Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/726869-bd53-4d75-b7e2-34349331d104/1/Qs5rYRYg3zEFcqxa92N21MuCZ8g.roa
File: Qs5rYRYg3zEFcqxa92N21MuCZ8g.roa (raw, json)
Hash identifier: 3ixBQ7FURadKm6FLOB2cTS4jNQTbU7nBcWMSlxaCPeo=
Subject key identifier: 42:CE:6B:61:16:20:DF:31:05:72:AC:5A:F7:63:76:D4:CB:82:67:C8
Certificate issuer: /CN=212ed13b1ab7da090aee42f6aedddfdbb156a5f8
Certificate serial: 01857142F119D3486F622E8F43684AED17EA
Authority key identifier: 21:2E:D1:3B:1A:B7:DA:09:0A:EE:42:F6:AE:DD:DF:DB:B1:56:A5:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IS7ROxq32gkK7kL2rt3f27FWpfg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/726869-bd53-4d75-b7e2-34349331d104/1/Qs5rYRYg3zEFcqxa92N21MuCZ8g.roa
Signing time: Mon 02 Jan 2023 06:54:50 +0000
ROA not before: Mon 02 Jan 2023 06:54:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48626
IP address blocks: 193.34.52.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:42:f1:19:d3:48:6f:62:2e:8f:43:68:4a:ed:17:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=212ed13b1ab7da090aee42f6aedddfdbb156a5f8
Validity
Not Before: Jan 2 06:54:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=42ce6b611620df310572ac5af76376d4cb8267c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:27:a7:71:6b:f8:71:49:f2:28:64:73:6a:85:
ac:43:a9:49:22:3a:50:b6:4b:07:fe:f0:95:bf:82:
72:a7:be:4e:90:d7:7e:18:db:90:df:d4:70:b3:b4:
23:f9:a3:d8:06:13:29:ee:da:1f:07:db:7a:f8:db:
08:b6:03:21:bb:a3:dd:3d:43:23:ef:65:f1:51:61:
b1:04:8a:dd:f6:91:4a:c3:6c:ff:13:25:36:ce:61:
73:de:27:7b:eb:00:9d:47:d4:4e:d6:4f:dc:71:d7:
55:d0:21:0e:69:7d:87:a0:55:2b:c4:d4:e8:47:bb:
a6:1f:cb:bf:47:fb:19:70:3d:86:f2:ca:ae:4b:61:
ee:8d:2e:8b:8e:70:23:93:fa:ef:8d:cf:2a:69:8a:
17:e4:f3:e6:6a:4e:80:7c:b4:e7:4f:7d:d4:df:ef:
de:a8:96:9d:7b:50:6d:18:5d:0e:ad:db:f4:18:a5:
5f:70:73:be:ee:28:01:61:fd:86:e5:cd:e9:cd:69:
d7:97:9c:e9:85:8a:64:2b:e9:6e:35:32:d9:6e:9f:
87:ab:3e:c3:50:f8:dc:7d:c9:2c:8e:ca:4a:fb:89:
1f:8a:55:6f:00:75:8c:cd:3a:ea:61:03:4f:82:85:
54:75:22:14:af:1c:c3:50:18:31:1c:0a:be:45:4c:
a6:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:CE:6B:61:16:20:DF:31:05:72:AC:5A:F7:63:76:D4:CB:82:67:C8
X509v3 Authority Key Identifier:
keyid:21:2E:D1:3B:1A:B7:DA:09:0A:EE:42:F6:AE:DD:DF:DB:B1:56:A5:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IS7ROxq32gkK7kL2rt3f27FWpfg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/726869-bd53-4d75-b7e2-34349331d104/1/Qs5rYRYg3zEFcqxa92N21MuCZ8g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/726869-bd53-4d75-b7e2-34349331d104/1/IS7ROxq32gkK7kL2rt3f27FWpfg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.34.52.0/22
Signature Algorithm: sha256WithRSAEncryption
40:c2:39:ba:94:36:38:00:4d:40:9e:45:43:a7:14:37:64:19:
f9:ca:19:7f:d9:5d:a8:3c:a1:6d:c6:99:95:ea:15:8f:c3:0d:
da:39:4a:5c:88:2d:e7:25:95:40:ac:bf:94:42:89:eb:c8:12:
56:54:31:5e:5b:4b:34:ce:ed:6e:70:cb:b2:96:94:54:6b:6e:
3a:7e:17:d5:18:57:5d:42:1a:04:c3:96:d7:05:21:c3:6b:c5:
67:97:de:ba:f9:ff:0b:bd:cf:e9:f1:a2:38:23:20:53:a5:6e:
b5:fe:f6:ab:10:d3:8a:dd:d1:e2:e1:21:01:6f:f9:c3:e6:ae:
82:fc:2b:50:88:57:06:ba:e8:c8:92:e0:cb:c8:82:7a:89:b3:
d8:7b:b1:83:c5:3f:04:fa:30:87:0a:a6:65:b0:88:c3:b5:2b:
2a:58:4a:e9:65:37:0e:5a:2f:08:d0:bd:2f:88:cb:c9:3e:3d:
f2:a4:1b:70:11:50:69:86:a6:10:28:42:4d:c1:d8:ac:f8:af:
0f:02:66:af:77:16:d0:00:30:2c:2a:20:4a:1b:2a:17:9f:90:
87:1a:2d:1f:fa:f7:8b:02:63:25:05:ec:1c:2f:70:f9:37:62:
ac:4e:30:50:20:e4:e5:c1:f7:04:5b:13:56:4e:17:23:bb:42:
b3:99:43:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:23:17 2024 by rpki-client on console-ams.rpki-client.org