Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/ef6c8e-3f07-4b3f-a87e-bbe912eec73e/1/qF21mECTOWVkETGf6oKXHxddq0E.roa
File: qF21mECTOWVkETGf6oKXHxddq0E.roa (raw, json)
Hash identifier: CiRsn2DxxeNuT1RYU6yIQSJYYaf5CR50sW/w+vLLoiI=
Subject key identifier: A8:5D:B5:98:40:93:39:65:64:11:31:9F:EA:82:97:1F:17:5D:AB:41
Certificate issuer: /CN=40254d4a767ad099606e442e092f91241a363670
Certificate serial: 018617300D0DDD2E62E9F9DA6B16996E78A1
Authority key identifier: 40:25:4D:4A:76:7A:D0:99:60:6E:44:2E:09:2F:91:24:1A:36:36:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QCVNSnZ60JlgbkQuCS-RJBo2NnA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/ef6c8e-3f07-4b3f-a87e-bbe912eec73e/1/qF21mECTOWVkETGf6oKXHxddq0E.roa
Signing time: Fri 03 Feb 2023 12:11:10 +0000
ROA not before: Fri 03 Feb 2023 12:11:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207864
IP address blocks: 193.22.168.0/24 maxlen: 24
193.22.170.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:17:30:0d:0d:dd:2e:62:e9:f9:da:6b:16:99:6e:78:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40254d4a767ad099606e442e092f91241a363670
Validity
Not Before: Feb 3 12:11:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a85db598409339656411319fea82971f175dab41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:d9:a5:bb:0f:96:ca:bd:16:13:93:53:e7:3a:
2e:a8:9e:b9:b0:39:02:54:d0:c4:74:24:7c:40:48:
03:be:31:4d:4d:12:c4:7c:28:e6:82:3b:c8:56:b7:
b6:1f:0f:b6:4d:68:0a:d9:66:57:4e:1c:a7:52:eb:
16:42:09:6f:4b:d9:8b:f2:f0:e9:64:c6:b5:79:2b:
ad:8f:60:ab:0a:d9:a0:0e:2d:82:a5:8e:14:6c:8b:
1a:63:71:f4:40:cf:7c:42:83:e4:48:48:59:32:cf:
6b:b0:f5:7c:fb:d1:ba:28:04:3e:f2:a8:e1:cc:1b:
18:65:89:8c:13:85:43:1a:ac:67:a2:33:de:f9:96:
70:b7:75:5b:ac:f2:a9:28:2d:c2:ad:3a:07:c0:93:
16:8f:50:16:58:42:83:11:56:a3:c7:21:c3:f5:e0:
35:30:2a:22:89:d6:e1:9b:7e:75:20:b9:4b:ab:3a:
89:d6:0a:32:5b:64:19:08:c6:36:97:1c:a9:a5:27:
29:ea:04:13:41:f8:59:bc:dd:2a:44:04:9a:5e:af:
9b:b8:b1:a8:69:d1:99:8d:96:ef:fb:4b:65:fb:8d:
60:e1:ed:af:df:31:27:04:db:76:7f:6c:de:92:5a:
b7:a7:51:08:d3:a7:7a:b3:11:f2:cf:cc:f3:8f:2a:
16:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:5D:B5:98:40:93:39:65:64:11:31:9F:EA:82:97:1F:17:5D:AB:41
X509v3 Authority Key Identifier:
keyid:40:25:4D:4A:76:7A:D0:99:60:6E:44:2E:09:2F:91:24:1A:36:36:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QCVNSnZ60JlgbkQuCS-RJBo2NnA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/ef6c8e-3f07-4b3f-a87e-bbe912eec73e/1/qF21mECTOWVkETGf6oKXHxddq0E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/ef6c8e-3f07-4b3f-a87e-bbe912eec73e/1/QCVNSnZ60JlgbkQuCS-RJBo2NnA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.22.168.0/24
193.22.170.0/24
Signature Algorithm: sha256WithRSAEncryption
17:f0:1c:89:e1:27:3e:dc:a5:4e:96:f9:f2:94:75:87:7a:26:
3c:5d:49:d9:de:7c:33:f9:a1:38:f8:9f:0b:98:f0:3c:2c:ff:
da:ed:35:82:ab:b5:61:7c:07:e3:cb:54:4e:72:43:b7:f2:4e:
31:57:84:47:1c:15:1e:05:e5:25:f5:22:fe:a0:a2:83:c4:f3:
c8:13:0d:5f:86:a0:ce:24:28:c1:af:a7:64:6c:a9:59:6a:f4:
b2:90:d0:df:f7:a5:a1:cd:df:b7:d1:3e:6e:6d:f6:fc:3c:2a:
9f:31:f1:01:30:1a:63:f1:1a:11:7a:66:fc:34:99:8f:7a:e8:
fa:2a:ef:7a:2d:f4:68:f3:a8:d6:3f:bf:76:08:06:ec:b3:bd:
44:9e:77:ef:a5:92:61:22:de:8c:df:fe:2f:8a:a2:3b:10:0f:
ac:ac:da:fc:72:f1:02:aa:1e:01:44:55:c2:83:f0:f9:6e:18:
2b:d8:30:7f:da:61:07:bb:bf:cd:02:c4:bc:72:ea:d8:dd:7e:
09:e7:85:a7:c8:c0:c2:0f:53:16:58:69:58:26:b4:1d:d2:95:
53:2b:f2:b3:4a:5b:d3:2c:ac:50:79:b2:7b:4a:1e:1e:b0:04:
6b:0c:11:15:ef:67:42:eb:16:61:00:75:0c:3c:24:ea:f4:18:
81:0f:b4:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 29 11:49:49 2023 by rpki-client on console-fra.rpki-client.org