Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/672a2f-ac2b-4631-ab3d-c2bc1451f271/1/qNDzKfO_8zu96Er4prV8b_iuy9Y.roa
File: qNDzKfO_8zu96Er4prV8b_iuy9Y.roa (raw, json)
Hash identifier: Xp1EAQF9oAS7FJRHMwdFfn66J2iHsFr5RupGJEDrn6k=
Subject key identifier: A8:D0:F3:29:F3:BF:F3:3B:BD:E8:4A:F8:A6:B5:7C:6F:F8:AE:CB:D6
Certificate issuer: /CN=b5c7d81ec4c4055c673ff571ccad07c3a699105e
Certificate serial: 0186FF515A977F57EFDF6139799920C779E9
Authority key identifier: B5:C7:D8:1E:C4:C4:05:5C:67:3F:F5:71:CC:AD:07:C3:A6:99:10:5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tcfYHsTEBVxnP_VxzK0Hw6aZEF4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/672a2f-ac2b-4631-ab3d-c2bc1451f271/1/qNDzKfO_8zu96Er4prV8b_iuy9Y.roa
Signing time: Mon 20 Mar 2023 13:59:27 +0000
ROA not before: Mon 20 Mar 2023 13:59:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 0
IP address blocks: 194.88.150.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:ff:51:5a:97:7f:57:ef:df:61:39:79:99:20:c7:79:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5c7d81ec4c4055c673ff571ccad07c3a699105e
Validity
Not Before: Mar 20 13:59:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a8d0f329f3bff33bbde84af8a6b57c6ff8aecbd6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:df:a8:99:d0:59:43:f1:28:1d:ed:88:01:c8:
98:3a:0f:37:e0:65:0a:4e:1c:68:8b:01:b5:68:19:
27:47:fb:f3:6a:68:9d:5b:21:85:69:d2:07:0d:3a:
94:8b:18:3d:99:7f:0a:06:a9:45:79:13:34:75:1d:
64:31:65:1f:ad:d7:97:26:41:f8:fc:d9:c9:0b:58:
45:1b:6f:ee:05:33:fe:9e:9c:d9:2e:79:52:7e:67:
59:39:f4:14:09:d3:80:73:81:e4:71:c9:4e:82:7f:
e8:63:e8:de:5e:13:e4:8e:75:49:46:31:33:23:1b:
1e:ae:23:9c:6f:64:e7:b5:0b:0e:a9:fe:0e:09:97:
41:50:e3:51:72:2a:ca:68:8a:8c:df:15:c0:d6:6c:
19:17:ab:32:f9:bb:91:ee:bc:f9:bc:0f:03:b3:5b:
c0:e6:a5:e8:4a:09:a6:56:54:d3:ea:5e:7a:49:e1:
d6:50:02:94:bf:a7:48:d2:4c:01:2a:83:f2:d6:67:
ef:db:a5:05:b8:0f:ce:6d:c3:f8:17:ca:bb:ce:c4:
56:9f:ba:4c:48:2b:05:82:43:fb:2e:12:3e:1c:86:
2f:1e:6a:19:c3:32:1c:8b:28:aa:31:bf:aa:48:96:
1a:d5:98:fd:a7:d8:92:cb:3d:ca:9f:30:ce:ec:71:
88:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:D0:F3:29:F3:BF:F3:3B:BD:E8:4A:F8:A6:B5:7C:6F:F8:AE:CB:D6
X509v3 Authority Key Identifier:
keyid:B5:C7:D8:1E:C4:C4:05:5C:67:3F:F5:71:CC:AD:07:C3:A6:99:10:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tcfYHsTEBVxnP_VxzK0Hw6aZEF4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/672a2f-ac2b-4631-ab3d-c2bc1451f271/1/qNDzKfO_8zu96Er4prV8b_iuy9Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/672a2f-ac2b-4631-ab3d-c2bc1451f271/1/tcfYHsTEBVxnP_VxzK0Hw6aZEF4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.88.150.0/23
Signature Algorithm: sha256WithRSAEncryption
76:1e:64:fe:36:7a:02:6d:2d:23:72:9c:28:e1:68:f3:8e:56:
bf:df:6b:72:48:6b:4f:91:9c:05:cc:a2:1a:2f:ad:59:18:39:
91:24:c8:6f:68:f5:36:2f:84:7a:e6:b5:d6:b1:e9:78:7e:37:
8c:f2:d9:76:b1:0a:49:44:43:d2:54:e1:fd:08:81:52:dc:0d:
3f:5a:4b:11:21:13:32:2d:ff:98:26:b9:12:e6:ca:20:17:a8:
eb:c2:91:be:45:5b:6b:1a:98:2f:4a:3e:73:aa:a1:2c:f8:3c:
40:0c:16:00:eb:ba:ff:4a:63:24:43:7c:4b:30:a0:d9:00:e9:
35:bc:30:40:98:13:a8:8f:14:32:7b:45:68:da:05:31:9f:74:
77:f6:bf:4c:82:9d:89:2a:7f:f4:b0:1c:b5:b4:75:59:5a:3f:
d0:d9:0d:90:e1:8d:42:bb:62:5d:5d:84:86:b1:b3:2f:93:c7:
de:5d:27:f9:82:cf:cd:25:d5:6c:f6:1d:3c:f2:47:c3:d6:95:
fa:f3:f8:40:bc:dd:a3:07:ce:9c:ad:94:9c:7e:d1:79:a2:30:
bb:f2:1c:f9:f6:be:ff:01:e4:95:cc:42:cc:c9:5f:bc:78:2f:
0b:8a:44:58:44:45:e5:bb:8c:5f:fd:9d:18:48:ee:da:74:5d:
6b:d2:20:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:51 2024 by rpki-client on console-fra.rpki-client.org