Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/8a2518-39a0-4a98-9562-787b9b584c2d/1/QUZEY0w87BLQWBQTNMV8c6T0510.roa
File: QUZEY0w87BLQWBQTNMV8c6T0510.roa (raw, json)
Hash identifier: LMC6xaUALVDmrp9EaaZxB1LH/KwDr+wJtwOwzqCcN84=
Subject key identifier: 41:46:44:63:4C:3C:EC:12:D0:58:14:13:34:C5:7C:73:A4:F4:E7:5D
Certificate issuer: /CN=73c2f49445980199475512f5297608f45d08bb5a
Certificate serial: 01856D7898DEC6681F60706E817A1B817DFF
Authority key identifier: 73:C2:F4:94:45:98:01:99:47:55:12:F5:29:76:08:F4:5D:08:BB:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c8L0lEWYAZlHVRL1KXYI9F0Iu1o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/8a2518-39a0-4a98-9562-787b9b584c2d/1/QUZEY0w87BLQWBQTNMV8c6T0510.roa
Signing time: Sun 01 Jan 2023 13:14:58 +0000
ROA not before: Sun 01 Jan 2023 13:14:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12993
IP address blocks: 195.216.236.0/24 maxlen: 24
194.152.32.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:78:98:de:c6:68:1f:60:70:6e:81:7a:1b:81:7d:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73c2f49445980199475512f5297608f45d08bb5a
Validity
Not Before: Jan 1 13:14:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=414644634c3cec12d058141334c57c73a4f4e75d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:78:bc:74:fd:ef:63:57:64:0d:e6:a2:9d:de:
af:f5:19:29:cc:4f:36:98:db:64:17:2d:7f:fd:19:
65:63:86:63:47:d6:bb:2e:fc:11:be:65:53:b4:a9:
3b:82:65:3d:72:95:29:72:ba:a8:3f:a8:f0:e5:72:
ea:a0:d9:51:58:b9:cc:18:f3:d9:b1:39:2b:9c:32:
2b:3f:b5:30:63:e5:3d:25:f4:7a:e7:68:56:c6:8d:
fb:a9:9e:fe:47:e7:48:21:ac:14:fc:5d:c9:3c:50:
fb:0d:8c:0e:cc:0d:e9:d0:35:7b:d9:f5:1f:5e:b0:
bd:54:37:18:a3:4b:06:ec:0d:21:20:55:c4:6d:e9:
af:bf:73:dd:89:6d:ee:6f:ea:9d:8f:99:22:ce:50:
d7:20:4f:ef:ff:83:96:80:a2:3e:61:38:52:0e:4f:
b7:d4:4e:97:99:cc:ac:97:a9:a7:be:7b:46:40:5f:
17:17:d8:78:20:6b:d9:53:c2:a1:60:c4:71:46:01:
de:91:59:a2:a3:96:09:05:ab:36:b6:64:85:de:33:
33:d4:97:72:fc:2e:c2:a8:ac:f5:0c:15:1f:33:47:
db:67:11:2a:8b:90:66:e4:2e:92:2e:e3:89:53:79:
ea:a1:0d:2b:38:af:4b:3c:5b:f4:8a:1a:b9:b7:1f:
17:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:46:44:63:4C:3C:EC:12:D0:58:14:13:34:C5:7C:73:A4:F4:E7:5D
X509v3 Authority Key Identifier:
keyid:73:C2:F4:94:45:98:01:99:47:55:12:F5:29:76:08:F4:5D:08:BB:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8L0lEWYAZlHVRL1KXYI9F0Iu1o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/8a2518-39a0-4a98-9562-787b9b584c2d/1/QUZEY0w87BLQWBQTNMV8c6T0510.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/8a2518-39a0-4a98-9562-787b9b584c2d/1/c8L0lEWYAZlHVRL1KXYI9F0Iu1o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.152.32.0/23
195.216.236.0/24
Signature Algorithm: sha256WithRSAEncryption
16:ef:6f:60:45:5b:28:c0:97:cd:cd:57:89:1b:51:7b:24:f3:
2f:6f:3d:96:c0:4a:75:32:57:1f:2f:af:ee:56:c4:5d:a8:0d:
a7:76:51:c6:4e:53:70:f1:3e:a8:31:68:56:d3:73:46:3b:f4:
5a:9c:82:52:d0:f3:53:94:5f:10:1b:a9:a9:71:1f:14:fd:13:
08:03:45:a2:5c:38:c4:f3:88:27:1e:9e:ba:18:e6:5a:92:d2:
56:0d:af:42:73:6b:91:1d:c2:7c:8c:87:70:48:f5:09:77:ec:
07:88:7b:39:93:78:3c:7d:47:e7:23:ff:1c:ce:40:6e:92:bd:
ea:48:89:63:00:08:89:42:b2:f3:a3:f4:5e:5a:74:c8:70:60:
2b:68:2c:ae:2a:36:ee:02:1a:71:f2:8c:5b:2f:6c:d6:7e:08:
41:85:ca:00:2b:1f:f4:8b:3b:e8:c0:40:8c:d8:94:ce:4b:68:
93:07:19:8b:b9:43:9b:cb:4f:1a:8f:76:e1:25:dd:fe:ca:cd:
f4:f8:d4:39:6a:86:be:6d:b5:a0:76:94:df:a9:38:cb:ad:c2:
9a:4c:6e:1a:90:27:1f:cb:29:70:f4:5d:3e:43:84:2b:4d:9b:
59:29:14:ed:86:26:f6:17:9c:1a:36:37:03:10:de:75:f0:ce:
90:d5:f5:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:09 2024 by rpki-client on console-fra.rpki-client.org