Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/qAm3Tdbnkc5nM9uuAJjZ3TKZ6CM.roa
File: qAm3Tdbnkc5nM9uuAJjZ3TKZ6CM.roa (raw, json)
Hash identifier: r4WuU3MIS4Xrh1lkHkjdpxjuFELXkLQfCFWVVskTZR8=
Subject key identifier: A8:09:B7:4D:D6:E7:91:CE:67:33:DB:AE:00:98:D9:DD:32:99:E8:23
Certificate issuer: /CN=60998d3c9d8bdc9c1dff8e319424412b6cdc1dd3
Certificate serial: 018CC6B7A764FE1ED87C2FDEDA1CBA7CDA29
Authority key identifier: 60:99:8D:3C:9D:8B:DC:9C:1D:FF:8E:31:94:24:41:2B:6C:DC:1D:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YJmNPJ2L3Jwd_44xlCRBK2zcHdM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/qAm3Tdbnkc5nM9uuAJjZ3TKZ6CM.roa
Signing time: Mon 01 Jan 2024 20:29:33 +0000
ROA not before: Mon 01 Jan 2024 20:29:33 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 396982
IP address blocks: 192.40.69.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 05 Aug 2024 07:14:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b7:a7:64:fe:1e:d8:7c:2f:de:da:1c:ba:7c:da:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60998d3c9d8bdc9c1dff8e319424412b6cdc1dd3
Validity
Not Before: Jan 1 20:29:33 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a809b74dd6e791ce6733dbae0098d9dd3299e823
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:93:14:78:0c:63:13:d5:a6:be:82:b9:dd:af:
73:02:dd:a8:5a:2f:14:62:8e:54:7a:5a:e4:47:58:
00:61:32:af:75:bc:56:21:a8:ca:5d:78:a7:f6:31:
c1:50:eb:e5:43:cf:65:40:cd:f1:af:96:72:9d:54:
21:ad:c1:d9:40:a5:59:90:69:f6:18:50:b0:06:e6:
55:df:69:c5:5c:37:1b:06:49:37:dc:ea:1e:2c:3e:
16:f3:17:a7:01:4d:df:5a:a4:6a:81:e8:fe:f7:ea:
e8:dd:90:ff:a3:f2:11:c6:ff:93:95:55:b7:a0:b0:
59:41:95:f2:62:2d:bb:77:e8:45:56:d4:b7:ce:58:
3f:a7:b6:f6:4b:75:91:90:b8:ca:88:07:36:94:42:
63:cd:68:d8:07:e6:f9:c7:9d:59:99:d0:7c:14:d1:
2c:b4:83:c5:d0:11:67:60:81:9f:f6:78:21:cc:24:
62:0d:a7:30:80:0e:b2:84:4f:ef:55:3c:af:de:c5:
9a:af:90:b7:70:2a:88:32:c5:c7:37:1c:a0:54:30:
1c:ed:13:cc:c3:8a:4b:c6:4a:41:3f:69:f6:33:13:
53:f9:72:6b:a5:a5:62:8a:6d:3f:a0:4c:89:8f:f7:
47:f5:53:0d:ea:66:c0:d1:32:55:33:dc:52:2d:c7:
35:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:09:B7:4D:D6:E7:91:CE:67:33:DB:AE:00:98:D9:DD:32:99:E8:23
X509v3 Authority Key Identifier:
keyid:60:99:8D:3C:9D:8B:DC:9C:1D:FF:8E:31:94:24:41:2B:6C:DC:1D:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YJmNPJ2L3Jwd_44xlCRBK2zcHdM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/qAm3Tdbnkc5nM9uuAJjZ3TKZ6CM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/YJmNPJ2L3Jwd_44xlCRBK2zcHdM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.40.69.0/24
Signature Algorithm: sha256WithRSAEncryption
09:82:fe:86:f8:9f:a5:b8:8c:6b:c3:48:06:66:15:1a:6c:3e:
fb:d7:6b:df:f8:2a:50:f1:d6:69:91:df:af:01:1a:02:05:7b:
5c:4b:3e:da:0c:7f:2f:19:d7:25:15:6f:e9:ca:b7:c7:16:05:
d6:cb:65:26:aa:b8:ba:60:9e:82:af:72:10:09:77:e6:6c:0f:
cb:6f:6c:8f:61:5e:40:ce:e8:1e:ea:25:4f:a1:79:dd:24:56:
54:29:63:74:af:e9:58:f1:0b:0e:86:6a:0c:47:36:28:14:49:
11:1f:09:79:b6:f9:36:2f:ba:c4:54:c3:a8:ec:56:2d:fa:b7:
2a:26:b5:92:4b:87:60:21:e4:ad:14:61:6a:41:df:40:b9:0b:
b0:1f:ec:d4:3c:26:0d:c7:66:d2:d8:6d:8f:db:99:44:17:91:
59:4c:95:3e:8e:cc:66:b8:37:6a:b6:6e:34:e2:e8:82:f9:b0:
ee:ac:c1:30:34:d8:01:37:78:ea:c5:fc:69:21:25:d6:92:62:
ac:8a:d6:f2:23:8b:61:51:c7:e8:4a:49:1f:51:40:1d:3e:d9:
bc:2d:7e:32:cd:bc:6d:4e:9c:9b:b1:27:98:45:23:39:4c:6e:
86:9c:23:6c:30:31:ac:ad:e2:30:29:86:3b:f6:c0:93:cd:89:
c2:35:e7:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 5 09:21:43 2024 by rpki-client on console-fra.rpki-client.org