Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/29e9bc-b190-409e-86b0-eec5d50efa94/1/QiHOLGUo_0xeqjuM3oyaIRGfi5c.roa
File: QiHOLGUo_0xeqjuM3oyaIRGfi5c.roa (raw, json)
Hash identifier: MUjie8yg0+ioO5qEgDakF7Jhq+Ro89okNCYxr994ff8=
Subject key identifier: 42:21:CE:2C:65:28:FF:4C:5E:AA:3B:8C:DE:8C:9A:21:11:9F:8B:97
Certificate issuer: /CN=b3a5d99863db2e49b44f6c324eb04388fc7515d2
Certificate serial: 018BD8B9DF39CEA9851DCB25E15E55BC825D
Authority key identifier: B3:A5:D9:98:63:DB:2E:49:B4:4F:6C:32:4E:B0:43:88:FC:75:15:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s6XZmGPbLkm0T2wyTrBDiPx1FdI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/29e9bc-b190-409e-86b0-eec5d50efa94/1/QiHOLGUo_0xeqjuM3oyaIRGfi5c.roa
Signing time: Thu 16 Nov 2023 15:22:21 +0000
ROA not before: Thu 16 Nov 2023 15:22:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 4445
IP address blocks: 46.190.128.0/17 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 14:35:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:d8:b9:df:39:ce:a9:85:1d:cb:25:e1:5e:55:bc:82:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3a5d99863db2e49b44f6c324eb04388fc7515d2
Validity
Not Before: Nov 16 15:22:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4221ce2c6528ff4c5eaa3b8cde8c9a21119f8b97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:59:f1:ce:0e:88:2d:a4:e4:d8:1b:1f:83:25:
6f:1b:f2:c6:44:ba:fd:da:80:e3:f0:e2:36:fd:23:
2f:f0:77:f5:56:cd:57:3c:44:0e:7c:15:c9:f3:5d:
06:e6:0b:99:41:d5:bf:e5:4f:5e:5b:28:bc:5c:0c:
88:21:05:0f:f7:4d:18:f4:f8:04:5a:c5:a4:0e:08:
5b:4d:cd:a2:84:c3:c7:45:55:9e:0d:4c:c8:5a:74:
29:b2:1d:0c:e4:3d:9e:4d:19:44:41:28:93:09:0b:
a0:49:12:ee:4a:44:b1:ac:6a:35:d8:e2:ba:c3:65:
3c:98:d4:e9:5d:ab:56:12:21:4a:03:86:3d:35:7a:
dc:a4:d1:ae:24:24:22:04:8c:82:87:a3:e0:6d:b3:
86:4f:2e:4b:61:f3:4c:50:71:91:8a:d6:46:af:6c:
0b:87:28:e1:e9:15:da:d5:79:a8:d8:11:30:c6:d0:
99:6b:98:d3:d4:3c:1a:1d:ec:09:eb:8f:90:46:9f:
95:81:1f:cf:b8:88:a7:a0:15:e9:3a:37:93:35:ef:
c3:a2:e3:18:d6:d9:18:70:42:0d:79:a1:36:6e:bc:
90:2f:0f:7b:4d:bd:6a:72:b8:29:ef:40:20:5e:11:
42:40:04:dd:0c:e2:cc:e6:56:cc:0a:98:b2:a9:82:
91:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:21:CE:2C:65:28:FF:4C:5E:AA:3B:8C:DE:8C:9A:21:11:9F:8B:97
X509v3 Authority Key Identifier:
keyid:B3:A5:D9:98:63:DB:2E:49:B4:4F:6C:32:4E:B0:43:88:FC:75:15:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s6XZmGPbLkm0T2wyTrBDiPx1FdI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/29e9bc-b190-409e-86b0-eec5d50efa94/1/QiHOLGUo_0xeqjuM3oyaIRGfi5c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/29e9bc-b190-409e-86b0-eec5d50efa94/1/s6XZmGPbLkm0T2wyTrBDiPx1FdI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.190.128.0/17
Signature Algorithm: sha256WithRSAEncryption
5f:57:de:bf:bb:50:5a:5b:96:19:a9:7b:ca:9d:17:56:ca:7f:
80:f9:d3:6a:7b:18:0a:44:05:58:78:0f:56:a2:11:a6:11:b7:
98:97:f2:e6:c4:4d:b4:38:74:61:2c:72:58:44:09:7b:a7:3c:
59:27:a5:c1:2a:5f:1f:47:8d:f6:36:8e:eb:a6:bb:20:28:7d:
71:9c:36:3d:f6:e8:fb:71:9d:0d:ed:44:84:b5:af:b5:54:be:
02:d0:c9:ea:c3:ef:99:02:a6:6e:d4:f9:1a:df:00:dc:ab:2a:
62:7b:e0:bd:11:5a:2e:00:1d:44:47:20:f4:f6:4f:0f:0a:cd:
53:86:6b:d6:77:60:50:1a:ba:13:64:e8:f1:47:27:6f:9c:4b:
ec:c7:90:00:4e:c7:8e:74:6d:75:80:9a:0c:51:bd:0b:50:0f:
cf:1e:a9:25:56:30:63:82:29:e7:b6:44:8c:9d:53:f8:8b:28:
aa:5c:a8:44:b3:42:ee:d1:af:fa:2f:30:5a:7b:69:eb:55:f9:
34:57:37:43:bf:13:fb:53:7f:18:7b:5d:e0:15:c4:a7:50:57:
6c:70:31:40:bd:19:19:a9:d0:f6:b7:69:4d:4b:ba:e9:62:34:
0d:e0:d5:97:07:03:9e:1f:00:23:7d:54:3a:c3:88:27:56:26:
87:1f:34:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:04 2024 by rpki-client on console-fra.rpki-client.org