Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/00f5b4-dfd9-4eb2-afdb-138ed591efaa/1/qLiSCSh-caU9JyqvXdgNoMzHh3Y.roa
File: qLiSCSh-caU9JyqvXdgNoMzHh3Y.roa (raw, json)
Hash identifier: b2C6TveniRmx1ZMljcQZi7ELx7bX/84kuXGU74ok4x0=
Subject key identifier: A8:B8:92:09:28:7E:71:A5:3D:27:2A:AF:5D:D8:0D:A0:CC:C7:87:76
Certificate issuer: /CN=9bae428ee8cd4604c1fbc141278ef0d75376282a
Certificate serial: 018572CCDBC3EE5787D6C70572C15F593B8B
Authority key identifier: 9B:AE:42:8E:E8:CD:46:04:C1:FB:C1:41:27:8E:F0:D7:53:76:28:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m65CjujNRgTB-8FBJ47w11N2KCo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/00f5b4-dfd9-4eb2-afdb-138ed591efaa/1/qLiSCSh-caU9JyqvXdgNoMzHh3Y.roa
Signing time: Mon 02 Jan 2023 14:05:06 +0000
ROA not before: Mon 02 Jan 2023 14:05:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61213
IP address blocks: 91.123.48.0/20 maxlen: 20
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:31:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:cc:db:c3:ee:57:87:d6:c7:05:72:c1:5f:59:3b:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bae428ee8cd4604c1fbc141278ef0d75376282a
Validity
Not Before: Jan 2 14:05:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a8b89209287e71a53d272aaf5dd80da0ccc78776
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:ef:b4:a6:be:6a:36:9a:05:7b:d5:0f:58:c3:
a0:2d:d5:5c:a3:59:56:b8:10:fb:52:db:8d:7d:0d:
9f:cf:1b:60:94:26:61:80:37:ce:07:7f:82:3f:ed:
8a:8f:56:4b:dd:36:c1:09:38:09:b1:53:87:13:ef:
1e:4b:56:cd:5a:fd:33:64:e1:9e:93:15:79:1b:80:
76:db:bb:35:43:06:84:31:28:36:6a:51:37:2a:bd:
4b:8c:ee:7f:1e:85:d9:11:eb:ff:79:99:0f:9d:30:
32:b9:d0:02:35:5f:7b:dc:e9:1e:f4:6d:2c:16:f2:
d3:ea:ef:d1:f8:34:1b:f8:e7:c3:05:cc:c6:c1:2a:
7d:f7:e8:21:51:51:04:9f:14:c2:9a:c2:d7:7c:fc:
40:fc:b6:5e:38:a7:64:4d:3d:2d:d5:bf:36:6f:20:
75:69:d0:c2:15:ef:93:d7:af:1e:9b:45:38:07:a6:
56:55:89:62:81:6f:a8:61:65:f0:5a:10:a8:6d:00:
ac:76:ad:61:8a:60:b2:d8:1d:90:49:bf:a2:8d:9b:
c2:2a:1b:8d:4f:f4:a5:2d:6f:8b:d2:4d:3c:18:2f:
e9:6c:33:25:b3:dc:f6:5e:54:79:de:fd:df:2d:3c:
e9:cc:85:f0:b8:a1:a6:f1:10:4a:b7:c1:bb:32:8c:
0c:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:B8:92:09:28:7E:71:A5:3D:27:2A:AF:5D:D8:0D:A0:CC:C7:87:76
X509v3 Authority Key Identifier:
keyid:9B:AE:42:8E:E8:CD:46:04:C1:FB:C1:41:27:8E:F0:D7:53:76:28:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m65CjujNRgTB-8FBJ47w11N2KCo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/00f5b4-dfd9-4eb2-afdb-138ed591efaa/1/qLiSCSh-caU9JyqvXdgNoMzHh3Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/00f5b4-dfd9-4eb2-afdb-138ed591efaa/1/m65CjujNRgTB-8FBJ47w11N2KCo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.123.48.0/20
Signature Algorithm: sha256WithRSAEncryption
43:e2:cc:fd:a1:22:0a:ca:c0:c2:7e:be:2c:55:41:4d:b6:3c:
f7:70:0b:0a:12:10:fc:2d:50:e1:9a:61:32:26:fb:c1:30:f5:
22:c0:0c:3e:50:34:69:ea:9e:d4:e0:52:33:56:1b:f1:8f:a2:
53:8c:f1:87:2e:a3:8c:76:f2:28:56:ff:af:80:79:08:8c:90:
9a:29:72:c2:8c:5d:cf:81:2c:66:61:54:6f:ad:70:e6:94:43:
09:e3:ef:3c:fa:dc:bc:f4:20:6a:ed:c5:88:20:b8:95:27:d2:
12:6d:2f:b7:22:bf:70:04:db:4f:3e:c1:76:aa:04:17:b9:00:
aa:7c:bc:44:af:e4:38:88:88:d9:d0:e7:22:a6:07:7a:b6:e9:
2e:d3:10:36:70:ad:f4:10:5a:05:d7:b3:8b:0e:f3:42:49:e1:
59:7d:81:48:3a:62:ff:9c:42:7e:e6:32:29:b1:cb:03:ce:06:
2e:ba:47:2d:3b:5d:fe:f6:92:21:3c:77:94:1d:ea:13:e7:1d:
49:f2:3c:5a:9f:5f:0c:75:f4:ae:64:85:00:5a:49:25:da:0e:
0f:bd:5c:02:77:dc:3a:1c:17:94:dd:57:aa:ee:d3:c4:23:14:
9d:b2:4e:e4:70:f2:83:4e:97:ad:47:cd:5e:50:04:89:b1:25:
5c:21:99:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:42 2024 by rpki-client on console-fra.rpki-client.org