Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/bbb30b-2688-4a6e-b2a2-1399a282227a/1/qSgEhMfbrB3vqGuBaZIPtPljXx4.roa
File: qSgEhMfbrB3vqGuBaZIPtPljXx4.roa (raw, json)
Hash identifier: o4nw17QEi2aD+WhopTwXFCI7wWnzarjUD51bdhmPiR8=
Subject key identifier: A9:28:04:84:C7:DB:AC:1D:EF:A8:6B:81:69:92:0F:B4:F9:63:5F:1E
Certificate issuer: /CN=9a5550e908a9b9688c29aac9895353dea836c45a
Certificate serial: 01856F5DD4479C304DC20C4C846EEF255993
Authority key identifier: 9A:55:50:E9:08:A9:B9:68:8C:29:AA:C9:89:53:53:DE:A8:36:C4:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mlVQ6QipuWiMKarJiVNT3qg2xFo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/bbb30b-2688-4a6e-b2a2-1399a282227a/1/qSgEhMfbrB3vqGuBaZIPtPljXx4.roa
Signing time: Sun 01 Jan 2023 22:04:58 +0000
ROA not before: Sun 01 Jan 2023 22:04:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 185.11.126.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:5d:d4:47:9c:30:4d:c2:0c:4c:84:6e:ef:25:59:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a5550e908a9b9688c29aac9895353dea836c45a
Validity
Not Before: Jan 1 22:04:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a9280484c7dbac1defa86b8169920fb4f9635f1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:7d:8f:2c:16:50:33:50:ff:d7:e0:a1:04:1d:
91:3c:42:49:b1:22:00:40:e6:e5:d1:7f:40:45:8e:
2f:08:10:90:0a:c0:9d:82:cd:04:18:a5:b5:6c:e7:
ad:4a:06:c8:0d:47:d6:4f:a7:66:53:91:56:56:2d:
d6:73:b1:81:76:74:9e:09:3c:c3:5d:09:38:97:ec:
66:6c:cf:af:00:19:af:6a:fd:76:17:d7:79:6a:10:
90:1b:e5:22:89:ca:d6:23:0f:ca:5d:87:49:ae:9c:
5a:cd:74:10:ea:c0:75:28:01:93:52:82:43:d5:34:
10:90:57:50:14:65:c4:f6:0c:23:55:e9:25:32:b6:
ca:64:5b:24:c7:29:3b:e8:c2:3b:00:58:0e:3c:66:
6c:d8:4b:1f:5a:22:41:f8:8c:ac:9e:dd:68:00:f8:
b5:06:bc:ae:f3:db:de:1c:0d:c9:32:cd:92:4f:b2:
27:fb:9c:ce:a5:a3:53:0f:4f:c6:ee:cb:57:e0:a9:
4b:20:9d:d4:ef:8b:78:39:51:be:93:10:bb:83:45:
60:f6:7e:09:e6:c2:56:ae:84:e5:da:79:14:30:4f:
86:8a:60:18:6a:a8:4d:f5:7d:d8:db:74:30:7f:b7:
ae:3c:ef:98:7c:a2:e8:84:3c:32:e3:e5:1a:59:d6:
84:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:28:04:84:C7:DB:AC:1D:EF:A8:6B:81:69:92:0F:B4:F9:63:5F:1E
X509v3 Authority Key Identifier:
keyid:9A:55:50:E9:08:A9:B9:68:8C:29:AA:C9:89:53:53:DE:A8:36:C4:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mlVQ6QipuWiMKarJiVNT3qg2xFo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/bbb30b-2688-4a6e-b2a2-1399a282227a/1/qSgEhMfbrB3vqGuBaZIPtPljXx4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/bbb30b-2688-4a6e-b2a2-1399a282227a/1/mlVQ6QipuWiMKarJiVNT3qg2xFo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.11.126.0/24
Signature Algorithm: sha256WithRSAEncryption
33:2e:2e:fe:f5:74:0c:bb:39:cc:1e:59:14:ee:34:48:17:7e:
42:0e:22:3b:ed:e8:4b:97:dc:d2:d1:76:a3:ea:af:de:25:bd:
ce:29:f7:bc:d4:c1:65:01:ee:a5:0a:dd:20:0f:81:58:46:5f:
fb:54:8c:16:1c:6c:91:8a:9b:84:c3:59:03:0f:a0:7c:4f:24:
d7:2e:8d:c4:cd:bb:d1:a5:3f:ea:91:81:a4:dd:58:c0:5e:75:
a3:6b:03:85:a3:72:ab:1a:61:c6:40:09:10:d6:86:a5:06:bf:
ce:13:8f:66:71:b7:88:f4:9c:d9:54:1a:a0:cb:cc:b7:38:6c:
df:70:18:e2:f3:8b:31:fb:61:99:de:af:1b:a7:2c:9d:53:3f:
3e:25:cd:b7:ec:48:70:e8:91:44:8f:41:c2:02:b0:52:42:92:
51:9c:d1:e3:2f:91:f0:83:99:c9:ca:33:02:79:84:59:b6:60:
dd:5f:ff:31:34:4a:e6:56:06:f6:98:0a:cd:b2:60:e4:85:57:
88:23:37:ef:f7:97:b6:74:06:ac:be:ec:5d:d9:25:3c:50:58:
25:e0:a6:d7:54:cb:59:ae:ce:cc:da:75:04:68:a9:5a:4d:28:
46:2b:3a:ce:d8:78:9d:98:7e:b2:9d:d0:4e:ba:e5:e6:d1:09:
60:29:b0:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:11 2024 by rpki-client on console-ams.rpki-client.org