Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/8a8b4c-8f12-4c8d-8be4-69b8d6b53e8c/1/qKS2wwr7N8AE5Oqw7VE6OesuAa8.roa
File: qKS2wwr7N8AE5Oqw7VE6OesuAa8.roa (raw, json)
Hash identifier: NerGen5XJp0yZnp8gA/72kGx2+pogWgPkwjRDEQAomY=
Subject key identifier: A8:A4:B6:C3:0A:FB:37:C0:04:E4:EA:B0:ED:51:3A:39:EB:2E:01:AF
Certificate issuer: /CN=d367d1635b46b3c2274b287505bbbd7d915dcaf5
Certificate serial: 01856E38E2868063BF0565BAF9BBD10069E4
Authority key identifier: D3:67:D1:63:5B:46:B3:C2:27:4B:28:75:05:BB:BD:7D:91:5D:CA:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/02fRY1tGs8InSyh1Bbu9fZFdyvU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/8a8b4c-8f12-4c8d-8be4-69b8d6b53e8c/1/qKS2wwr7N8AE5Oqw7VE6OesuAa8.roa
Signing time: Sun 01 Jan 2023 16:44:59 +0000
ROA not before: Sun 01 Jan 2023 16:44:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35838
IP address blocks: 178.255.80.0/21 maxlen: 21
2a02:1788::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:38:e2:86:80:63:bf:05:65:ba:f9:bb:d1:00:69:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d367d1635b46b3c2274b287505bbbd7d915dcaf5
Validity
Not Before: Jan 1 16:44:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a8a4b6c30afb37c004e4eab0ed513a39eb2e01af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:7d:fb:8e:84:c8:9b:e4:7b:e2:7a:fb:1d:4f:
a3:8d:99:4d:25:48:52:2d:25:be:41:2c:00:1b:84:
d5:2f:7f:04:dd:6d:e3:2d:d7:0f:7e:88:eb:8a:36:
f1:aa:be:8f:e2:3b:46:a9:7b:3e:be:2f:68:e1:e1:
e1:93:d7:09:ff:cc:3b:95:9a:8d:d3:18:38:2a:a7:
62:5a:3c:85:ed:26:83:9d:3e:38:43:5b:56:fa:e2:
82:00:f8:39:f7:5f:75:d6:85:f5:ca:8f:f2:92:c3:
7c:cb:51:44:62:6f:1b:2d:12:76:30:b7:54:77:84:
19:ab:8a:81:aa:a1:21:fa:06:6e:30:bc:bc:95:72:
98:cf:55:56:9d:4c:74:3e:5e:69:ef:96:94:8b:bb:
e6:2a:80:1c:8b:65:f6:94:2d:cb:9e:37:df:9d:16:
af:64:9a:f4:fc:22:54:9f:c6:e4:7d:ad:cb:8d:77:
00:30:98:4f:c5:7b:4f:ba:8a:f2:d5:33:05:4c:f0:
5d:42:78:aa:86:b6:6d:ba:94:98:96:76:1c:c1:23:
e4:0f:49:69:94:ec:9a:94:94:ff:22:23:54:d9:7d:
3f:67:b6:32:99:97:45:30:d4:4d:eb:4f:7e:0b:23:
26:6b:fc:1b:c9:a8:cc:30:ab:5a:7f:41:a5:ca:01:
9d:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:A4:B6:C3:0A:FB:37:C0:04:E4:EA:B0:ED:51:3A:39:EB:2E:01:AF
X509v3 Authority Key Identifier:
keyid:D3:67:D1:63:5B:46:B3:C2:27:4B:28:75:05:BB:BD:7D:91:5D:CA:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/02fRY1tGs8InSyh1Bbu9fZFdyvU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/8a8b4c-8f12-4c8d-8be4-69b8d6b53e8c/1/qKS2wwr7N8AE5Oqw7VE6OesuAa8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/8a8b4c-8f12-4c8d-8be4-69b8d6b53e8c/1/02fRY1tGs8InSyh1Bbu9fZFdyvU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.255.80.0/21
IPv6:
2a02:1788::/32
Signature Algorithm: sha256WithRSAEncryption
8b:2c:82:94:79:fc:5c:44:b4:b0:85:2b:c6:c3:f3:47:dd:58:
86:c2:16:bb:b1:33:40:65:93:c5:8a:7f:a9:00:58:73:07:e7:
0d:5b:04:d0:aa:68:2e:1a:ca:fb:73:35:54:7c:af:d8:0a:c4:
8e:23:94:97:f7:ab:8e:02:df:31:8c:07:8f:6d:4b:e4:77:04:
3c:f4:85:7f:a2:82:2e:da:1b:80:f7:aa:dd:ca:f0:ee:23:66:
2a:6c:85:52:3a:aa:46:27:d0:77:24:c3:c5:d3:9a:09:fa:5a:
35:07:d4:30:3c:59:59:f8:f9:7b:d3:f6:2c:18:10:74:9e:df:
7f:e7:d2:22:be:45:07:9e:4f:69:94:a3:54:ac:2c:68:ca:d9:
c4:e4:b7:56:85:38:96:92:09:1a:40:49:b7:db:1e:86:40:be:
24:92:07:f0:3a:e8:a1:81:21:1b:18:e3:b0:6e:51:23:40:aa:
68:7c:68:f9:f4:c4:ec:5d:85:69:f2:71:8b:fe:89:bd:2c:af:
a5:7f:d7:ab:24:d0:6b:ea:c0:75:cd:c3:ad:6b:6a:f0:6a:85:
dd:56:82:d2:a0:0b:cf:b2:1d:3a:3d:a1:1d:bd:b7:75:ef:6c:
91:87:9a:04:38:e2:b0:15:2d:b0:ac:a1:c5:db:63:a3:50:bd:
40:36:e1:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:29 2023 by rpki-client on console-ams.rpki-client.org