Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/d51f64-5d06-4fc0-ab69-2cd98ee53569/1/6qIQS0DkyiAPmQGS9XRIqfXi7Q0.roa
File: 6qIQS0DkyiAPmQGS9XRIqfXi7Q0.roa (raw, json)
Hash identifier: Pq+Seb36JC1lRA77McFH8xxSxemoMb61l2QBT8e5JrA=
Subject key identifier: EA:A2:10:4B:40:E4:CA:20:0F:99:01:92:F5:74:48:A9:F5:E2:ED:0D
Certificate issuer: /CN=8d84404e5f8a4b117ae44e73d53c44ecdd578342
Certificate serial: 01856F42AA4F09CC68F8C939462C81C354AB
Authority key identifier: 8D:84:40:4E:5F:8A:4B:11:7A:E4:4E:73:D5:3C:44:EC:DD:57:83:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jYRATl-KSxF65E5z1TxE7N1Xg0I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/d51f64-5d06-4fc0-ab69-2cd98ee53569/1/6qIQS0DkyiAPmQGS9XRIqfXi7Q0.roa
Signing time: Sun 01 Jan 2023 21:35:18 +0000
ROA not before: Sun 01 Jan 2023 21:35:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44534
IP address blocks: 90.156.176.0/20 maxlen: 24
Validation: Failed, certificate revoked on Tue 26 Sep 2023 12:39:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:42:aa:4f:09:cc:68:f8:c9:39:46:2c:81:c3:54:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d84404e5f8a4b117ae44e73d53c44ecdd578342
Validity
Not Before: Jan 1 21:35:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=eaa2104b40e4ca200f990192f57448a9f5e2ed0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:6f:42:00:da:27:25:1b:22:f7:41:f5:2f:6e:
65:ba:ac:c9:75:71:ca:e3:2a:a9:25:0b:65:8e:5c:
c3:60:a4:57:c9:dd:88:fe:90:52:b2:51:7c:f1:3b:
c3:42:a6:92:39:d0:a2:1f:10:be:62:64:b5:41:87:
5e:a3:7c:04:33:90:47:fd:08:c2:e5:e4:94:c8:cc:
4e:76:01:48:f4:c8:14:5e:41:c4:24:a4:56:92:0a:
18:73:64:a7:eb:c1:4b:0c:3d:c5:d0:94:a4:39:f5:
65:c7:e9:20:00:e0:71:dd:07:18:81:a4:13:3c:b9:
15:23:c1:83:24:9f:ae:62:20:49:f2:01:bd:4c:61:
cf:f5:03:77:d3:ad:1a:e2:b5:10:b9:c7:5b:df:91:
07:e0:58:3a:d9:45:e1:40:31:fb:cf:20:99:7c:15:
51:01:46:fd:70:94:33:1c:95:14:2a:20:fe:51:75:
a8:4d:2b:3e:f2:70:53:3c:0d:a2:1a:00:a8:ea:a0:
a0:75:1e:4c:99:bd:5c:3b:a5:60:98:57:ff:4c:66:
21:75:d9:d0:aa:d8:a0:ff:d9:2d:90:23:e5:ff:82:
69:f0:00:70:73:d3:6d:b6:84:51:c3:4e:24:16:f5:
1b:75:d4:fc:08:33:e1:9c:40:9c:b0:80:c7:82:71:
6f:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:A2:10:4B:40:E4:CA:20:0F:99:01:92:F5:74:48:A9:F5:E2:ED:0D
X509v3 Authority Key Identifier:
keyid:8D:84:40:4E:5F:8A:4B:11:7A:E4:4E:73:D5:3C:44:EC:DD:57:83:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jYRATl-KSxF65E5z1TxE7N1Xg0I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/d51f64-5d06-4fc0-ab69-2cd98ee53569/1/6qIQS0DkyiAPmQGS9XRIqfXi7Q0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/d51f64-5d06-4fc0-ab69-2cd98ee53569/1/jYRATl-KSxF65E5z1TxE7N1Xg0I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
90.156.176.0/20
Signature Algorithm: sha256WithRSAEncryption
c0:3d:32:c5:56:58:ac:b3:34:5e:05:24:7f:18:19:d9:8c:bc:
a1:9a:f6:14:57:9a:9d:3a:ba:b5:f4:b3:d6:85:11:04:c4:4d:
6b:2d:fd:47:b9:3c:cf:a5:b1:9e:c3:aa:5b:f3:93:df:8e:3e:
b6:d5:08:a1:c2:31:60:2b:72:0e:83:f7:b9:60:6f:0c:dd:ae:
7a:95:3f:2e:25:b1:c0:a3:b6:33:35:f1:fa:b5:58:e2:91:bb:
e8:93:c2:33:b9:69:57:8c:fe:fc:18:90:90:b5:99:58:bb:a0:
0f:f2:82:77:17:98:27:73:bc:73:e4:1a:b4:f3:4e:87:84:a9:
5a:b4:b2:76:af:ee:84:4c:7d:b1:af:3d:df:2b:fc:2a:8c:eb:
d6:96:52:e4:c5:11:36:29:0b:ca:5a:53:d8:a5:52:64:aa:14:
de:5b:c4:ff:4f:ae:1d:eb:a7:dd:d5:73:46:07:77:f6:94:d4:
17:0d:5f:b6:69:c2:d2:13:64:00:92:ef:07:d3:41:26:7b:9a:
e6:55:21:66:22:0a:cb:69:df:0e:b1:36:a3:49:98:db:7c:c1:
c4:b8:16:d1:b6:37:2a:0c:71:38:b7:64:9a:df:a3:55:54:4b:
ed:4e:cc:cb:84:cc:d5:33:23:f4:31:51:d0:af:58:bd:0b:42:
f2:9a:ce:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:58 2024 by rpki-client on console-fra.rpki-client.org