Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/b8c7ba-92fa-4b73-a924-3d33e5414d9b/1/1QBnK5Oi8i1TZsJ34SPNzBVDAdw.roa
File: 1QBnK5Oi8i1TZsJ34SPNzBVDAdw.roa (raw, json)
Hash identifier: Hn6puwctqjt/ZKdCcLMM6Jv5v3gDxXyglG3BUf1dcXE=
Subject key identifier: D5:00:67:2B:93:A2:F2:2D:53:66:C2:77:E1:23:CD:CC:15:43:01:DC
Certificate issuer: /CN=415a412127b514f6455ec8a86e29d38eb0abb5ac
Certificate serial: 01856F4B86E5831D3EF3604AC0B688DD8019
Authority key identifier: 41:5A:41:21:27:B5:14:F6:45:5E:C8:A8:6E:29:D3:8E:B0:AB:B5:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QVpBISe1FPZFXsiobinTjrCrtaw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/b8c7ba-92fa-4b73-a924-3d33e5414d9b/1/1QBnK5Oi8i1TZsJ34SPNzBVDAdw.roa
Signing time: Sun 01 Jan 2023 21:44:58 +0000
ROA not before: Sun 01 Jan 2023 21:44:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29289
IP address blocks: 109.205.46.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:4b:86:e5:83:1d:3e:f3:60:4a:c0:b6:88:dd:80:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=415a412127b514f6455ec8a86e29d38eb0abb5ac
Validity
Not Before: Jan 1 21:44:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d500672b93a2f22d5366c277e123cdcc154301dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:45:49:78:9a:ce:3b:a5:02:9a:16:ff:50:9b:
27:9c:b5:4b:3e:5d:03:c2:d1:25:88:24:45:7c:d6:
40:d6:49:8f:42:bd:d5:7c:9c:fa:e0:70:5b:c0:23:
93:05:84:72:d5:37:10:f3:4e:5b:c2:c7:30:1f:14:
67:62:e4:f1:8e:17:17:91:d3:0e:87:0c:bf:b9:85:
70:0e:d1:5c:72:d5:31:53:9b:7b:13:63:99:cf:14:
fe:f7:3c:98:8b:d6:5f:d7:98:df:bf:e0:c7:ad:4e:
32:e5:cc:32:50:c2:01:d3:0a:02:45:5a:4e:8a:9c:
db:64:34:3b:23:d5:76:55:96:87:fc:81:e7:be:4c:
fc:d3:71:1e:2f:1c:6f:bb:e1:8c:5b:ef:bb:7c:eb:
68:c9:b3:39:8f:c2:2e:7a:eb:fb:51:c3:c5:13:34:
1e:03:4f:d9:7f:78:38:cb:d0:fa:23:27:8d:9b:44:
e1:ea:74:8a:05:29:9c:d7:b1:49:f5:e9:03:32:26:
04:ff:b2:97:a6:ac:6f:ef:d2:44:6f:5d:e9:05:63:
df:ae:af:21:b9:9c:13:bc:f2:33:6d:c3:0e:8b:5f:
a1:2e:13:43:32:ab:ee:c2:7f:1c:6a:ff:02:a0:b4:
3d:0c:b0:68:c4:c1:44:48:3b:89:83:3e:90:d1:61:
6e:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:00:67:2B:93:A2:F2:2D:53:66:C2:77:E1:23:CD:CC:15:43:01:DC
X509v3 Authority Key Identifier:
keyid:41:5A:41:21:27:B5:14:F6:45:5E:C8:A8:6E:29:D3:8E:B0:AB:B5:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QVpBISe1FPZFXsiobinTjrCrtaw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/b8c7ba-92fa-4b73-a924-3d33e5414d9b/1/1QBnK5Oi8i1TZsJ34SPNzBVDAdw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/b8c7ba-92fa-4b73-a924-3d33e5414d9b/1/QVpBISe1FPZFXsiobinTjrCrtaw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.205.46.0/23
Signature Algorithm: sha256WithRSAEncryption
61:fd:a7:06:20:c7:a0:5d:d4:97:36:9e:0a:fc:e8:55:02:34:
13:ad:09:a7:c2:64:7b:0e:6d:c8:0d:97:f8:71:a5:19:04:cc:
37:22:a2:b9:31:98:c7:16:02:a9:93:e1:2a:5c:45:62:49:00:
bb:a0:f8:b2:16:5a:5e:1a:3c:60:70:47:94:0a:0a:2b:7e:96:
0d:d3:e4:0c:fc:ca:a2:c7:02:ab:34:1a:b9:4e:38:d0:bc:18:
84:ff:ce:2d:6c:06:6b:09:00:ac:a8:7a:bb:2a:92:48:87:56:
dd:0e:8c:45:8d:8a:db:4d:14:d0:b0:4f:e8:44:ef:54:8c:ed:
35:06:ac:1c:29:6e:e4:bc:ca:87:18:1b:5b:95:04:79:71:ed:
44:ae:3d:4c:f4:cf:77:01:cb:43:6a:9f:cc:3e:ca:9f:c9:be:
39:e2:02:cc:71:5e:5a:78:57:9f:02:f5:a0:22:2c:40:bc:5e:
1f:a7:7e:79:d3:20:48:67:94:48:19:77:34:3d:fe:c6:c7:e2:
64:6c:fa:33:5e:b0:45:6a:da:00:a9:2e:2a:02:e9:15:00:26:
06:22:d8:68:17:8c:13:f8:8d:c3:01:89:37:a6:cf:c5:8a:2a:
7f:f1:25:00:0c:69:3e:dc:39:eb:b0:c3:b9:57:4a:5a:99:14:
69:5a:af:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:56 2024 by rpki-client on console-fra.rpki-client.org