4:CE:D3:7F:B5:E1:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sn94dtTFVUt3Klfn8cTO03-14Z4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/6c7dab-3c1b-4d50-9ffd-ab1ea4353b7f/1/_QbAAi-2fjnS2qxsV-48Ca5JzNM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/6c7dab-3c1b-4d50-9ffd-ab1ea4353b7f/1/Sn94dtTFVUt3Klfn8cTO03-14Z4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.22.254.0/24
Signature Algorithm: sha256WithRSAEncryption
47:85:5a:84:ff:bb:78:ae:07:6d:89:72:da:f5:af:32:d7:b0:
63:a9:21:23:af:84:d7:e6:88:39:f8:2b:8d:61:a8:1b:03:d0:
5f:3e:33:fc:d5:3f:b1:d3:96:bf:27:06:cf:a0:1e:70:aa:b0:
36:6c:60:59:b1:00:79:7e:5e:e8:a0:51:6a:03:9e:63:01:d5:
57:39:09:78:de:9e:16:67:94:7d:a8:2e:a7:a1:13:59:ba:c1:
ea:d8:e7:1f:1e:c6:a9:81:98:84:ac:72:dc:68:b2:87:af:58:
d7:d8:b9:ae:05:30:42:4a:96:ca:b8:79:a9:49:94:72:e7:d2:
df:2a:94:b2:26:5a:9c:68:0a:88:1c:8e:17:04:8b:7d:4b:45:
ea:31:37:5a:74:c2:66:09:d0:55:25:c5:e9:42:9c:66:a3:40:
98:69:0f:44:25:3f:03:f6:82:74:61:7d:d9:46:48:2b:9a:27:
1a:ae:ff:81:19:0b:fa:02:5b:4c:50:fd:e3:cc:5d:ad:13:38:
de:11:47:a6:20:00:de:69:ca:4d:c0:df:5b:b0:9a:fe:4b:8a:
8f:46:29:7b:59:8c:1a:6c:f4:4f:fb:69:28:15:0c:b2:99:41:
dc:17:ad:2a:30:b4:df:aa:bb:ff:eb:82:6c:91:12:cc:40:fd:
61:e0:4f:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:55 2024 by rpki-client on console-ams.rpki-client.org