Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/1f8cb4-1712-4e53-8d24-c91bf50104b9/1/qKeA-FGamwdMYtINyEw85UKpRvs.roa
File: qKeA-FGamwdMYtINyEw85UKpRvs.roa (raw, json)
Hash identifier: 5s6wpqzgkY6LAfFD2lohnGAdM3NIaxilSzAJUheGx3o=
Subject key identifier: A8:A7:80:F8:51:9A:9B:07:4C:62:D2:0D:C8:4C:3C:E5:42:A9:46:FB
Certificate issuer: /CN=c20897c1dbd606929137e672bad0c1f67e637d16
Certificate serial: 01856E41D6FC1C1C641BA9DF2FD36BBBFD8A
Authority key identifier: C2:08:97:C1:DB:D6:06:92:91:37:E6:72:BA:D0:C1:F6:7E:63:7D:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wgiXwdvWBpKRN-ZyutDB9n5jfRY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/1f8cb4-1712-4e53-8d24-c91bf50104b9/1/qKeA-FGamwdMYtINyEw85UKpRvs.roa
Signing time: Sun 01 Jan 2023 16:54:46 +0000
ROA not before: Sun 01 Jan 2023 16:54:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3303
IP address blocks: 193.188.240.0/24 maxlen: 24
193.188.245.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:30:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:41:d6:fc:1c:1c:64:1b:a9:df:2f:d3:6b:bb:fd:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c20897c1dbd606929137e672bad0c1f67e637d16
Validity
Not Before: Jan 1 16:54:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a8a780f8519a9b074c62d20dc84c3ce542a946fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:4c:1e:d3:f8:be:08:01:0d:7b:e7:66:67:32:
85:80:e4:6b:2f:46:fc:25:d2:47:63:85:d1:cd:37:
c3:7f:b7:3f:cf:ad:c9:63:a4:45:26:c7:4c:16:d6:
29:b6:13:4b:3f:a0:45:20:4a:99:7a:30:ab:b7:5e:
05:dd:d3:de:94:21:2d:71:25:db:fa:3d:ad:ff:46:
ca:03:78:c8:fb:eb:ba:11:70:66:c9:7a:d5:5b:d7:
92:89:a5:e3:81:a5:0c:94:03:0c:3d:a1:29:a8:1d:
f1:f8:02:4c:0b:ad:a2:5a:2a:dc:64:39:10:4d:c8:
48:a6:73:af:4c:69:81:b9:ef:5d:f4:4f:09:82:70:
11:b2:59:f9:b1:10:96:5e:68:57:c6:9c:bc:dd:f5:
1d:a4:79:6b:83:a9:8e:73:86:98:5c:bd:70:fc:51:
3a:e9:5f:21:10:fa:af:2f:4d:ad:0a:02:d2:51:1d:
9c:ff:94:be:0b:37:05:27:31:4c:6e:24:7f:26:95:
97:82:33:15:33:52:f9:53:a6:ad:b2:9a:8b:20:23:
64:c4:29:02:ec:e2:24:9d:66:21:73:28:d3:da:3e:
22:9a:ec:86:33:74:14:26:92:b0:90:6f:e1:d0:31:
31:85:db:1f:6d:f1:99:a5:9a:a1:50:28:b0:7d:30:
10:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:A7:80:F8:51:9A:9B:07:4C:62:D2:0D:C8:4C:3C:E5:42:A9:46:FB
X509v3 Authority Key Identifier:
keyid:C2:08:97:C1:DB:D6:06:92:91:37:E6:72:BA:D0:C1:F6:7E:63:7D:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wgiXwdvWBpKRN-ZyutDB9n5jfRY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/1f8cb4-1712-4e53-8d24-c91bf50104b9/1/qKeA-FGamwdMYtINyEw85UKpRvs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/1f8cb4-1712-4e53-8d24-c91bf50104b9/1/wgiXwdvWBpKRN-ZyutDB9n5jfRY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.188.240.0/24
193.188.245.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:fd:19:97:2c:1a:aa:6a:7d:ca:02:84:c1:ea:11:85:21:4d:
99:33:b5:04:ff:0b:34:63:dd:93:92:ba:86:0f:c1:2c:9d:dc:
1a:03:c9:46:c8:03:72:93:8c:ad:42:54:20:de:90:ca:cf:31:
ce:6c:af:15:0f:4b:50:b0:3f:41:5e:d0:97:44:71:b9:ce:74:
57:b6:65:07:1d:6d:8f:a2:b6:c6:5c:2d:2b:be:8d:d4:b4:2b:
36:c0:67:d3:cd:f4:d1:18:d3:e0:a1:af:86:28:44:c6:f4:88:
0f:9e:65:89:e1:d8:d2:b0:8a:dc:78:53:a0:3a:6f:a5:b8:b8:
30:4d:91:90:c2:7e:76:8a:3c:fc:ad:22:6d:dc:58:f3:97:91:
01:59:f7:6b:4b:4f:ad:c6:ad:ed:03:bd:f6:be:d8:db:f9:b5:
86:55:7f:65:5e:3c:81:d8:2f:e3:fd:0c:94:93:00:1b:16:81:
74:40:be:21:55:ae:7d:73:42:d4:f9:63:7b:97:f5:a3:d7:3f:
aa:0e:55:37:31:f2:af:d5:1b:da:7c:3b:db:3e:4a:fa:23:b9:
ea:67:aa:66:47:2d:5e:50:06:6d:94:37:fe:96:27:b8:5d:8d:
48:6c:e8:2c:89:a3:39:0d:12:0c:7f:68:48:4b:01:d4:81:b2:
2d:62:3e:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:08 2024 by rpki-client on console-ams.rpki-client.org