Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/Q53BWGXcQLQOIoeHbRwkfpGqeps.roa
File: Q53BWGXcQLQOIoeHbRwkfpGqeps.roa (raw, json)
Hash identifier: TGlyQqtLIr09dDbeBuX8G9le8AXDvVS2Xd2/wIvrIac=
Subject key identifier: 43:9D:C1:58:65:DC:40:B4:0E:22:87:87:6D:1C:24:7E:91:AA:7A:9B
Certificate issuer: /CN=d5637692ff5c45486d1053b149dc1420026cd733
Certificate serial: 01920B9BBD18A165C35D0EE5B2665A6A4237
Authority key identifier: D5:63:76:92:FF:5C:45:48:6D:10:53:B1:49:DC:14:20:02:6C:D7:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1WN2kv9cRUhtEFOxSdwUIAJs1zM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/Q53BWGXcQLQOIoeHbRwkfpGqeps.roa
Signing time: Thu 19 Sep 2024 18:46:48 +0000
ROA not before: Thu 19 Sep 2024 18:46:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215287
IP address blocks: 80.246.229.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 20 Oct 2024 17:06:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:0b:9b:bd:18:a1:65:c3:5d:0e:e5:b2:66:5a:6a:42:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5637692ff5c45486d1053b149dc1420026cd733
Validity
Not Before: Sep 19 18:46:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=439dc15865dc40b40e2287876d1c247e91aa7a9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:d7:d3:83:87:da:e7:47:3a:c7:b8:eb:a2:8e:
d9:e5:62:47:16:bc:e1:37:e9:8c:23:82:7a:c5:36:
52:ab:f6:8c:6e:92:90:8b:6e:e5:7d:b1:56:c5:78:
59:e5:18:89:89:91:fd:21:9b:93:23:a8:a2:4f:3f:
63:dd:3d:9d:84:b2:07:85:3d:ae:d5:ac:4c:a3:67:
b4:3b:27:9d:7f:65:31:05:cd:92:22:ac:ba:c0:d7:
20:dd:99:3d:c2:6c:95:a4:7b:91:66:24:51:ce:26:
b1:6c:6e:e4:7b:71:42:e0:a3:20:5a:f7:7c:31:66:
44:08:e1:98:ed:36:54:b8:83:8e:fe:a9:50:9a:67:
84:1a:ad:54:6b:72:b2:ca:a1:03:d2:1b:68:c8:66:
55:08:be:00:4a:6e:5e:f2:2e:b0:1b:3a:f3:53:07:
eb:80:45:24:2f:c5:c9:7e:54:1c:8f:a7:6f:ab:a1:
1e:59:88:1e:3d:3b:40:5c:ce:1f:07:5f:55:58:33:
0a:74:9d:69:ac:5a:64:fa:23:56:17:20:dd:cd:70:
93:25:e5:46:14:37:7c:b6:7f:3a:be:35:59:b2:49:
64:7b:63:c2:87:64:2f:b9:ec:6d:fb:4d:28:91:8a:
c8:14:b6:41:d2:94:4f:a5:ca:f1:d1:6a:f7:d2:f1:
7b:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:9D:C1:58:65:DC:40:B4:0E:22:87:87:6D:1C:24:7E:91:AA:7A:9B
X509v3 Authority Key Identifier:
keyid:D5:63:76:92:FF:5C:45:48:6D:10:53:B1:49:DC:14:20:02:6C:D7:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1WN2kv9cRUhtEFOxSdwUIAJs1zM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/Q53BWGXcQLQOIoeHbRwkfpGqeps.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/1WN2kv9cRUhtEFOxSdwUIAJs1zM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.246.229.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:b0:53:7e:64:27:91:41:d0:fb:97:f8:aa:a7:3f:5e:8d:af:
b6:1d:e4:49:98:2b:a8:20:24:54:23:e0:cf:8f:68:c4:26:d3:
8f:2b:ec:93:b6:25:14:f8:f3:88:cd:86:0f:9c:bc:40:69:71:
55:71:cd:a9:e5:22:85:09:79:43:79:d5:e5:4b:4d:8c:b9:ad:
ed:f6:8a:45:36:db:6f:2e:6d:53:30:c2:ee:c9:d5:16:a8:30:
58:90:ac:be:38:25:72:37:d1:fa:99:fc:eb:96:53:ba:53:3d:
8f:10:cb:c9:2d:89:e2:14:1b:02:39:1d:75:fe:ac:17:dc:c0:
9c:e3:52:9b:80:88:c0:ff:54:6f:ca:31:df:c8:33:e3:78:f0:
0d:d0:d4:fe:ca:6b:b6:8f:72:98:8a:f4:a3:7c:6d:82:4d:d5:
c7:ca:f1:42:99:32:3d:48:3c:50:f7:7c:6e:59:99:7b:46:57:
9a:57:e2:6a:96:e3:36:af:6e:1d:20:66:d3:89:da:ee:13:b9:
7a:a5:45:15:c3:0f:72:1f:58:48:17:15:a7:9f:16:df:ed:d9:
30:86:39:b4:a6:f7:9d:86:df:0b:92:cb:97:28:9f:78:a9:08:
dc:26:48:aa:ac:20:e3:a3:a3:21:c9:59:76:04:0b:0a:0f:5a:
18:ea:b2:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 20 18:56:41 2024 by rpki-client on console-fra.rpki-client.org