Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/f5873a-8932-426f-8175-38c8dafb3e4f/1/qVhwClCIn6ErL2Q_I7lhCWDYEFo.roa
File: qVhwClCIn6ErL2Q_I7lhCWDYEFo.roa (raw, json)
Hash identifier: h+NlZkXCfOzL5JZiPe4x5oW3xIey6kwLZ5T+97Pmme8=
Subject key identifier: A9:58:70:0A:50:88:9F:A1:2B:2F:64:3F:23:B9:61:09:60:D8:10:5A
Certificate issuer: /CN=65e226bcf4a830b2f448fd6ea9976b152087dd45
Certificate serial: 0188530BD6679E51531A4F6D2FBE9C6B73DB
Authority key identifier: 65:E2:26:BC:F4:A8:30:B2:F4:48:FD:6E:A9:97:6B:15:20:87:DD:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZeImvPSoMLL0SP1uqZdrFSCH3UU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/f5873a-8932-426f-8175-38c8dafb3e4f/1/qVhwClCIn6ErL2Q_I7lhCWDYEFo.roa
Signing time: Thu 25 May 2023 13:14:24 +0000
ROA not before: Thu 25 May 2023 13:14:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42049
IP address blocks: 185.134.192.0/22 maxlen: 22
185.134.192.0/23 maxlen: 23
185.134.194.0/23 maxlen: 23
188.126.0.0/19 maxlen: 19
188.126.0.0/21 maxlen: 21
188.126.0.0/20 maxlen: 20
188.126.8.0/21 maxlen: 21
188.126.16.0/21 maxlen: 21
188.126.16.0/20 maxlen: 20
188.126.24.0/21 maxlen: 21
Validation: Failed, certificate revoked on Fri 26 May 2023 05:33:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:53:0b:d6:67:9e:51:53:1a:4f:6d:2f:be:9c:6b:73:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65e226bcf4a830b2f448fd6ea9976b152087dd45
Validity
Not Before: May 25 13:14:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a958700a50889fa12b2f643f23b9610960d8105a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:6f:d9:e3:69:5f:e7:06:fa:e0:75:27:46:e7:
53:e4:e1:2a:68:fe:eb:df:f8:7f:57:b1:0b:50:eb:
4a:07:4c:a1:d1:52:7f:d7:08:21:19:bd:b5:46:ed:
68:19:5c:d9:da:11:4e:5d:24:be:e9:5a:dc:a3:e8:
6e:36:c6:a7:9e:60:5f:5e:fb:7f:f4:4b:9f:0b:0e:
f1:b7:83:40:d9:44:b4:90:66:f0:3c:1b:3b:93:91:
ef:55:02:a0:ce:e2:e3:ac:42:c2:44:3f:76:68:3f:
5e:da:08:48:b7:56:c8:50:8d:c7:a1:13:e9:52:40:
c5:75:b7:82:e9:51:db:cc:a1:d0:b0:ac:0d:88:1c:
a3:c5:23:31:72:30:0c:b6:74:e6:bb:4e:08:22:5c:
d3:6c:fb:e5:8c:a7:ba:dc:a6:9c:7a:b0:c5:62:e3:
5d:fd:59:9a:af:3b:eb:7c:ed:20:fd:da:3b:73:ec:
c1:7a:8b:75:9c:4f:fe:68:73:09:e5:13:b5:76:ee:
9d:81:38:90:8f:cc:a0:3b:99:c7:a2:ff:89:f3:39:
7f:86:77:c7:16:59:8c:8c:c0:dd:c9:64:88:dd:3d:
94:0f:e5:22:19:90:19:bf:ae:59:21:ff:42:98:4b:
38:aa:41:6d:0a:3c:06:ea:f5:77:7d:24:25:34:b5:
c4:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:58:70:0A:50:88:9F:A1:2B:2F:64:3F:23:B9:61:09:60:D8:10:5A
X509v3 Authority Key Identifier:
keyid:65:E2:26:BC:F4:A8:30:B2:F4:48:FD:6E:A9:97:6B:15:20:87:DD:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZeImvPSoMLL0SP1uqZdrFSCH3UU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/f5873a-8932-426f-8175-38c8dafb3e4f/1/qVhwClCIn6ErL2Q_I7lhCWDYEFo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/f5873a-8932-426f-8175-38c8dafb3e4f/1/ZeImvPSoMLL0SP1uqZdrFSCH3UU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.134.192.0/22
188.126.0.0/19
Signature Algorithm: sha256WithRSAEncryption
86:71:63:86:e1:06:9b:53:ad:ec:cc:6d:22:f5:bf:2b:5e:9e:
69:9e:12:f2:5c:e5:4c:a3:11:8f:dd:0d:e6:67:b4:05:42:61:
51:72:d8:3e:79:45:69:7f:9a:83:37:37:f8:68:5b:28:68:ac:
67:52:b4:c8:ee:60:f1:8c:92:7d:4e:5d:6c:9d:ff:e5:34:73:
53:6f:a9:45:df:f7:c3:c6:ec:e6:5e:a7:61:b1:73:19:5d:8c:
01:ed:d1:7a:93:ca:e2:ab:c0:7b:c5:4a:2a:44:fa:7d:80:1e:
fc:67:e3:36:9c:47:65:80:25:c2:a1:bf:3a:26:72:66:7a:e6:
02:fd:0c:9c:d4:11:77:d5:a1:5b:b6:73:ca:ef:f3:0d:08:a2:
8d:ce:d1:ca:2d:21:12:df:1f:5d:c7:cb:fc:48:c1:10:a5:c1:
98:18:26:34:82:99:f7:3a:8a:d9:cb:40:c6:70:5c:2c:4e:26:
8e:73:ef:47:c6:8b:a1:84:b7:e4:9b:81:d8:76:ef:16:3b:2d:
2f:3f:76:6f:28:06:11:11:44:3b:09:3f:1b:f1:da:fa:92:aa:
ae:a2:36:ad:3c:86:7a:8d:32:cf:9a:5a:20:3d:7d:45:38:24:
74:cd:de:4f:24:46:31:56:5c:be:56:52:f0:a5:b7:7b:e2:05:
02:de:57:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:53 2024 by rpki-client on console-fra.rpki-client.org