Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/7656db-94a5-45be-9435-7061356bef1b/1/qqskb3xPQW0XTt4vWhj_MxKJT08.roa
File: qqskb3xPQW0XTt4vWhj_MxKJT08.roa (raw, json)
Hash identifier: BF/rdi+VScQ7QddcS0onJyulvAyzwafOv4cHKxdptH4=
Subject key identifier: AA:AB:24:6F:7C:4F:41:6D:17:4E:DE:2F:5A:18:FF:33:12:89:4F:4F
Certificate issuer: /CN=a1d71853324eb060fbafc988233860499c96c53a
Certificate serial: 018A679F9B9C31E00BF565F007285D14A835
Authority key identifier: A1:D7:18:53:32:4E:B0:60:FB:AF:C9:88:23:38:60:49:9C:96:C5:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/odcYUzJOsGD7r8mIIzhgSZyWxTo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/7656db-94a5-45be-9435-7061356bef1b/1/qqskb3xPQW0XTt4vWhj_MxKJT08.roa
Signing time: Tue 05 Sep 2023 23:13:47 +0000
ROA not before: Tue 05 Sep 2023 23:13:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 45.148.132.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 06 Sep 2023 23:14:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:67:9f:9b:9c:31:e0:0b:f5:65:f0:07:28:5d:14:a8:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1d71853324eb060fbafc988233860499c96c53a
Validity
Not Before: Sep 5 23:13:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=aaab246f7c4f416d174ede2f5a18ff3312894f4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:e1:c0:d5:d0:cb:9a:fb:ae:31:e4:f0:8c:1e:
34:f6:ba:8c:e2:09:26:ef:2b:50:dc:3c:fa:9b:76:
56:94:92:19:a5:df:d2:b7:27:98:c1:df:e7:3e:ab:
8a:ca:76:fc:e2:5a:e2:f6:4e:bc:39:8a:19:02:c2:
a6:b4:aa:9e:ab:b7:82:61:7d:f3:ca:55:9e:5b:5b:
ec:c4:b5:89:5b:e5:28:e2:f3:03:a9:df:81:19:4b:
f9:01:14:7a:56:01:8d:b0:30:24:0d:c9:c2:27:6a:
09:68:63:51:9a:2d:60:c3:3d:5c:61:4f:22:2a:9e:
f9:ca:2f:33:c3:d8:ac:73:3e:4d:ab:6f:03:ef:70:
09:ed:b1:6a:81:dc:6f:25:51:df:eb:ed:a0:a1:00:
81:0d:08:11:13:1c:03:3e:f7:9a:e5:fc:4f:a4:61:
76:82:d5:99:b1:9c:1b:48:bd:02:1f:3f:72:43:6b:
21:25:96:ae:1e:e0:8c:2b:0e:94:03:5a:42:bc:6f:
35:36:69:e4:47:b6:d5:24:f4:b5:5b:9a:7e:38:7a:
6a:94:0a:2b:57:5e:18:a6:53:0c:39:4f:70:5f:fa:
f2:2c:47:1f:c1:6d:c7:8a:59:c5:91:7e:6b:78:69:
e9:e0:ca:6b:4e:5f:24:eb:7f:fb:d7:82:24:77:d8:
09:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:AB:24:6F:7C:4F:41:6D:17:4E:DE:2F:5A:18:FF:33:12:89:4F:4F
X509v3 Authority Key Identifier:
keyid:A1:D7:18:53:32:4E:B0:60:FB:AF:C9:88:23:38:60:49:9C:96:C5:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/odcYUzJOsGD7r8mIIzhgSZyWxTo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/7656db-94a5-45be-9435-7061356bef1b/1/qqskb3xPQW0XTt4vWhj_MxKJT08.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/7656db-94a5-45be-9435-7061356bef1b/1/odcYUzJOsGD7r8mIIzhgSZyWxTo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.148.132.0/24
Signature Algorithm: sha256WithRSAEncryption
68:41:10:c0:26:b5:d3:be:0a:85:3d:af:c2:7d:5c:1e:18:0d:
ca:a6:ac:93:55:a0:49:aa:3a:9c:73:40:47:e6:8a:91:ef:dd:
d0:14:eb:0b:94:da:8e:b7:ef:dd:df:e5:94:1e:96:36:6c:49:
4c:21:27:e0:6e:bc:92:1c:fe:98:89:d2:28:01:f1:3b:4f:5a:
82:71:5d:11:86:66:67:f8:a1:28:1c:88:e5:f3:9d:7d:6c:50:
61:12:00:47:d9:a0:e2:14:bc:0c:96:49:39:78:11:22:9c:13:
9a:4f:97:bb:5f:d4:cd:60:11:61:e2:7f:db:52:de:94:73:f7:
7b:5e:a3:bc:6d:ce:cb:af:5d:bb:27:04:60:c9:8e:71:ec:7a:
74:01:7e:c0:99:1c:ea:4b:8a:d8:8e:61:89:ad:0b:53:14:39:
fe:4d:1a:17:a7:af:67:41:59:41:31:fa:76:28:e5:3c:07:24:
45:91:1a:ba:14:b1:ce:22:db:fe:42:b6:cd:43:ec:ed:cf:93:
c7:98:b0:14:ad:09:55:9e:5c:bc:45:16:9e:78:55:3b:09:de:
0b:86:26:59:bc:c2:24:49:fe:b1:75:60:49:d1:20:b4:f3:72:
e0:f9:ac:13:5d:fd:12:0e:e2:94:cb:0a:17:cd:b9:6d:9c:20:
d0:9c:93:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:51 2024 by rpki-client on console-fra.rpki-client.org