Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/260cf2-8850-43f8-a7f2-9273fc016f7d/1/q_jLCY2CKKP68cTqTC3LHUKsRic.roa
File: q_jLCY2CKKP68cTqTC3LHUKsRic.roa (raw, json)
Hash identifier: 4fpuV5O3DBE2ew9ztFyXQl28A8VxLdhpJ7JCDXGptj8=
Subject key identifier: AB:F8:CB:09:8D:82:28:A3:FA:F1:C4:EA:4C:2D:CB:1D:42:AC:46:27
Certificate issuer: /CN=526c618d15bb712e3ebae06a8b181697a5e407b8
Certificate serial: 01857246BBC32D92B75FE3AF353216A48CEB
Authority key identifier: 52:6C:61:8D:15:BB:71:2E:3E:BA:E0:6A:8B:18:16:97:A5:E4:07:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmxhjRW7cS4-uuBqixgWl6XkB7g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/260cf2-8850-43f8-a7f2-9273fc016f7d/1/q_jLCY2CKKP68cTqTC3LHUKsRic.roa
Signing time: Mon 02 Jan 2023 11:38:36 +0000
ROA not before: Mon 02 Jan 2023 11:38:36 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213123
IP address blocks: 94.231.197.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:46:bb:c3:2d:92:b7:5f:e3:af:35:32:16:a4:8c:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=526c618d15bb712e3ebae06a8b181697a5e407b8
Validity
Not Before: Jan 2 11:38:36 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=abf8cb098d8228a3faf1c4ea4c2dcb1d42ac4627
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:f7:b4:ae:94:16:92:39:d1:1a:fa:b4:d3:15:
46:16:7c:55:91:e4:f7:f2:3c:8a:ca:29:85:8e:26:
42:b2:2b:da:92:ec:0f:3c:84:e9:d6:f9:ef:27:07:
77:4c:8c:6c:18:b7:d1:75:7b:70:be:ac:b0:bf:4c:
73:8b:b8:16:fa:a7:fa:70:51:b9:24:0b:82:46:38:
0c:db:7f:49:37:60:fd:11:aa:44:73:ce:6a:a6:d7:
ae:da:ae:d7:7b:07:89:88:c9:1d:14:0a:d1:50:ef:
de:f6:e7:87:63:df:b9:86:bf:3d:43:34:b7:ad:e4:
69:94:ff:ba:3f:e2:e8:90:5c:20:20:4e:74:48:0f:
47:ef:39:8b:83:17:4e:0c:2a:68:18:4f:d0:f4:2a:
2d:e6:55:aa:9e:82:d3:4f:03:b6:5c:56:36:a5:3d:
e9:fd:84:1c:c6:34:9a:ab:e1:c0:20:e6:64:59:33:
3d:45:68:e9:b7:9d:57:ed:90:fc:c4:a4:43:30:57:
34:d3:50:70:48:bb:8b:bd:91:37:2f:2e:fc:18:6c:
bb:b6:19:a0:9f:70:5d:23:53:ee:fc:c1:dc:4c:fd:
6a:40:1b:b8:88:0c:00:b1:f5:e4:51:d8:e1:1f:38:
9d:cb:a2:53:86:ce:77:a6:71:80:80:6f:17:77:95:
59:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:F8:CB:09:8D:82:28:A3:FA:F1:C4:EA:4C:2D:CB:1D:42:AC:46:27
X509v3 Authority Key Identifier:
keyid:52:6C:61:8D:15:BB:71:2E:3E:BA:E0:6A:8B:18:16:97:A5:E4:07:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmxhjRW7cS4-uuBqixgWl6XkB7g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/260cf2-8850-43f8-a7f2-9273fc016f7d/1/q_jLCY2CKKP68cTqTC3LHUKsRic.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/260cf2-8850-43f8-a7f2-9273fc016f7d/1/UmxhjRW7cS4-uuBqixgWl6XkB7g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.231.197.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:6b:90:9f:3a:11:b9:c2:be:86:be:f5:68:09:ac:c5:e9:66:
aa:9e:58:20:cb:05:33:b5:25:11:20:74:4a:dd:44:e4:19:48:
21:2b:99:73:ca:87:d3:d2:92:69:7c:20:0b:5f:52:4a:e3:c8:
30:23:9e:da:c5:bb:bb:a0:94:16:95:94:20:13:96:70:70:a7:
b3:64:df:a4:be:56:ca:60:5d:0c:47:21:04:eb:41:b9:21:06:
92:bc:3a:6a:ea:63:6d:78:50:cb:39:12:e7:48:b3:46:6f:0a:
22:17:d9:1e:f9:36:f5:6e:9c:18:65:74:91:75:54:63:fa:53:
a5:76:a2:fd:0f:4a:a9:c3:bb:03:30:60:0f:97:18:6a:d9:4b:
45:39:ea:4d:ff:2d:19:87:0d:86:5b:6b:6b:fa:df:c0:cd:54:
18:94:32:dc:83:fa:27:ba:62:92:27:1e:99:3d:d2:c5:0d:b1:
9a:1f:6e:8f:8d:f9:bb:96:ea:2b:6c:5a:48:86:95:40:7d:2b:
2b:7f:4a:b7:03:f0:7a:ed:cb:59:a2:3e:74:68:7f:e9:2a:38:
ee:7e:75:72:7a:2c:cb:a5:dd:0b:9c:3d:35:1b:83:ad:de:2c:
c9:68:ae:8c:bd:f1:5e:34:36:e3:44:a0:b3:c4:43:1d:45:f8:
7e:c4:59:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:53 2024 by rpki-client on console-ams.rpki-client.org