Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/7e224d-f154-4f75-a2a8-eb7ec4d7dca8/1/qWYlB4k_lEnmW3iNa2q0aGq8QwE.roa
File: qWYlB4k_lEnmW3iNa2q0aGq8QwE.roa (raw, json)
Hash identifier: LKGssAD+cnzYLWPnBlYpztGo7XihJY3oMCDmSsyooK4=
Subject key identifier: A9:66:25:07:89:3F:94:49:E6:5B:78:8D:6B:6A:B4:68:6A:BC:43:01
Certificate issuer: /CN=adfd90cb35742f9e581e8cbdf0e3e123a849c830
Certificate serial: 01856F0B3DA3AB2A9FD83AC4798520D01D33
Authority key identifier: AD:FD:90:CB:35:74:2F:9E:58:1E:8C:BD:F0:E3:E1:23:A8:49:C8:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rf2QyzV0L55YHoy98OPhI6hJyDA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/7e224d-f154-4f75-a2a8-eb7ec4d7dca8/1/qWYlB4k_lEnmW3iNa2q0aGq8QwE.roa
Signing time: Sun 01 Jan 2023 20:34:45 +0000
ROA not before: Sun 01 Jan 2023 20:34:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15830
IP address blocks: 193.26.9.0/24 maxlen: 24
2001:678:d24::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:0b:3d:a3:ab:2a:9f:d8:3a:c4:79:85:20:d0:1d:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=adfd90cb35742f9e581e8cbdf0e3e123a849c830
Validity
Not Before: Jan 1 20:34:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a9662507893f9449e65b788d6b6ab4686abc4301
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:a8:4b:e0:c7:c7:4d:cc:73:39:aa:ef:8a:11:
b7:f1:8c:b7:50:1d:0a:df:2a:11:5a:90:93:0d:12:
77:2a:ab:2d:9c:43:25:40:fd:86:1c:c2:d3:92:75:
4b:10:b8:d5:d0:34:41:b7:35:f8:42:69:38:14:b8:
db:58:81:ea:85:f4:b6:2b:6c:bd:25:7d:b4:4a:08:
19:5a:30:69:97:a9:9e:be:c2:ef:0b:da:fb:9e:1d:
18:16:cb:6a:b5:e8:3a:db:3b:41:53:c8:be:69:05:
ab:8e:55:cd:f6:e0:d6:be:da:08:4b:e4:d1:1f:da:
cf:05:2d:13:b7:24:43:0a:02:0a:4a:21:ea:77:b8:
ad:7c:10:e2:01:82:ca:6e:65:25:6c:8b:0f:e1:36:
6d:eb:c5:18:0c:f4:f0:26:0f:a6:3a:da:12:19:06:
8e:a7:70:0a:67:22:3c:b1:d1:df:fc:02:cf:8c:53:
6a:92:72:66:a1:8c:df:e7:2e:ad:48:19:b4:ab:75:
88:f1:49:c0:c7:1f:b7:54:42:b6:42:ed:79:05:75:
a1:3f:29:6e:e1:bc:10:35:fb:f2:13:0c:30:85:a1:
a6:ba:cc:70:ba:12:90:dd:3a:fc:e6:3f:c4:e2:c8:
58:d0:d1:52:81:90:a1:39:5c:61:29:20:f6:2e:aa:
54:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:66:25:07:89:3F:94:49:E6:5B:78:8D:6B:6A:B4:68:6A:BC:43:01
X509v3 Authority Key Identifier:
keyid:AD:FD:90:CB:35:74:2F:9E:58:1E:8C:BD:F0:E3:E1:23:A8:49:C8:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rf2QyzV0L55YHoy98OPhI6hJyDA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/7e224d-f154-4f75-a2a8-eb7ec4d7dca8/1/qWYlB4k_lEnmW3iNa2q0aGq8QwE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/7e224d-f154-4f75-a2a8-eb7ec4d7dca8/1/rf2QyzV0L55YHoy98OPhI6hJyDA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.26.9.0/24
IPv6:
2001:678:d24::/48
Signature Algorithm: sha256WithRSAEncryption
22:d7:73:a4:fa:e4:b3:de:81:76:53:d0:47:26:74:06:8e:23:
27:7c:ea:81:14:b9:f3:77:05:2e:06:7b:61:7b:2f:29:93:4c:
ec:bd:7f:43:0f:76:fd:d6:21:85:65:c9:86:c2:b5:01:26:d6:
55:3f:11:a9:f6:5d:08:7a:5c:1b:83:83:11:57:09:26:0e:1d:
a9:63:c4:dd:d6:cf:b9:90:41:10:eb:2e:92:6a:ec:0e:0b:fc:
ed:98:62:ca:ce:d6:66:30:45:41:9b:cf:7b:89:e7:6d:36:a6:
b9:b0:19:30:e1:ce:0b:e2:3e:05:48:ad:fd:86:4d:57:09:3e:
1e:bf:68:f4:9e:c1:a7:e2:6a:bb:25:41:34:84:7e:2f:20:83:
f4:86:33:d5:9c:8f:f8:e3:97:4c:66:86:a0:17:7f:89:01:dd:
59:d2:2b:cb:cc:1c:73:40:2b:79:e7:ed:34:66:56:e1:1e:bd:
c5:0f:60:52:58:92:7c:6c:d3:a5:00:31:00:e9:d5:67:63:30:
ab:63:e5:26:8c:a0:5e:e1:2b:36:93:24:bf:c1:6d:2f:26:21:
55:ab:6f:06:78:ce:08:87:54:7d:8b:de:d6:ae:75:11:ab:8d:
30:ab:c8:c5:5b:bc:42:44:ec:1c:4e:3d:62:a3:6e:ab:0b:8e:
28:b5:6f:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:02 2024 by rpki-client on console-fra.rpki-client.org