Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/bb70d3-632e-4eff-84ff-6dcf7c3849bc/1/qypq3I4r9o7uIEXPugKWWn424Vo.roa
File: qypq3I4r9o7uIEXPugKWWn424Vo.roa (raw, json)
Hash identifier: VidjtJVpdO5a4HE+ZTOp7vwyEea6iOHzOhh0K/BPWpY=
Subject key identifier: AB:2A:6A:DC:8E:2B:F6:8E:EE:20:45:CF:BA:02:96:5A:7E:36:E1:5A
Certificate issuer: /CN=2fcc934652842b7bd9a7cec002c77c1ca13f1064
Certificate serial: 01856BB7FF5179CD787A6FA352AC35C4D651
Authority key identifier: 2F:CC:93:46:52:84:2B:7B:D9:A7:CE:C0:02:C7:7C:1C:A1:3F:10:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L8yTRlKEK3vZp87AAsd8HKE_EGQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/bb70d3-632e-4eff-84ff-6dcf7c3849bc/1/qypq3I4r9o7uIEXPugKWWn424Vo.roa
Signing time: Sun 01 Jan 2023 05:04:58 +0000
ROA not before: Sun 01 Jan 2023 05:04:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42301
IP address blocks: 193.200.239.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:29:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:b7:ff:51:79:cd:78:7a:6f:a3:52:ac:35:c4:d6:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2fcc934652842b7bd9a7cec002c77c1ca13f1064
Validity
Not Before: Jan 1 05:04:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ab2a6adc8e2bf68eee2045cfba02965a7e36e15a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:c3:b9:83:5c:65:4c:da:9d:67:cb:c2:e4:79:
cc:d7:84:11:98:45:ab:0a:33:fe:6b:5a:de:ce:01:
69:37:af:c3:16:6d:5d:da:39:5c:2c:f0:ac:41:04:
7a:ae:aa:57:bd:48:39:cf:36:77:98:db:05:a5:28:
ca:4d:0c:13:a3:9f:ba:3d:09:c2:eb:05:ab:5b:0d:
0a:11:9e:8c:7f:14:88:ef:6a:2e:c0:c9:0b:5c:44:
bd:84:20:76:3f:54:67:e2:f8:00:77:66:d6:77:33:
b4:d4:5c:96:4a:28:fe:79:7d:b6:16:e4:12:68:70:
b9:96:f2:02:64:ca:09:24:14:e6:ec:91:33:c9:95:
1f:80:95:26:94:7e:88:f5:c0:f4:f2:26:6a:5e:8f:
b5:5d:4d:5a:e0:31:0d:98:db:2d:c9:e3:6e:dc:76:
84:b4:d5:04:8e:42:62:73:6c:4d:cd:a1:fe:7d:72:
78:8b:01:e9:39:f0:9e:0e:0a:4d:7e:39:e6:e4:9a:
72:c7:4b:13:90:f4:09:65:9d:f3:97:64:be:2e:8c:
ff:34:4f:cb:75:53:38:2f:7b:23:ce:9e:7b:4b:f1:
64:1c:3e:6c:a5:91:9e:ea:b5:68:fc:cc:e5:9e:90:
7d:f5:f5:9b:8d:8d:15:25:26:2b:34:5e:33:d1:6e:
57:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:2A:6A:DC:8E:2B:F6:8E:EE:20:45:CF:BA:02:96:5A:7E:36:E1:5A
X509v3 Authority Key Identifier:
keyid:2F:CC:93:46:52:84:2B:7B:D9:A7:CE:C0:02:C7:7C:1C:A1:3F:10:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L8yTRlKEK3vZp87AAsd8HKE_EGQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/bb70d3-632e-4eff-84ff-6dcf7c3849bc/1/qypq3I4r9o7uIEXPugKWWn424Vo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/bb70d3-632e-4eff-84ff-6dcf7c3849bc/1/L8yTRlKEK3vZp87AAsd8HKE_EGQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.200.239.0/24
Signature Algorithm: sha256WithRSAEncryption
73:22:b1:3b:de:25:6e:fb:30:6e:94:7d:80:db:74:de:ad:af:
80:ff:07:e1:46:5f:d7:2a:24:b1:aa:fd:9e:9e:ff:06:96:fb:
99:3e:6a:cb:ea:65:60:c4:0a:01:60:11:86:1a:48:72:3b:23:
e0:bf:05:10:c8:4d:89:3f:54:1a:bf:25:c9:e1:26:cf:75:6a:
88:80:b4:38:38:5a:4e:e4:03:da:ee:8c:7c:e8:af:34:f4:0c:
e7:5a:6f:9c:cb:d9:27:33:ba:17:df:d3:21:59:05:91:99:99:
4e:8e:41:0b:2f:d7:eb:08:61:23:3c:58:24:f4:8e:43:48:d2:
cf:cd:9c:f0:a8:56:26:a6:70:b4:05:40:56:19:7a:78:2a:5a:
b6:34:ed:8d:5f:94:a2:b6:ed:88:ac:ec:9f:33:9b:bb:b8:ca:
c6:ae:1f:a0:87:41:5d:3e:91:39:9b:21:ba:c1:23:16:e1:0a:
a4:af:80:1c:d2:c0:7d:7a:f6:b2:76:6d:08:08:28:ee:c2:5c:
a6:89:84:5b:bc:1a:d2:9c:0a:e8:d5:9d:a4:d0:92:e0:6b:3a:
68:5f:7f:5f:2e:85:24:a3:d0:a9:82:c5:11:e2:b8:84:ac:74:
f0:b8:f6:90:fb:86:3f:e7:00:81:ca:ea:8c:91:d6:06:c7:16:
b3:89:01:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:35:59 2024 by rpki-client on console-ams.rpki-client.org