Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/7b1c55-ddd0-4281-8378-4dd04346abc3/1/qetOgnhe7S1tjToUe8NfIR-K_Qs.roa
File: qetOgnhe7S1tjToUe8NfIR-K_Qs.roa (raw, json)
Hash identifier: 4cRyxrV7AollckWGY0pAN4SBe/KI7yGRUVBjtjIhKkc=
Subject key identifier: A9:EB:4E:82:78:5E:ED:2D:6D:8D:3A:14:7B:C3:5F:21:1F:8A:FD:0B
Certificate issuer: /CN=3aba1172472ea80265d12982967de0a8b0bc5901
Certificate serial: 0185714C4660DAE010BB9ABBC73792093829
Authority key identifier: 3A:BA:11:72:47:2E:A8:02:65:D1:29:82:96:7D:E0:A8:B0:BC:59:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OroRckcuqAJl0SmCln3gqLC8WQE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/7b1c55-ddd0-4281-8378-4dd04346abc3/1/qetOgnhe7S1tjToUe8NfIR-K_Qs.roa
Signing time: Mon 02 Jan 2023 07:05:02 +0000
ROA not before: Mon 02 Jan 2023 07:05:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201426
IP address blocks: 195.184.73.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:4c:46:60:da:e0:10:bb:9a:bb:c7:37:92:09:38:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3aba1172472ea80265d12982967de0a8b0bc5901
Validity
Not Before: Jan 2 07:05:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a9eb4e82785eed2d6d8d3a147bc35f211f8afd0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:21:87:da:cc:42:5a:4b:30:d8:a4:4e:f7:12:
dc:22:fb:d9:1d:24:03:38:71:8e:f4:a2:6f:fc:ec:
bd:09:12:52:59:69:ea:df:9a:1a:bc:d0:d0:56:0f:
97:e2:d8:e9:fe:d8:91:cd:88:95:48:df:4f:7b:e2:
4b:e9:54:56:6e:f6:80:b1:c3:a5:3f:b9:0f:09:87:
52:1f:bc:cd:fd:fb:0e:81:1f:1a:ff:f5:2b:09:f3:
ab:e5:c9:f4:0a:9b:90:3d:ce:e1:6f:7f:c0:cc:7c:
4e:23:e3:ba:d2:38:b3:97:db:70:0a:08:9e:85:63:
ea:e5:04:a9:07:89:18:0c:5d:b1:54:00:9b:a0:91:
00:ff:1c:62:f6:75:32:2c:b8:d4:53:68:0e:dc:8e:
9f:4b:74:fa:7c:a6:12:c7:7f:a8:93:da:fc:af:4b:
21:f1:84:33:06:71:44:70:b9:51:be:33:29:26:4f:
65:73:31:a1:72:1b:df:de:26:c3:92:fa:fd:fe:a1:
1a:02:c1:da:98:35:3d:e1:68:f1:0b:e5:20:63:4c:
e1:23:5e:f9:e0:19:66:21:ff:bb:e3:f5:3d:57:32:
7d:87:3e:1a:6f:2a:04:59:85:54:a6:f3:8a:0d:7d:
e9:18:76:0d:9d:cb:ce:c8:41:64:67:56:25:fa:94:
dd:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:EB:4E:82:78:5E:ED:2D:6D:8D:3A:14:7B:C3:5F:21:1F:8A:FD:0B
X509v3 Authority Key Identifier:
keyid:3A:BA:11:72:47:2E:A8:02:65:D1:29:82:96:7D:E0:A8:B0:BC:59:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OroRckcuqAJl0SmCln3gqLC8WQE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/7b1c55-ddd0-4281-8378-4dd04346abc3/1/qetOgnhe7S1tjToUe8NfIR-K_Qs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/7b1c55-ddd0-4281-8378-4dd04346abc3/1/OroRckcuqAJl0SmCln3gqLC8WQE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.184.73.0/24
Signature Algorithm: sha256WithRSAEncryption
08:3b:1b:ef:2f:54:1b:75:87:2b:26:bf:e5:df:b4:4d:c9:6a:
0a:09:f1:d6:03:73:4d:d9:ec:0c:05:46:90:0a:b2:db:34:98:
29:ce:f4:bd:8b:cd:d4:a1:f1:c7:81:e6:88:60:6d:e9:47:89:
ad:32:31:d0:57:57:18:3f:58:0c:93:10:ce:2f:88:26:3a:07:
68:ce:83:d0:f5:b7:2a:09:18:b6:b0:9f:b6:56:a3:80:b9:c2:
36:69:0d:19:d0:6f:63:b1:ff:9c:9f:cd:9b:66:94:12:7d:f8:
e2:a9:36:32:81:21:48:30:00:94:fc:00:a4:27:33:19:f8:63:
a3:6d:78:1e:aa:cd:47:16:75:a0:37:58:18:9f:7e:4e:85:d1:
63:eb:09:0d:04:15:c2:c0:03:91:b3:e2:7d:99:ca:f6:25:5e:
d0:39:58:47:fa:07:3b:d3:be:70:11:de:11:a4:0c:22:ad:04:
ac:42:1e:6d:d9:b5:d8:ad:85:7b:f3:92:8a:79:b8:47:9b:1f:
5b:6e:8f:c7:3c:58:f6:bf:a2:86:39:d4:20:93:3d:44:16:29:
22:cc:62:19:7a:f9:8d:93:02:b1:2d:d2:7e:a3:3b:3e:e3:47:
a7:c6:60:62:9d:f3:ef:22:23:a3:c0:87:74:23:85:18:38:04:
f5:f9:04:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 13:24:20 2024 by rpki-client on console-fra.rpki-client.org