Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/766e12-9a09-4553-8f62-2294cdda6a40/1/Qw05XfxcSwLjncWvYteKM0jE3Ok.roa
File: Qw05XfxcSwLjncWvYteKM0jE3Ok.roa (raw, json)
Hash identifier: mfsSKqpJBhEABqpHao0Ydp9LKq6W7wx6lRL0c3k6eJs=
Subject key identifier: 43:0D:39:5D:FC:5C:4B:02:E3:9D:C5:AF:62:D7:8A:33:48:C4:DC:E9
Certificate issuer: /CN=7153b0294d3c8db15306ab109d506da74ae70979
Certificate serial: 01856C9CB0F9AF67AC085BEEB6258BD9F60E
Authority key identifier: 71:53:B0:29:4D:3C:8D:B1:53:06:AB:10:9D:50:6D:A7:4A:E7:09:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cVOwKU08jbFTBqsQnVBtp0rnCXk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/766e12-9a09-4553-8f62-2294cdda6a40/1/Qw05XfxcSwLjncWvYteKM0jE3Ok.roa
Signing time: Sun 01 Jan 2023 09:14:46 +0000
ROA not before: Sun 01 Jan 2023 09:14:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5470
IP address blocks: 155.207.0.0/16 maxlen: 16
192.104.147.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:34:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:9c:b0:f9:af:67:ac:08:5b:ee:b6:25:8b:d9:f6:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7153b0294d3c8db15306ab109d506da74ae70979
Validity
Not Before: Jan 1 09:14:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=430d395dfc5c4b02e39dc5af62d78a3348c4dce9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:f0:43:b0:65:56:63:05:29:64:05:d9:b7:80:
f0:b6:f4:73:28:76:d3:75:5f:0d:04:d9:0b:48:e6:
89:02:6b:ea:ed:3a:4e:c1:aa:fc:36:3d:08:6c:cf:
cd:91:10:7c:23:1d:a6:4c:b1:b2:d1:33:43:68:fa:
5d:17:70:22:cf:76:0a:09:3e:bb:47:79:c0:ad:5a:
da:ca:7c:56:2f:54:f0:be:1c:55:e5:64:c0:b5:de:
9b:86:8f:77:ec:a8:7a:30:ab:53:84:c9:c7:d1:85:
75:93:8c:f8:a8:93:80:b6:f1:83:97:3c:03:4f:6d:
31:5c:ac:5e:cc:53:ad:6b:61:f7:7e:88:e9:62:83:
75:bb:28:71:34:60:29:05:e6:36:0e:f2:4d:6b:34:
40:68:db:cf:a8:ca:b3:de:d4:13:68:40:2d:22:e5:
9d:f2:7e:b9:2c:d3:44:93:9e:24:75:c4:8a:22:1e:
47:a0:92:83:26:57:d6:fb:79:36:a9:c8:02:3f:b1:
fd:ae:69:cb:0a:85:c9:15:18:f6:dd:19:8e:55:e7:
e9:d5:a1:c8:65:11:b2:0b:de:20:49:5b:99:ff:5c:
ab:8c:55:3d:a3:1e:ce:b2:49:28:e0:94:54:07:5f:
bc:e7:2a:4f:c5:43:e2:71:36:56:36:3e:73:73:1f:
35:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:0D:39:5D:FC:5C:4B:02:E3:9D:C5:AF:62:D7:8A:33:48:C4:DC:E9
X509v3 Authority Key Identifier:
keyid:71:53:B0:29:4D:3C:8D:B1:53:06:AB:10:9D:50:6D:A7:4A:E7:09:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cVOwKU08jbFTBqsQnVBtp0rnCXk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/766e12-9a09-4553-8f62-2294cdda6a40/1/Qw05XfxcSwLjncWvYteKM0jE3Ok.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/766e12-9a09-4553-8f62-2294cdda6a40/1/cVOwKU08jbFTBqsQnVBtp0rnCXk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
155.207.0.0/16
192.104.147.0/24
Signature Algorithm: sha256WithRSAEncryption
61:71:52:b8:0c:e8:aa:32:1c:e3:ae:c6:05:41:83:6a:91:a0:
09:4d:95:01:3f:1a:c0:d5:21:81:e3:1d:26:9d:a3:41:cf:c6:
14:50:b7:81:0e:54:8d:3f:50:c3:df:5b:70:b6:5a:ed:d5:69:
15:50:92:2e:dd:cb:08:35:20:84:5f:79:bb:dd:98:3e:5d:74:
03:ef:b0:ae:01:7b:de:76:1a:58:5d:42:4d:eb:47:60:4d:63:
38:fa:a1:92:dc:a5:b6:1b:b0:3d:9b:8b:98:15:0f:0b:6b:0c:
12:20:77:e8:d4:70:85:09:cf:c5:ba:35:b9:76:e7:00:17:8a:
bc:25:76:2b:ea:29:9f:51:10:23:e4:33:c9:95:20:37:c7:68:
e5:a8:2d:d9:21:7b:42:75:20:39:4c:26:51:f3:83:2b:62:eb:
e5:06:32:a5:06:74:56:59:3a:6b:0a:d7:48:ce:37:e1:83:88:
3a:9a:d8:f2:a3:74:ba:e6:5e:4d:c9:42:d1:0b:7b:5a:2d:a1:
3b:fc:6b:ac:51:ac:84:23:7a:60:6d:1c:b6:db:62:c8:80:8d:
92:7b:63:01:e5:14:ce:71:18:42:5a:f5:fa:1d:78:81:a9:2d:
26:aa:95:d0:2e:6e:ed:86:c8:fa:fc:22:91:e5:f5:c9:3c:06:
70:72:83:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:51 2024 by rpki-client on console-fra.rpki-client.org