Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/q6EYJgwXEXLA6KWpw-Wnw0DNOmc.roa
File: q6EYJgwXEXLA6KWpw-Wnw0DNOmc.roa (raw, json)
Hash identifier: 8JmPKrLy2MpWrILt2v2ztJYk3K4HYBQqZRmx6ZxWiKE=
Subject key identifier: AB:A1:18:26:0C:17:11:72:C0:E8:A5:A9:C3:E5:A7:C3:40:CD:3A:67
Certificate issuer: /CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Certificate serial: 01867908FB7143B077EF0398BAB5B32DFC7F
Authority key identifier: 7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/q6EYJgwXEXLA6KWpw-Wnw0DNOmc.roa
Signing time: Wed 22 Feb 2023 12:11:17 +0000
ROA not before: Wed 22 Feb 2023 12:11:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3507
IP address blocks: 164.215.102.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:79:08:fb:71:43:b0:77:ef:03:98:ba:b5:b3:2d:fc:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Validity
Not Before: Feb 22 12:11:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=aba118260c171172c0e8a5a9c3e5a7c340cd3a67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:2a:41:cf:ab:53:0d:19:d8:8f:8a:9b:c6:f5:
ea:e8:f0:07:af:9a:c8:01:97:00:79:c2:5b:53:35:
cb:c6:33:a3:a1:cd:46:e6:7f:37:04:9f:36:7d:fa:
a8:99:c2:43:57:87:3d:56:d5:00:ef:68:1b:4d:62:
7b:82:4a:b5:3d:d3:da:09:cb:d4:cd:ed:a0:15:4f:
37:23:70:6e:f3:3a:83:47:96:a1:51:13:f9:9b:83:
5c:6b:46:ea:47:4b:b4:46:c7:62:65:c9:69:b5:9b:
d9:1a:e4:be:84:34:45:fe:e0:81:3d:6e:c1:cc:93:
bc:6a:e8:ea:a1:7b:9f:8c:d5:d2:44:df:4d:da:e1:
9d:58:87:25:61:c5:94:aa:47:0d:9a:96:d7:b8:9c:
68:be:83:ea:66:1c:f7:c1:52:40:6e:e9:51:2d:66:
0e:23:41:1b:87:74:92:7e:0d:44:fd:87:ac:2d:d8:
4f:53:00:5e:a7:e9:c9:0d:8c:7b:e0:fb:a4:6e:47:
e0:e0:51:26:1c:8b:11:05:8c:8b:84:22:87:9b:45:
16:8b:d5:29:70:7c:11:10:c4:bf:6d:1e:03:6c:76:
03:f8:26:d0:0d:83:d4:bb:0f:a4:1c:9f:3d:16:49:
fe:2d:45:0e:b2:43:8c:01:7e:c3:20:c4:41:5c:47:
f1:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:A1:18:26:0C:17:11:72:C0:E8:A5:A9:C3:E5:A7:C3:40:CD:3A:67
X509v3 Authority Key Identifier:
keyid:7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/q6EYJgwXEXLA6KWpw-Wnw0DNOmc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/fQakK7JEblHxkuo3W99-7FpRx38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
164.215.102.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:18:5c:37:cd:24:99:41:22:80:0e:23:0a:26:49:5b:7b:2d:
c6:b6:28:8c:30:fb:17:62:4a:aa:30:ed:e8:b0:c2:39:ab:7b:
aa:f9:1c:e4:67:9e:c2:ee:5c:5a:ce:e8:af:65:5b:55:29:4b:
ca:93:51:88:81:fe:5f:7b:58:b0:a3:66:f9:df:f1:2a:86:ff:
8a:da:10:d2:04:dc:5b:b1:c1:c6:1b:a9:6c:3c:00:98:75:d2:
e4:6f:60:d3:12:df:9b:3d:1b:23:e3:19:2d:ec:e9:9f:fe:b2:
51:34:b0:42:15:c2:4a:d6:9f:89:3f:30:68:07:d2:31:21:e6:
76:55:6c:b5:c7:81:1e:e8:0f:a4:34:7b:8d:7e:21:39:30:0b:
62:d7:a1:af:3b:56:f6:ae:33:8b:f3:be:e2:5b:c8:3d:ef:1c:
74:0e:4a:71:01:a0:75:bd:33:81:27:84:3e:3c:9a:0d:43:ab:
1e:52:7d:07:29:7c:62:4a:e0:5b:5e:74:15:8d:c5:ba:46:ca:
46:76:0b:28:7d:eb:f6:86:55:b1:06:13:ee:53:c7:92:86:b5:
2a:ce:c6:df:94:22:31:8c:6d:21:ac:18:69:a5:bf:66:bc:06:
9e:fd:52:b1:3e:5f:a7:68:13:53:f4:9e:9f:87:68:b6:09:11:
ac:5f:21:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:01 2023 by rpki-client on console-fra.rpki-client.org