Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/8a22f1-e4ff-4469-82eb-d30ea968bfa7/1/QlOsRHneF55u6txwFtcR1atXbyg.roa
File: QlOsRHneF55u6txwFtcR1atXbyg.roa (raw, json)
Hash identifier: /YYGMIioNFMXoObwZdklHWWfhK6I6fz8VPNqcyjFe3E=
Subject key identifier: 42:53:AC:44:79:DE:17:9E:6E:EA:DC:70:16:D7:11:D5:AB:57:6F:28
Certificate issuer: /CN=7e9360205b48af4954566314230e6b1296d9aec4
Certificate serial: 018F2A00BE7AA394E83961D49EFF061C66D0
Authority key identifier: 7E:93:60:20:5B:48:AF:49:54:56:63:14:23:0E:6B:12:96:D9:AE:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fpNgIFtIr0lUVmMUIw5rEpbZrsQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/8a22f1-e4ff-4469-82eb-d30ea968bfa7/1/QlOsRHneF55u6txwFtcR1atXbyg.roa
Signing time: Mon 29 Apr 2024 13:17:22 +0000
ROA not before: Mon 29 Apr 2024 13:17:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16010
IP address blocks: 193.138.97.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 30 Apr 2024 12:23:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:2a:00:be:7a:a3:94:e8:39:61:d4:9e:ff:06:1c:66:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7e9360205b48af4954566314230e6b1296d9aec4
Validity
Not Before: Apr 29 13:17:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4253ac4479de179e6eeadc7016d711d5ab576f28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:da:65:aa:5c:c7:3d:dd:49:60:a2:98:0e:d5:
1d:91:98:6e:20:56:51:f7:fe:51:02:e4:48:4d:d2:
7f:31:63:00:5b:d7:be:d9:d6:8f:5d:19:f1:10:55:
a0:da:54:f9:99:95:4d:bd:6a:97:b5:3f:ee:4b:7a:
39:a0:57:15:38:6a:44:44:e6:85:19:22:39:df:ec:
fb:32:4e:3a:75:95:f7:02:2a:53:e3:44:4a:1c:41:
b0:0e:cb:00:f6:dd:21:4e:e4:67:14:fb:9c:6b:94:
b0:b5:57:af:9f:b5:b7:39:18:f2:f1:ae:20:a3:c7:
c3:02:40:0f:78:ec:72:85:c9:de:08:04:50:c9:6f:
73:66:a4:d3:63:05:72:39:2b:1a:c9:d2:b8:be:9a:
af:44:56:f9:9d:e7:2b:e5:17:21:e5:b9:9a:75:a9:
09:a4:00:e2:90:e1:ca:0e:4c:79:5b:dd:2b:6b:4a:
d2:e4:53:93:1e:ed:01:24:a2:72:d3:66:8f:80:62:
07:6f:55:9b:e4:70:8e:81:6f:e8:ed:db:3b:e4:4c:
71:74:4d:cb:eb:19:cc:fd:94:39:79:79:5c:d3:d9:
2d:fe:69:36:58:8b:9d:98:9f:9f:49:ea:6c:38:73:
ae:b8:e7:3c:09:e1:da:c6:5e:29:d1:e0:b5:78:2e:
70:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:53:AC:44:79:DE:17:9E:6E:EA:DC:70:16:D7:11:D5:AB:57:6F:28
X509v3 Authority Key Identifier:
keyid:7E:93:60:20:5B:48:AF:49:54:56:63:14:23:0E:6B:12:96:D9:AE:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fpNgIFtIr0lUVmMUIw5rEpbZrsQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/8a22f1-e4ff-4469-82eb-d30ea968bfa7/1/QlOsRHneF55u6txwFtcR1atXbyg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/8a22f1-e4ff-4469-82eb-d30ea968bfa7/1/fpNgIFtIr0lUVmMUIw5rEpbZrsQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.138.97.0/24
Signature Algorithm: sha256WithRSAEncryption
44:a5:73:07:4a:ae:af:bf:b0:49:86:73:97:93:8a:9c:55:78:
c3:7d:e3:d3:f6:c2:4f:f5:b6:6c:8d:db:48:76:ee:65:81:45:
d0:75:8b:b7:5d:26:b4:17:9a:e3:40:e3:64:cd:33:30:f8:12:
a0:ac:a3:27:a5:e0:4d:5e:c5:61:5a:72:74:00:ce:57:d6:dc:
b2:83:a8:c3:5a:da:84:43:e4:8c:6b:93:35:96:3f:c6:87:a1:
1b:12:13:fb:20:f6:7b:6a:2a:b7:3e:f3:99:c0:7f:43:98:e8:
80:ba:26:cf:5c:33:8f:15:cd:1d:77:54:3c:30:b4:ac:7c:dd:
13:b6:ab:72:3e:09:44:fe:4a:2a:50:cb:2b:d8:ee:01:2b:bd:
44:32:31:37:00:ae:6a:5a:4d:04:11:6c:76:a4:6a:09:b8:6b:
f9:be:c2:b6:a1:e2:8b:2e:ad:fa:c2:cf:14:2d:93:46:88:08:
6e:d4:21:d3:44:e8:24:be:9e:fc:55:22:2c:9d:17:79:b7:dd:
e0:d9:e1:a0:9f:56:e7:8a:69:e5:02:27:8e:25:a2:b7:4b:a0:
ec:af:8b:82:50:cd:3b:dc:d2:19:1d:09:19:4a:b0:3f:d4:a7:
d5:75:ce:d4:fc:82:a8:ab:12:2c:55:e1:f1:78:5e:6d:a5:c0:
7b:da:33:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:13:25 2024 by rpki-client on console-ams.rpki-client.org