Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/qjVBH82q_Z_v63XnxNT9qZe9IVE.roa
File: qjVBH82q_Z_v63XnxNT9qZe9IVE.roa (raw, json)
Hash identifier: My+pQ47vHneTFVAYRflOV7b0V8yUfyHi1uQSRg7Gdfg=
Subject key identifier: AA:35:41:1F:CD:AA:FD:9F:EF:EB:75:E7:C4:D4:FD:A9:97:BD:21:51
Certificate issuer: /CN=94166b704843d3d9754095c83a91b493828200a2
Certificate serial: 01891C4FAC2ECFC5DC351AC376DC9515E263
Authority key identifier: 94:16:6B:70:48:43:D3:D9:75:40:95:C8:3A:91:B4:93:82:82:00:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lBZrcEhD09l1QJXIOpG0k4KCAKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/qjVBH82q_Z_v63XnxNT9qZe9IVE.roa
Signing time: Mon 03 Jul 2023 15:12:10 +0000
ROA not before: Mon 03 Jul 2023 15:12:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 397563
IP address blocks: 171.22.147.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:1c:4f:ac:2e:cf:c5:dc:35:1a:c3:76:dc:95:15:e2:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94166b704843d3d9754095c83a91b493828200a2
Validity
Not Before: Jul 3 15:12:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=aa35411fcdaafd9fefeb75e7c4d4fda997bd2151
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:54:37:3d:d2:54:d4:37:41:9e:98:d9:7c:6e:
65:40:e6:1a:1c:dc:e6:e6:2a:3d:ca:74:a9:aa:15:
e6:66:70:54:03:9c:62:ec:d6:03:f3:b2:06:ce:df:
1b:ab:06:6f:da:e8:ee:9a:55:5a:c1:ff:9f:0e:04:
30:90:df:79:3e:7a:ab:87:e5:26:7f:2b:3e:3e:60:
c3:24:96:60:b8:1b:13:2f:83:bb:48:4b:91:be:ed:
5c:b1:09:9c:6c:37:97:51:8f:1e:49:84:59:e6:6f:
bb:38:ed:dd:e5:c6:d9:a4:2b:24:48:ad:2d:b6:56:
1d:3f:75:e7:32:8b:2d:96:f7:98:58:24:14:fd:49:
4a:ba:cc:39:ec:5d:c4:30:93:c1:95:cf:8b:ec:d9:
7b:7e:66:7a:75:13:1d:ee:9b:e1:99:35:47:a8:c0:
5f:6c:b9:bc:6f:2e:e9:56:06:3c:0c:0e:9d:93:d4:
6f:b2:ae:95:62:1f:31:38:cf:ac:62:69:af:d9:e0:
6b:21:12:12:49:02:12:f7:25:05:2d:86:61:bb:e9:
60:89:98:ae:0e:75:e4:a5:6d:cf:05:74:22:65:66:
ff:55:4c:66:32:77:84:7e:6e:0d:c5:03:8b:70:e0:
cd:ea:bb:5f:7d:cd:47:ee:c4:cb:79:31:81:63:61:
4d:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:35:41:1F:CD:AA:FD:9F:EF:EB:75:E7:C4:D4:FD:A9:97:BD:21:51
X509v3 Authority Key Identifier:
keyid:94:16:6B:70:48:43:D3:D9:75:40:95:C8:3A:91:B4:93:82:82:00:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lBZrcEhD09l1QJXIOpG0k4KCAKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/qjVBH82q_Z_v63XnxNT9qZe9IVE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/lBZrcEhD09l1QJXIOpG0k4KCAKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
171.22.147.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:00:ff:d9:3f:4f:69:42:72:4e:1c:b5:18:6b:22:6e:fc:19:
a9:1d:bb:f9:f7:7c:81:99:0e:97:b2:af:ad:1d:e0:4b:fb:ba:
21:83:8c:35:8c:75:35:c5:a3:a8:d4:04:71:be:17:d0:5e:01:
c9:ff:ac:69:ec:0b:2c:46:e9:e7:ae:8a:3b:64:64:60:84:85:
18:88:23:67:b0:e3:c8:3d:31:7d:38:eb:42:ec:35:a8:85:b6:
a0:f8:61:73:71:bf:40:c3:ae:b9:9a:55:ec:31:2e:ed:a0:45:
f6:9f:9b:e2:a7:1a:5b:24:3d:e3:6f:b6:55:5a:ac:82:de:88:
ee:e4:55:6b:e0:0f:6e:49:e3:64:a1:a7:84:86:88:11:9a:61:
8f:7e:08:d9:a3:0f:a5:7a:5c:11:7d:52:fd:5c:3f:8c:c2:57:
31:ed:f1:32:36:ab:8d:9c:4d:a2:f5:e8:0c:e8:a0:bb:54:69:
cb:bd:51:2c:21:a5:41:fd:c6:f7:45:27:6f:84:db:66:cc:b8:
87:a2:c7:7c:0b:61:76:90:a7:f9:9f:5a:37:c2:c0:8c:29:34:
ed:cd:7a:65:cd:16:c8:12:d6:87:3b:37:8a:46:0c:e9:76:50:
68:68:db:3c:02:01:84:df:6d:5b:81:27:4b:ae:31:73:df:01:
1a:7e:31:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 4 13:32:23 2023 by rpki-client on console-ams.rpki-client.org