Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/819e39-c00c-49b0-a768-4406688eef85/1/qhpoiTYEjyHGjdCyn6j2XtsHrOk.roa
File: qhpoiTYEjyHGjdCyn6j2XtsHrOk.roa (raw, json)
Hash identifier: 2i6HLxm9sMYsYuH+VH2Tv94LjX1HvG3oQIucWWQX4qU=
Subject key identifier: AA:1A:68:89:36:04:8F:21:C6:8D:D0:B2:9F:A8:F6:5E:DB:07:AC:E9
Certificate issuer: /CN=74d34abbe9afba280432c2ab83898c7b950df7ac
Certificate serial: 018626AF04DF4D9A03208DD8FDBF99CA90C4
Authority key identifier: 74:D3:4A:BB:E9:AF:BA:28:04:32:C2:AB:83:89:8C:7B:95:0D:F7:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dNNKu-mvuigEMsKrg4mMe5UN96w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/819e39-c00c-49b0-a768-4406688eef85/1/qhpoiTYEjyHGjdCyn6j2XtsHrOk.roa
Signing time: Mon 06 Feb 2023 12:24:09 +0000
ROA not before: Mon 06 Feb 2023 12:24:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212045
IP address blocks: 85.117.228.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:29:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:26:af:04:df:4d:9a:03:20:8d:d8:fd:bf:99:ca:90:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74d34abbe9afba280432c2ab83898c7b950df7ac
Validity
Not Before: Feb 6 12:24:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=aa1a688936048f21c68dd0b29fa8f65edb07ace9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:46:39:1e:af:41:2e:5c:e8:21:a3:3f:73:87:
48:0a:ac:88:43:a5:b0:54:cc:71:2e:4a:56:3c:b4:
93:55:27:e7:8b:8c:e0:bc:9b:67:c3:56:bf:4a:83:
43:75:48:91:5b:a1:c7:fe:f2:0f:2a:bf:22:9a:ed:
fa:6b:d6:58:7c:0b:a3:87:3e:d0:f2:96:64:9e:ca:
9e:22:3c:29:5f:c2:1c:35:35:c3:aa:56:67:81:b2:
0d:37:48:a6:24:ae:d1:a5:58:b0:b9:15:4e:3c:75:
57:d2:6c:5d:71:19:42:b3:27:96:d7:6b:41:c3:d9:
69:13:55:4f:35:8c:f3:d3:8f:82:e1:66:79:8b:f9:
7d:12:cc:1b:30:2c:5e:fe:ab:6e:87:ba:f3:9a:a1:
dc:fb:f2:0b:75:6f:19:f5:a1:03:e0:38:58:4b:47:
10:d0:70:c4:1f:0b:73:01:98:26:55:d0:dd:55:eb:
f8:c2:f8:ec:a5:43:d8:f0:e9:68:30:bf:ab:30:a8:
54:fe:22:46:8b:e8:02:9e:a2:b2:66:f6:97:07:17:
64:3a:ad:d9:ae:bc:15:03:16:80:ef:c1:6c:19:64:
e2:16:d1:48:27:7b:4d:5f:51:ed:20:77:82:40:54:
36:8a:95:88:9c:33:90:0c:ab:8d:45:0b:e8:db:ad:
55:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:1A:68:89:36:04:8F:21:C6:8D:D0:B2:9F:A8:F6:5E:DB:07:AC:E9
X509v3 Authority Key Identifier:
keyid:74:D3:4A:BB:E9:AF:BA:28:04:32:C2:AB:83:89:8C:7B:95:0D:F7:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dNNKu-mvuigEMsKrg4mMe5UN96w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/819e39-c00c-49b0-a768-4406688eef85/1/qhpoiTYEjyHGjdCyn6j2XtsHrOk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/819e39-c00c-49b0-a768-4406688eef85/1/dNNKu-mvuigEMsKrg4mMe5UN96w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.117.228.0/24
Signature Algorithm: sha256WithRSAEncryption
31:79:cf:d6:b9:87:b5:1d:d2:fb:53:a4:a7:3f:00:c4:68:58:
65:6b:ec:c2:78:fc:ec:2a:00:6c:25:78:d7:91:ef:79:76:0f:
c9:26:7e:f2:1e:88:51:55:30:5e:21:f1:ac:da:b9:d4:f7:37:
53:34:29:ee:81:e0:f6:39:1b:6b:b2:bb:27:0f:a7:51:16:9b:
46:4d:c4:ce:19:73:7c:4f:8d:3f:74:45:a7:58:32:1c:fb:85:
c8:17:fb:70:fa:08:b5:4e:ac:a3:02:7a:05:be:34:a0:cd:d5:
03:67:d1:a2:c8:6a:4f:c6:c8:95:1f:de:ff:c3:3c:9b:09:c0:
7e:40:7c:f6:d9:cb:93:cf:84:2f:26:9c:9d:f5:cf:8a:17:be:
b8:50:0a:ce:26:0a:4f:7b:b9:61:41:4b:30:1c:e2:29:0e:46:
da:86:56:02:57:eb:56:c0:33:53:f1:78:f3:28:d4:21:0a:0b:
4d:24:20:af:f0:8b:e7:5d:62:92:8d:41:4b:88:a6:ab:76:c3:
56:1c:d3:99:65:de:ed:20:30:ba:14:f3:b6:fb:46:a6:84:77:
81:46:0a:63:8f:b1:1c:12:cb:36:5b:3f:48:2a:a1:e9:4d:8a:
19:5b:b8:56:9f:88:53:07:7b:1a:a5:5f:7a:21:6e:9d:ba:13:
a5:c4:ed:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:49:58 2024 by rpki-client on console-ams.rpki-client.org