Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/e5069b-1cad-45a4-a619-c24ff682f7ad/1/Q1PlEKZ40ZPXTVd1vL9lc4bLYPk.roa
File: Q1PlEKZ40ZPXTVd1vL9lc4bLYPk.roa (raw, json)
Hash identifier: JLmjDrO5tP03m6Xgg8NBPZMGmrlu3ISyvKz9QwZS0V4=
Subject key identifier: 43:53:E5:10:A6:78:D1:93:D7:4D:57:75:BC:BF:65:73:86:CB:60:F9
Certificate issuer: /CN=79a3b2c3622df9e87982ea8350978a6c9875a7c8
Certificate serial: 01856BC121E5FC7BFA569E3CB1FBE50C7DB5
Authority key identifier: 79:A3:B2:C3:62:2D:F9:E8:79:82:EA:83:50:97:8A:6C:98:75:A7:C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eaOyw2It-eh5guqDUJeKbJh1p8g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/e5069b-1cad-45a4-a619-c24ff682f7ad/1/Q1PlEKZ40ZPXTVd1vL9lc4bLYPk.roa
Signing time: Sun 01 Jan 2023 05:14:57 +0000
ROA not before: Sun 01 Jan 2023 05:14:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15577
IP address blocks: 194.187.208.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Jan 2024 14:35:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:c1:21:e5:fc:7b:fa:56:9e:3c:b1:fb:e5:0c:7d:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=79a3b2c3622df9e87982ea8350978a6c9875a7c8
Validity
Not Before: Jan 1 05:14:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4353e510a678d193d74d5775bcbf657386cb60f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:f7:d1:4d:65:40:cb:93:49:5f:d7:bf:a3:28:
db:87:df:c7:01:cb:d4:e9:76:6c:b1:9a:c5:70:4e:
2b:16:6e:1b:30:f6:4a:38:d7:94:3e:da:90:c1:0e:
b9:d5:00:0d:73:52:b8:8c:c6:96:20:31:78:6d:37:
53:1f:28:26:bf:57:f2:f3:92:53:c9:35:d6:c5:21:
0b:15:cc:7b:04:8e:6a:18:11:1b:e8:fe:3f:e0:8b:
38:52:16:23:5c:ce:c3:23:df:a8:18:13:d6:88:c0:
62:d3:57:ff:d4:60:53:e0:1b:9a:da:61:6a:5b:93:
ef:ec:a7:53:ec:88:6f:93:c5:71:ad:2d:e6:2a:82:
7c:f0:0a:f9:83:ee:33:c8:de:bf:db:b6:0c:3f:72:
32:80:30:3b:4b:18:8c:e2:1e:84:0a:92:50:3a:46:
c2:22:be:24:21:84:e2:51:68:57:f3:40:3c:6c:ca:
59:63:4d:93:7a:55:5d:25:5c:d4:82:f6:d6:d8:ec:
0f:fc:4f:d2:08:a3:a5:ba:14:0e:55:b3:5b:63:bf:
ad:d0:6a:4a:72:f0:46:59:98:a7:35:31:43:58:42:
01:85:a8:44:f9:8c:a4:ce:46:32:b1:8a:ec:a6:c6:
fe:51:f6:3e:0c:6b:c9:03:a5:6e:17:4a:42:e7:03:
17:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:53:E5:10:A6:78:D1:93:D7:4D:57:75:BC:BF:65:73:86:CB:60:F9
X509v3 Authority Key Identifier:
keyid:79:A3:B2:C3:62:2D:F9:E8:79:82:EA:83:50:97:8A:6C:98:75:A7:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eaOyw2It-eh5guqDUJeKbJh1p8g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/e5069b-1cad-45a4-a619-c24ff682f7ad/1/Q1PlEKZ40ZPXTVd1vL9lc4bLYPk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/e5069b-1cad-45a4-a619-c24ff682f7ad/1/eaOyw2It-eh5guqDUJeKbJh1p8g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.187.208.0/22
Signature Algorithm: sha256WithRSAEncryption
5e:b9:37:9a:50:69:e9:d4:ff:a9:46:8d:da:3e:96:0b:ab:7e:
fc:9e:2e:54:12:75:4a:a0:38:00:7e:72:b0:74:a7:0d:10:81:
0e:a1:f6:da:07:ce:8b:b1:76:ff:c8:72:6f:ee:72:23:93:62:
92:3a:c6:75:2c:04:fa:f7:3d:d4:a8:67:a3:68:0a:04:60:69:
05:cc:f6:f0:a1:7a:83:7a:c0:b5:63:9f:2d:b4:32:98:90:d8:
22:a2:cd:03:30:4b:c4:8e:eb:be:b8:db:40:72:10:cc:3c:bf:
0b:3a:26:bb:e9:03:9e:b2:8c:3a:0b:a0:66:09:f8:d3:f6:e0:
8c:f4:ef:5a:cb:de:c1:6e:f9:25:04:97:0a:f2:bd:b3:70:b8:
bd:a4:dd:64:e9:2d:8a:22:45:83:4d:27:4f:60:de:41:e3:3a:
2e:cb:10:d1:fe:98:08:f3:c8:7a:b5:e2:16:6f:06:52:1b:32:
e4:1f:eb:39:cb:ee:9f:13:9c:4f:8f:6b:98:98:c9:16:fd:42:
c9:c4:de:46:51:9e:41:1b:7e:0d:0e:86:cc:90:a2:2c:5e:54:
46:86:38:99:71:95:6c:c9:04:81:80:7f:40:f6:8b:9f:d2:37:
c6:80:12:06:3b:40:b9:f2:fb:df:1e:70:61:4e:9e:1d:e2:ff:
23:53:e2:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:03 2024 by rpki-client on console-ams.rpki-client.org