Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/425149-9c68-41fb-8035-d76c8c739861/1/q34qL90ABJKc4Ca7VzU263OsuO0.roa
File: q34qL90ABJKc4Ca7VzU263OsuO0.roa (raw, json)
Hash identifier: yprEm9ZjuzVgMJ+cwGsySJoC/iQUFxo+KSPgZeUyG3o=
Subject key identifier: AB:7E:2A:2F:DD:00:04:92:9C:E0:26:BB:57:35:36:EB:73:AC:B8:ED
Certificate issuer: /CN=8ad240603ec6ebcd62f72d46f1dc00cb7e1f0b2e
Certificate serial: 01879EBDF3329D3B8C7C3939A6B14320A8BB
Authority key identifier: 8A:D2:40:60:3E:C6:EB:CD:62:F7:2D:46:F1:DC:00:CB:7E:1F:0B:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/itJAYD7G681i9y1G8dwAy34fCy4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/425149-9c68-41fb-8035-d76c8c739861/1/q34qL90ABJKc4Ca7VzU263OsuO0.roa
Signing time: Thu 20 Apr 2023 12:57:41 +0000
ROA not before: Thu 20 Apr 2023 12:57:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61108
IP address blocks: 185.226.40.0/22 maxlen: 22
88.218.52.0/22 maxlen: 22
Validation: Failed, certificate revoked on Fri 28 Apr 2023 09:17:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:9e:bd:f3:32:9d:3b:8c:7c:39:39:a6:b1:43:20:a8:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8ad240603ec6ebcd62f72d46f1dc00cb7e1f0b2e
Validity
Not Before: Apr 20 12:57:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ab7e2a2fdd0004929ce026bb573536eb73acb8ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:c8:a8:6f:da:6d:76:b8:2c:1e:4b:5a:b7:b8:
92:08:3e:44:1c:44:de:9a:40:ec:c6:e5:b5:70:a8:
4f:0d:79:d4:49:0f:68:a7:3c:5b:31:c2:4d:b0:a6:
63:b9:71:75:a5:a3:95:53:23:f8:09:02:25:bc:f4:
83:da:48:03:d0:f8:52:16:94:35:ed:c4:3d:0d:23:
e7:35:99:6c:91:e3:57:88:3e:93:a1:d6:a1:39:98:
31:b1:21:b8:98:e3:b1:36:d0:b7:0e:b8:d5:8f:e0:
02:0c:23:ad:4f:a6:52:d7:1a:02:ad:1b:1d:69:62:
3b:83:89:cf:18:4c:9d:5d:29:93:5e:08:d0:16:a0:
3b:3f:cd:fd:9e:4a:27:99:bf:52:e9:0d:05:5e:51:
60:ac:a0:0c:74:3f:57:1a:1d:de:da:ef:36:0f:73:
86:71:65:4f:d3:cf:2e:69:2f:e4:80:4c:bc:49:ee:
9e:0b:f5:3a:38:59:17:d4:4f:9d:2f:b5:0b:b7:87:
d8:8a:9d:8c:86:6d:6d:b9:f9:86:a3:08:77:14:0c:
81:c0:e2:ea:04:c4:89:86:16:fc:35:1c:0b:67:bc:
86:43:5b:db:ae:63:85:ec:62:40:ae:f4:9f:91:1c:
4a:0a:49:e3:6c:64:85:2b:e3:9a:a0:f3:06:4c:ed:
84:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:7E:2A:2F:DD:00:04:92:9C:E0:26:BB:57:35:36:EB:73:AC:B8:ED
X509v3 Authority Key Identifier:
keyid:8A:D2:40:60:3E:C6:EB:CD:62:F7:2D:46:F1:DC:00:CB:7E:1F:0B:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/itJAYD7G681i9y1G8dwAy34fCy4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/425149-9c68-41fb-8035-d76c8c739861/1/q34qL90ABJKc4Ca7VzU263OsuO0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/425149-9c68-41fb-8035-d76c8c739861/1/itJAYD7G681i9y1G8dwAy34fCy4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.218.52.0/22
185.226.40.0/22
Signature Algorithm: sha256WithRSAEncryption
60:3b:04:fa:57:26:f3:fe:97:4a:75:b7:24:ab:60:c0:c5:40:
f5:79:0d:35:68:18:9f:23:1b:44:6c:43:85:64:6f:71:8d:ba:
51:3d:da:68:a4:79:01:c9:99:d3:ec:05:f4:3c:5e:84:1e:99:
f4:44:a8:0b:0e:32:6a:6b:ed:fc:2f:2d:69:65:99:93:69:d2:
0f:8e:3a:1e:ec:7b:54:ee:b2:8a:23:41:0f:8d:7f:cc:cb:74:
4a:6c:3c:68:78:47:b3:52:7a:1e:64:c0:9b:55:77:52:6c:19:
c4:66:d2:cf:5f:f2:bc:49:06:9d:58:65:12:fa:53:56:c6:e8:
0c:47:81:85:e7:7e:f1:bf:3b:fb:17:87:95:ec:c6:08:ee:7b:
62:e4:7f:64:2f:7e:c0:9f:98:68:b5:a8:a1:99:1c:12:a1:23:
9b:f8:22:ba:64:96:d0:36:d8:fd:74:7e:b7:77:e8:b0:01:df:
6d:89:07:37:9e:e2:13:15:e8:1f:00:8d:02:3e:be:ae:ad:ac:
f1:d3:06:84:e6:01:4e:e2:dd:7c:a9:63:93:46:6d:9f:d7:19:
e2:bf:44:d7:25:95:e9:62:bd:94:6d:f0:aa:c7:a2:25:21:c4:
ca:fc:cf:03:89:ed:30:fc:c6:75:95:06:63:93:48:39:59:29:
3e:fa:97:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:09 2024 by rpki-client on console-ams.rpki-client.org