Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/65764a-dd8e-401b-b731-d9c5d26419b2/1/qcQTuPQK6TqcdTKLcgis2EIRtN8.roa
File: qcQTuPQK6TqcdTKLcgis2EIRtN8.roa (raw, json)
Hash identifier: xVRKw8oHfWD0Yyclt3bUfEOfjqWOm8HXYxI6bguDG4E=
Subject key identifier: A9:C4:13:B8:F4:0A:E9:3A:9C:75:32:8B:72:08:AC:D8:42:11:B4:DF
Certificate issuer: /CN=77292dc63718eebc704ab002ecb81d3d52d4d1c3
Certificate serial: 01856B810BE6CE305935D73C97622CB23C8B
Authority key identifier: 77:29:2D:C6:37:18:EE:BC:70:4A:B0:02:EC:B8:1D:3D:52:D4:D1:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dyktxjcY7rxwSrAC7LgdPVLU0cM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/65764a-dd8e-401b-b731-d9c5d26419b2/1/qcQTuPQK6TqcdTKLcgis2EIRtN8.roa
Signing time: Sun 01 Jan 2023 04:04:57 +0000
ROA not before: Sun 01 Jan 2023 04:04:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15542
IP address blocks: 193.176.104.0/21 maxlen: 21
2001:67c:460::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 19 Dec 2023 10:41:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:81:0b:e6:ce:30:59:35:d7:3c:97:62:2c:b2:3c:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77292dc63718eebc704ab002ecb81d3d52d4d1c3
Validity
Not Before: Jan 1 04:04:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a9c413b8f40ae93a9c75328b7208acd84211b4df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:38:04:a8:f0:a3:15:f9:6f:13:6c:4c:56:ee:
8e:1b:7a:36:a4:30:43:2e:d5:f6:63:d6:aa:6c:dc:
7a:70:ce:7f:f9:df:dc:c1:d4:36:33:16:14:50:d9:
3a:7e:03:5b:69:4e:09:5b:17:25:68:ad:e5:fb:95:
29:d9:05:ea:a2:3a:46:7f:09:3e:e9:1a:b6:1d:35:
a1:34:34:16:1a:0e:ff:56:da:46:73:e1:49:85:e3:
83:2b:59:c6:fe:58:48:78:06:ea:f3:cd:03:8a:82:
6d:ee:16:c1:49:f5:5a:47:87:ae:47:8d:61:70:0b:
ff:a9:d8:22:30:bf:09:cc:2f:96:91:fc:c2:bb:a7:
55:a6:bf:a7:34:d2:ee:83:94:e5:31:20:b9:ef:ae:
c8:48:5a:27:ec:fc:a2:d9:18:b2:ae:fe:f9:b4:a2:
66:1f:43:41:1f:2e:8d:c7:ef:1e:6b:ba:ca:dc:40:
83:13:22:86:8a:3e:ad:a0:7c:40:6d:1c:ec:4e:2a:
4f:f2:0c:e4:b6:3a:5f:1f:3d:f7:23:73:bc:d8:8c:
f2:32:a1:32:e9:44:4d:7f:12:2e:d6:82:e4:bd:6e:
b4:8d:bb:d4:92:d9:cb:c9:8e:ce:8a:3b:02:a4:e4:
7f:74:46:40:46:69:bc:4f:0a:c7:1d:f3:ba:64:29:
64:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:C4:13:B8:F4:0A:E9:3A:9C:75:32:8B:72:08:AC:D8:42:11:B4:DF
X509v3 Authority Key Identifier:
keyid:77:29:2D:C6:37:18:EE:BC:70:4A:B0:02:EC:B8:1D:3D:52:D4:D1:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dyktxjcY7rxwSrAC7LgdPVLU0cM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/65764a-dd8e-401b-b731-d9c5d26419b2/1/qcQTuPQK6TqcdTKLcgis2EIRtN8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/65764a-dd8e-401b-b731-d9c5d26419b2/1/dyktxjcY7rxwSrAC7LgdPVLU0cM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.176.104.0/21
IPv6:
2001:67c:460::/48
Signature Algorithm: sha256WithRSAEncryption
bb:75:bc:64:55:cc:49:38:32:d0:f1:b3:d4:09:3b:db:0f:e6:
a4:dc:86:90:c3:6c:57:d5:db:f4:90:3e:ee:6a:1e:6a:8a:42:
55:1b:44:a3:49:a9:ee:91:fe:49:cc:6e:57:65:9b:a3:94:a8:
1a:ab:32:4d:38:66:fd:84:2b:de:8f:35:a3:ca:cc:e5:2c:26:
ef:4f:52:46:e1:a5:fe:3c:14:a1:ba:45:ad:e1:10:c6:a4:11:
79:3e:b7:9b:47:50:5c:be:4c:ef:ce:56:18:81:0e:77:2a:fe:
61:7f:9e:3d:c4:ca:c0:f3:a6:12:49:54:d2:22:f9:d5:db:ac:
50:cc:ee:a5:9f:5d:08:19:97:45:1c:0e:8e:00:ff:2a:00:f1:
4a:bc:d8:50:d7:e8:9f:92:58:bf:0a:b2:9f:8e:cf:d5:37:85:
3b:21:30:a7:e6:40:ea:3a:15:20:10:88:35:a5:5c:e6:07:8f:
3c:51:45:db:f4:4f:13:8d:c8:23:20:f3:ad:31:bd:b2:b3:24:
03:71:9c:72:6a:f4:d3:48:6d:ab:2e:09:7d:f6:5e:dc:c8:05:
e8:83:4d:11:e5:b4:38:a2:2b:7c:6c:63:5e:a2:96:85:72:69:
48:b3:6c:9c:dc:55:96:b8:a5:a6:9c:b8:cb:ca:9b:08:f9:bd:
78:27:d3:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:05 2024 by rpki-client on console-ams.rpki-client.org