Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/qidJLfdXpCsqwkCz_FPFJUkQE5M.roa
File: qidJLfdXpCsqwkCz_FPFJUkQE5M.roa (raw, json)
Hash identifier: CyGs36NhcCID/1sq1iT6UViQeEWUDmrzPtImaEKhfxo=
Subject key identifier: AA:27:49:2D:F7:57:A4:2B:2A:C2:40:B3:FC:53:C5:25:49:10:13:93
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 01856CCAED071C3628F469010F1B3A7A6ABC
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/qidJLfdXpCsqwkCz_FPFJUkQE5M.roa
Signing time: Sun 01 Jan 2023 10:05:16 +0000
ROA not before: Sun 01 Jan 2023 10:05:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47527
IP address blocks: 192.121.236.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:ca:ed:07:1c:36:28:f4:69:01:0f:1b:3a:7a:6a:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: Jan 1 10:05:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=aa27492df757a42b2ac240b3fc53c52549101393
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:ca:2e:dd:37:46:02:00:5c:76:ab:08:38:3b:
7c:0a:5a:a5:9e:a1:53:c8:93:6b:3c:00:7d:2b:88:
45:a1:4b:4f:0a:df:a6:f8:80:d3:ca:b6:65:1d:f0:
8e:c5:87:6c:10:8a:68:d4:ed:1f:f9:ac:b7:c5:53:
34:a7:d2:f7:6f:51:af:bc:97:14:47:8a:85:cd:15:
58:b5:b0:78:e3:78:c3:10:4d:91:25:84:c5:58:85:
b3:07:0b:74:39:e2:43:21:a0:c6:41:67:39:f3:63:
3a:a3:64:f2:73:70:cd:2c:6a:21:42:78:55:95:ce:
b3:e4:ea:7b:51:87:8b:6e:2a:a8:c6:70:1c:62:a4:
e6:d8:e2:06:43:e0:41:6c:31:34:bb:dc:6f:e0:23:
35:95:04:19:10:66:10:ae:f1:8b:a4:80:4d:c5:0c:
89:d7:13:76:4d:52:d4:5f:1c:90:dc:ae:b3:a8:08:
aa:4f:d0:7f:9f:40:3d:81:cb:4b:fc:5c:44:00:08:
e0:4e:0e:0c:25:86:f2:fd:3b:12:c5:93:b0:a5:d6:
29:e7:27:eb:ef:af:61:9b:83:77:ce:cc:b8:55:6b:
36:18:b4:de:ae:a4:61:ea:f8:12:a4:2b:aa:8d:9e:
c6:bc:ca:54:b8:db:20:35:d5:10:ee:1c:f6:73:b6:
b3:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:27:49:2D:F7:57:A4:2B:2A:C2:40:B3:FC:53:C5:25:49:10:13:93
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/qidJLfdXpCsqwkCz_FPFJUkQE5M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.121.236.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:ed:5c:71:06:2a:aa:0a:b4:4d:a2:9c:57:ba:43:74:9e:ac:
48:2f:58:90:a5:db:bf:97:0b:ff:b7:c3:fd:8f:e0:77:01:0b:
c2:0a:d2:01:01:b7:fd:ee:0d:0a:11:07:ed:75:08:41:50:f4:
b1:87:63:b2:f8:30:e0:28:2a:55:f6:11:61:00:14:09:d6:bc:
bc:a9:9f:92:bf:54:70:95:cb:6a:76:c3:b9:a6:49:d2:53:5a:
91:be:8c:0c:57:95:d2:8d:7b:65:ca:32:c0:0d:14:c4:66:e0:
b4:5b:2f:28:c2:68:81:5f:78:46:55:4f:ff:af:9e:d9:53:93:
a6:6a:2e:cf:ac:36:91:48:ec:34:c6:0f:81:0c:2f:a9:28:82:
1b:a9:e7:b4:69:57:95:50:86:e3:31:0b:c6:00:1a:03:69:ed:
ea:de:3c:0b:49:92:91:d4:b9:f7:b8:fe:61:b9:02:fe:6c:b4:
6c:6d:b1:57:ca:53:6f:46:6b:e7:40:48:fd:ee:41:a1:aa:aa:
d5:3b:9b:26:50:fa:de:56:32:12:c6:eb:6e:9f:15:77:55:90:
2c:2f:10:d0:ca:41:8a:40:bd:dd:86:56:f7:27:c1:14:21:77:
31:80:00:8d:5b:d0:3b:b9:db:0d:d8:00:0d:91:d5:f6:aa:b7:
88:5e:1d:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:52:53 2024 by rpki-client on console-fra.rpki-client.org