Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/b62878-ccc8-4d57-9fe0-7a104b80cd71/1/qWO91vwm2Zi15NilZNTa2qryXw8.roa
File: qWO91vwm2Zi15NilZNTa2qryXw8.roa (raw, json)
Hash identifier: Vpapjs8vt0v6/utYKYL+drSUo4dkQti9uisXZHLGCiA=
Subject key identifier: A9:63:BD:D6:FC:26:D9:98:B5:E4:D8:A5:64:D4:DA:DA:AA:F2:5F:0F
Certificate issuer: /CN=0aeeaee0863d1dca624f61f39b2181c7db6cba3f
Certificate serial: 01856DCAE20BDA71C3F826D71C025215EBC8
Authority key identifier: 0A:EE:AE:E0:86:3D:1D:CA:62:4F:61:F3:9B:21:81:C7:DB:6C:BA:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Cu6u4IY9HcpiT2HzmyGBx9tsuj8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/b62878-ccc8-4d57-9fe0-7a104b80cd71/1/qWO91vwm2Zi15NilZNTa2qryXw8.roa
Signing time: Sun 01 Jan 2023 14:44:50 +0000
ROA not before: Sun 01 Jan 2023 14:44:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206685
IP address blocks: 159.255.189.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:ca:e2:0b:da:71:c3:f8:26:d7:1c:02:52:15:eb:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0aeeaee0863d1dca624f61f39b2181c7db6cba3f
Validity
Not Before: Jan 1 14:44:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a963bdd6fc26d998b5e4d8a564d4dadaaaf25f0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:e0:7d:7c:b5:b7:ea:45:1f:74:c9:67:f0:32:
7f:27:7a:e7:37:7b:18:be:38:4d:57:6f:d4:48:72:
b6:5b:45:71:b0:d1:4b:a0:50:94:36:8a:38:76:2a:
4c:4e:e6:a1:04:d8:ab:23:c0:45:20:cf:32:8d:1a:
44:f9:29:8f:74:7a:3e:7c:59:85:d2:79:b5:68:39:
10:cf:19:09:2c:48:48:df:eb:fd:8f:2d:66:f2:a9:
e6:f4:50:1e:1b:6c:c7:d2:85:9c:01:7d:3d:70:4d:
af:80:6e:20:ae:2e:b1:67:c6:6f:14:e8:bf:f8:26:
8a:0d:68:f1:55:9e:59:45:fd:56:cb:f1:55:c8:88:
42:cb:aa:ea:fd:eb:86:fc:9f:b1:6d:8f:88:34:51:
eb:b0:e2:1e:fa:d9:cf:fb:2f:6e:35:dd:17:23:77:
02:9b:65:d1:38:5e:6e:2f:4e:d5:79:a8:be:7a:1f:
c2:00:04:8b:5c:a6:d1:92:52:96:41:59:1e:5f:43:
a0:57:e1:ba:52:a4:7a:1c:64:87:52:75:e2:69:0d:
40:e3:d7:2f:c7:f5:ea:75:bc:f9:95:46:1f:8b:8d:
ba:3c:dd:29:ef:75:29:6f:9a:21:9e:ed:50:93:cb:
e2:03:71:6c:59:36:a0:c4:16:e0:46:06:f9:00:26:
7f:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:63:BD:D6:FC:26:D9:98:B5:E4:D8:A5:64:D4:DA:DA:AA:F2:5F:0F
X509v3 Authority Key Identifier:
keyid:0A:EE:AE:E0:86:3D:1D:CA:62:4F:61:F3:9B:21:81:C7:DB:6C:BA:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Cu6u4IY9HcpiT2HzmyGBx9tsuj8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/b62878-ccc8-4d57-9fe0-7a104b80cd71/1/qWO91vwm2Zi15NilZNTa2qryXw8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/b62878-ccc8-4d57-9fe0-7a104b80cd71/1/Cu6u4IY9HcpiT2HzmyGBx9tsuj8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
159.255.189.0/24
Signature Algorithm: sha256WithRSAEncryption
84:9b:fd:6a:81:d3:af:05:52:13:71:2e:87:1c:7e:3e:a9:b0:
9e:c9:7b:74:d9:dd:75:28:f3:49:cb:a7:4e:fe:b2:75:34:d3:
c7:39:99:bc:3a:2e:fa:e4:e0:7f:74:c4:8a:e4:91:b1:95:6d:
c8:8c:c3:7e:07:f1:ec:26:40:63:d2:75:73:1f:55:25:6c:05:
bc:db:74:28:1b:95:42:52:47:0a:10:41:16:52:4d:6a:86:cb:
8f:dd:46:c4:80:bb:39:76:8c:c0:24:0d:9c:75:eb:1f:43:af:
52:9b:b8:b8:d9:60:94:6e:0e:16:cd:bc:db:58:a9:47:f0:c6:
3b:52:84:65:a0:72:66:58:9a:ae:e5:76:7d:2d:60:c7:45:57:
a9:38:f2:43:54:d5:3b:da:75:f3:14:f7:1e:33:34:01:e4:ca:
23:4c:1c:57:8c:20:2a:5d:08:c3:a2:6c:10:eb:f2:af:a2:60:
65:01:29:2b:1b:73:88:d9:12:e2:9a:39:5f:5d:aa:b0:b0:8d:
0c:c9:15:0e:03:a1:b6:f2:a6:f8:d6:c9:a2:fb:99:e6:bc:1e:
62:53:d2:41:ac:51:9f:c0:c6:48:44:5f:0a:cf:53:1d:cc:8f:
b4:ea:3f:3b:82:63:ee:f6:0b:25:30:31:cc:e2:a4:70:b4:72:
84:c6:32:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:00:53 2024 by rpki-client on console-ams.rpki-client.org