Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/q_GZ1cbbr7SUAYgB_5_uL_u-OhQ.roa
File: q_GZ1cbbr7SUAYgB_5_uL_u-OhQ.roa (raw, json)
Hash identifier: M53bAnQk6Elhls1laMSynFf5z0uYDhrkZ7mju5jw7Dw=
Subject key identifier: AB:F1:99:D5:C6:DB:AF:B4:94:01:88:01:FF:9F:EE:2F:FB:BE:3A:14
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018C8BE2B039DB25683549CFC7A9D9C6DCE5
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/q_GZ1cbbr7SUAYgB_5_uL_u-OhQ.roa
Signing time: Thu 21 Dec 2023 10:18:58 +0000
ROA not before: Thu 21 Dec 2023 10:18:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207915
IP address blocks: 194.76.172.0/23 maxlen: 23
194.76.168.0/23 maxlen: 23
Validation: Failed, certificate revoked on Wed 27 Dec 2023 10:20:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:8b:e2:b0:39:db:25:68:35:49:cf:c7:a9:d9:c6:dc:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Dec 21 10:18:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=abf199d5c6dbafb494018801ff9fee2ffbbe3a14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:d8:4a:81:1c:0f:a5:11:49:09:6b:60:ff:89:
d7:e1:7e:df:88:a6:b0:d8:44:63:2d:6e:94:f7:ed:
be:4e:45:ad:55:c2:2e:b0:1a:2b:16:47:1f:db:bd:
07:3a:7d:ea:d8:76:24:89:c1:57:ac:f4:3a:a1:c6:
e4:9a:c9:5f:b1:a1:1f:c7:73:6f:96:b8:5e:e0:9c:
e4:c9:f0:8b:7d:f8:f6:a7:11:cc:2e:06:04:41:b9:
78:d9:4d:66:f4:7d:43:0b:ee:ec:a3:e3:bb:1a:e8:
da:bb:d6:26:9b:bc:c2:25:82:d7:e9:6a:2c:7a:1c:
47:ed:fe:fc:54:e7:29:c5:b7:61:4e:49:ec:75:e4:
b0:ff:e8:4b:c0:4d:6a:bd:48:fd:5e:f2:78:a2:42:
16:e8:84:73:2f:e4:5b:cf:9f:6d:2e:5e:07:d8:d1:
0e:44:cb:b4:65:80:d5:df:d5:e3:da:36:7d:09:77:
c6:fd:0e:e5:99:4d:c6:cb:fd:83:e5:3c:75:ec:e2:
01:e0:ea:53:d2:48:31:27:a8:a7:46:e8:ad:4c:5a:
d2:83:d4:77:53:13:48:14:e7:d6:06:d3:d9:3e:36:
dc:c0:65:df:c4:90:19:1d:83:5a:97:78:27:7a:06:
26:49:48:e2:38:8f:73:b1:3a:87:c6:c9:37:32:cc:
f4:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:F1:99:D5:C6:DB:AF:B4:94:01:88:01:FF:9F:EE:2F:FB:BE:3A:14
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/q_GZ1cbbr7SUAYgB_5_uL_u-OhQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.76.168.0/23
194.76.172.0/23
Signature Algorithm: sha256WithRSAEncryption
4f:d4:f2:59:66:3f:25:ac:0c:d1:fd:b3:d2:c7:c4:02:48:73:
66:07:f1:41:ba:9b:26:02:65:39:a2:e4:72:65:8a:ad:75:43:
e5:a9:4f:7c:7f:56:f4:f1:81:3f:c2:46:c1:c2:15:ab:24:dd:
44:66:45:cf:8e:27:ea:30:89:e1:6e:44:d0:ae:12:fa:fb:6d:
e5:9e:f9:a6:2b:52:83:5b:2c:ce:22:cb:8e:b8:b4:d3:de:e6:
2d:4b:bd:dd:a8:d9:b6:4f:09:0b:2e:6e:2d:82:e0:1a:16:00:
fa:2c:60:18:b1:7f:33:e2:86:d2:49:25:d2:7d:44:d7:d0:fc:
07:40:05:be:b8:f4:73:e7:49:1c:b7:48:98:c8:4e:85:7a:0a:
fe:6e:dc:e3:34:7c:b8:9d:6a:0b:b5:bd:29:4b:6c:bb:c7:ac:
e5:34:97:d7:46:b8:64:b1:5c:69:71:b3:90:d0:e4:71:4c:56:
1e:50:7c:c9:96:27:8d:7a:fd:15:24:f2:0e:2a:ca:40:52:c7:
ab:47:20:c9:38:97:16:2c:4b:9f:a5:3c:84:8b:36:34:7e:ea:
a8:66:00:e4:10:c6:17:19:98:0a:8c:cf:85:f8:19:b1:9c:db:
91:c3:90:3c:a8:f5:f9:6c:da:7a:b8:94:f9:c1:99:d2:94:91:
9e:5d:8b:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:43 2024 by rpki-client on console-fra.rpki-client.org