Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/c49172-f8da-4128-8689-515845e6c317/1/SQ2U_dTD0FiJlg4u1ph2YUwL5og.roa
File: SQ2U_dTD0FiJlg4u1ph2YUwL5og.roa (raw, json)
Hash identifier: iwPDxE/bgLxAsWj7FO1o6QRFjbmwUzDymxu4RyjnOlE=
Subject key identifier: 49:0D:94:FD:D4:C3:D0:58:89:96:0E:2E:D6:98:76:61:4C:0B:E6:88
Certificate issuer: /CN=c105adc5c4262dff6b3f3e606830c7f971d766ce
Certificate serial: 01856ECB9C12A61E727FDC07CA4A989252C9
Authority key identifier: C1:05:AD:C5:C4:26:2D:FF:6B:3F:3E:60:68:30:C7:F9:71:D7:66:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wQWtxcQmLf9rPz5gaDDH-XHXZs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/c49172-f8da-4128-8689-515845e6c317/1/SQ2U_dTD0FiJlg4u1ph2YUwL5og.roa
Signing time: Sun 01 Jan 2023 19:25:15 +0000
ROA not before: Sun 01 Jan 2023 19:25:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25498
IP address blocks: 46.232.232.0/23 maxlen: 23
195.22.130.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:cb:9c:12:a6:1e:72:7f:dc:07:ca:4a:98:92:52:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c105adc5c4262dff6b3f3e606830c7f971d766ce
Validity
Not Before: Jan 1 19:25:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=490d94fdd4c3d05889960e2ed69876614c0be688
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:eb:d4:9c:06:f5:11:7d:ef:19:d7:b9:89:e7:
c3:8d:0b:7d:77:c5:52:81:00:05:d0:6f:6c:a8:7f:
26:cd:51:4d:62:fc:c0:f8:2a:de:b6:dd:20:02:50:
c9:2a:3a:e9:70:09:09:cb:25:c7:ac:51:ce:c4:41:
f8:5a:ec:99:3b:eb:50:96:cc:08:13:df:d8:83:66:
ab:9a:3b:64:9e:c0:d5:70:98:ef:2e:9e:31:39:75:
e3:46:3d:25:f2:3b:8e:b4:21:1e:52:6c:9c:4f:79:
36:7f:89:23:b2:50:29:2f:5c:dc:2a:65:2b:02:85:
99:bb:2b:58:7d:0a:43:c4:27:bd:1b:12:1d:eb:99:
1a:a6:4a:0a:67:9c:24:79:43:a7:e4:39:49:69:23:
9d:e7:fa:39:d2:c7:da:f9:08:4f:85:83:ea:e3:e4:
6a:b3:99:0c:bf:cb:79:49:13:bd:f9:f6:32:a0:06:
7a:de:46:2a:71:8f:88:db:a3:71:03:11:8e:36:4e:
c0:66:f9:c5:54:9b:5d:95:56:07:d4:46:61:6f:08:
71:49:de:8e:b6:c3:5e:bd:30:55:d8:f1:9a:cf:4d:
23:fc:c9:7c:59:2b:10:71:d4:11:39:09:29:a7:06:
57:6e:76:5c:6f:70:36:8f:ad:1e:6a:12:d4:bb:df:
e0:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:0D:94:FD:D4:C3:D0:58:89:96:0E:2E:D6:98:76:61:4C:0B:E6:88
X509v3 Authority Key Identifier:
keyid:C1:05:AD:C5:C4:26:2D:FF:6B:3F:3E:60:68:30:C7:F9:71:D7:66:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wQWtxcQmLf9rPz5gaDDH-XHXZs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/c49172-f8da-4128-8689-515845e6c317/1/SQ2U_dTD0FiJlg4u1ph2YUwL5og.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/c49172-f8da-4128-8689-515845e6c317/1/wQWtxcQmLf9rPz5gaDDH-XHXZs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.232.232.0/23
195.22.130.0/23
Signature Algorithm: sha256WithRSAEncryption
52:59:c8:2c:9a:e6:8d:d4:3c:fb:83:7f:58:4e:35:77:47:8a:
a8:32:37:c6:9d:3c:41:f0:30:e3:e9:8d:82:54:36:f0:d6:1b:
f6:0d:ea:dc:dd:e7:1e:22:6b:3b:17:2e:ce:80:ff:85:71:6b:
d7:d1:b0:4c:f7:e9:a5:7e:3f:ef:a1:1a:3c:6b:73:06:75:a0:
73:dd:56:38:d6:18:2d:d4:2e:dc:32:ba:4a:84:a7:b2:71:a8:
38:30:51:c4:9f:87:25:1e:c0:6a:67:80:cb:e3:c4:15:df:73:
93:19:25:76:f6:b3:e9:17:db:80:88:e2:0c:0b:7c:cc:1d:4d:
85:28:ba:29:6e:95:96:ca:e9:d5:54:81:8d:5a:2b:b8:19:d2:
bd:f0:de:cb:60:a5:63:c4:7d:67:fc:12:2a:13:2e:d7:21:c6:
48:4d:5d:e1:5d:6c:01:70:e9:12:90:ae:d3:b0:ec:55:34:53:
e7:e0:58:c4:05:90:0e:cc:c7:3e:bc:b7:92:27:cc:7d:86:b5:
f1:29:12:7a:7e:ca:4d:75:93:cd:2b:36:89:43:92:58:7e:a5:
75:ea:92:62:90:cc:29:e4:39:a2:03:f8:27:9f:b7:1f:aa:34:
c9:96:30:8c:71:3a:42:6f:81:c9:92:17:4f:c8:3c:77:10:3a:
97:14:b7:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:49 2024 by rpki-client on console-ams.rpki-client.org