Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/9562bf-92bc-46eb-9d16-2badce466853/1/_l2QGAgoknw-z5xTBPYqcQ5oX60.roa
File: _l2QGAgoknw-z5xTBPYqcQ5oX60.roa (raw, json)
Hash identifier: jjZgka25g1u1/WbCvh7ZE6u7AFgByuOeKazagiX51Sc=
Subject key identifier: FE:5D:90:18:08:28:92:7C:3E:CF:9C:53:04:F6:2A:71:0E:68:5F:AD
Certificate issuer: /CN=40dde71b41bffb1b516e07b0c61391bdf4d3bf11
Certificate serial: 018C922C2EA7AD5E405F7F9E4222AED8DFD6
Authority key identifier: 40:DD:E7:1B:41:BF:FB:1B:51:6E:07:B0:C6:13:91:BD:F4:D3:BF:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QN3nG0G_-xtRbgewxhORvfTTvxE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/9562bf-92bc-46eb-9d16-2badce466853/1/_l2QGAgoknw-z5xTBPYqcQ5oX60.roa
Signing time: Fri 22 Dec 2023 15:36:58 +0000
ROA not before: Fri 22 Dec 2023 15:36:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44620
IP address blocks: 92.60.70.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:92:2c:2e:a7:ad:5e:40:5f:7f:9e:42:22:ae:d8:df:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40dde71b41bffb1b516e07b0c61391bdf4d3bf11
Validity
Not Before: Dec 22 15:36:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fe5d90180828927c3ecf9c5304f62a710e685fad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:5c:be:14:e5:d6:e7:ae:aa:ed:f8:d8:cb:5b:
25:c7:d9:b0:37:06:5a:d1:14:8c:34:8f:35:33:4a:
11:0a:cf:e5:81:7b:30:d1:f4:85:ec:2c:20:82:a7:
7c:77:37:5c:c8:a4:fd:dc:b6:16:56:a6:86:df:bc:
4c:41:12:ad:44:2c:e0:ef:29:a8:7f:44:c8:0c:e2:
bb:c6:33:24:95:4f:e0:80:4b:e8:00:9a:cc:b0:96:
ed:4e:be:c8:a4:85:f9:d8:3a:e0:13:bd:5c:98:aa:
82:1c:5f:89:86:7b:c9:9c:76:88:6e:f7:26:55:66:
7a:27:ab:df:62:63:8d:08:b8:ce:25:89:bf:92:ce:
63:3f:ad:b8:ea:90:d6:6d:9c:54:bc:da:45:a3:18:
06:69:72:81:ab:46:e6:5d:3b:d2:41:35:3f:6d:78:
f9:12:55:2f:b4:a8:ae:f1:06:42:a7:67:08:79:b6:
10:aa:19:19:d1:ad:bf:79:75:bd:7c:32:99:58:36:
56:0c:91:e4:c3:a0:37:87:39:b7:16:16:40:41:42:
a7:d6:fd:fc:33:53:fc:4c:d4:93:1d:a7:6c:09:14:
30:e9:35:75:7a:da:e8:3f:57:27:11:b2:95:94:2b:
cb:ea:e5:1b:47:09:39:19:85:01:2c:6d:2a:ee:1c:
95:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:5D:90:18:08:28:92:7C:3E:CF:9C:53:04:F6:2A:71:0E:68:5F:AD
X509v3 Authority Key Identifier:
keyid:40:DD:E7:1B:41:BF:FB:1B:51:6E:07:B0:C6:13:91:BD:F4:D3:BF:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QN3nG0G_-xtRbgewxhORvfTTvxE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/9562bf-92bc-46eb-9d16-2badce466853/1/_l2QGAgoknw-z5xTBPYqcQ5oX60.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/9562bf-92bc-46eb-9d16-2badce466853/1/QN3nG0G_-xtRbgewxhORvfTTvxE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.60.70.0/24
Signature Algorithm: sha256WithRSAEncryption
03:16:f6:3f:dd:9b:6a:87:a0:07:68:58:70:4f:5f:79:4e:28:
60:b5:0a:f5:3b:e6:e4:8d:c3:ff:7d:bb:ed:d2:79:5e:c0:33:
90:92:07:bb:6c:b1:6a:00:be:d0:f8:e2:a8:5e:27:8d:5d:fb:
24:69:9d:77:50:f1:a4:f5:84:02:2b:87:24:d7:90:08:37:44:
09:23:76:57:78:3f:ba:54:7f:23:fc:89:53:04:52:1f:b1:88:
df:ba:0c:92:9e:a9:8c:e0:45:15:5c:13:a8:f7:6c:47:57:74:
cb:64:05:6e:50:06:a2:6b:5c:34:79:0d:69:63:cc:ce:35:ea:
00:c9:89:aa:26:8f:1b:2d:6a:a8:69:dc:46:79:b0:65:75:69:
b1:f3:71:8e:4c:22:42:5b:79:d4:19:ce:85:e2:63:66:05:ba:
73:1d:4b:38:01:96:d7:9f:04:b8:80:af:8e:bd:51:2b:b0:ee:
58:67:1e:b3:3c:3d:58:7a:e2:74:5d:05:e7:15:20:2c:04:bb:
6b:f5:96:3c:46:ca:7b:90:cb:e2:ee:11:d4:ab:8f:7e:9d:50:
7a:5d:af:47:a2:d2:7d:47:7a:06:15:8f:ce:59:e7:14:57:e4:
9d:44:3e:d4:0b:f1:28:91:98:dc:48:ba:e6:a6:92:4d:0b:24:
4b:fc:1a:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 15:03:30 2024 by rpki-client on console-ams.rpki-client.org