Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/qcTA1brixbUdL31Z_yLA9EnvaFw.roa
File: qcTA1brixbUdL31Z_yLA9EnvaFw.roa (raw, json)
Hash identifier: B0ZtVL9U+4RC3DITeNjIbYY7X1AdKQokSi8KNbfLb1s=
Subject key identifier: A9:C4:C0:D5:BA:E2:C5:B5:1D:2F:7D:59:FF:22:C0:F4:49:EF:68:5C
Certificate issuer: /CN=d45bdf6eec08370ae1f67e83f99b5ac1fe26872c
Certificate serial: 018CCA2984460A451BCBBF81922F31DA262D
Authority key identifier: D4:5B:DF:6E:EC:08:37:0A:E1:F6:7E:83:F9:9B:5A:C1:FE:26:87:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1FvfbuwINwrh9n6D-Ztawf4mhyw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/qcTA1brixbUdL31Z_yLA9EnvaFw.roa
Signing time: Tue 02 Jan 2024 12:32:47 +0000
ROA not before: Tue 02 Jan 2024 12:32:47 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 36351
IP address blocks: 85.203.37.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Apr 2024 10:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:29:84:46:0a:45:1b:cb:bf:81:92:2f:31:da:26:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d45bdf6eec08370ae1f67e83f99b5ac1fe26872c
Validity
Not Before: Jan 2 12:32:47 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a9c4c0d5bae2c5b51d2f7d59ff22c0f449ef685c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:5c:f5:eb:0c:1c:75:25:5c:1e:83:f0:a8:6f:
03:9e:e6:cd:9f:2f:dd:1a:f2:7f:bc:05:26:eb:49:
87:2d:8a:5c:a6:4c:5a:d9:c3:47:60:ef:43:06:ab:
3f:91:30:53:99:d5:45:bc:4b:3a:05:49:82:79:f9:
30:7e:0d:67:81:93:b0:f2:0a:e3:27:a8:b4:ec:1d:
92:40:07:84:5d:7b:70:a3:ce:ee:47:e7:f3:e5:7c:
e6:2d:46:3c:9b:b1:12:fa:ca:6f:26:69:25:a2:96:
8f:98:0b:9e:45:4a:a8:ff:93:18:88:be:cb:2c:7a:
5a:47:32:9b:6a:44:b0:af:29:6a:8b:b7:ee:56:6c:
22:6c:8e:c6:58:29:95:3d:c8:b4:7b:b2:d2:36:c2:
86:b9:f5:b8:c9:66:98:20:d3:2f:b1:0e:e9:53:8a:
85:5b:dc:6f:c4:9d:4a:92:e5:15:79:37:45:d1:09:
d2:11:78:39:9b:63:93:66:a8:23:3c:ce:67:f9:25:
fb:7f:72:73:d1:a1:46:ae:88:f5:60:81:8c:fd:45:
f2:2e:df:b9:64:16:4d:cb:3b:87:0e:e0:8c:09:27:
28:22:a2:30:cb:9e:ce:e0:54:26:66:e2:f9:17:ca:
c4:c3:27:b5:0d:25:9e:ba:3f:ca:88:85:8a:59:5d:
32:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:C4:C0:D5:BA:E2:C5:B5:1D:2F:7D:59:FF:22:C0:F4:49:EF:68:5C
X509v3 Authority Key Identifier:
keyid:D4:5B:DF:6E:EC:08:37:0A:E1:F6:7E:83:F9:9B:5A:C1:FE:26:87:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1FvfbuwINwrh9n6D-Ztawf4mhyw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/qcTA1brixbUdL31Z_yLA9EnvaFw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/1FvfbuwINwrh9n6D-Ztawf4mhyw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.203.37.0/24
Signature Algorithm: sha256WithRSAEncryption
98:d8:66:1f:fe:eb:25:b5:ce:e1:8d:d4:0b:be:da:a5:94:b9:
f1:29:ca:30:28:3d:7e:b9:ac:e6:a4:d0:0d:4f:59:87:3c:e3:
11:6c:c4:1c:99:00:fb:7a:c2:ea:28:a1:d3:a8:ba:8a:40:d5:
d8:31:1b:bf:aa:48:eb:e2:1c:c5:57:40:d9:ed:7e:e0:37:45:
ba:b7:c7:11:06:af:1f:7d:7e:c6:c1:14:fe:a6:ce:92:7d:5e:
58:30:1c:61:57:ab:ad:fb:13:83:85:80:f7:e4:04:06:7b:d0:
6a:9f:88:bb:e5:f6:d0:87:9d:f0:ea:54:52:00:6a:56:08:f0:
1d:dd:90:d1:c1:90:ee:b0:50:04:ea:9e:8a:dd:39:a1:24:e0:
03:4a:30:60:7d:e0:13:c8:ee:21:af:b0:4c:55:7f:26:9b:f0:
82:76:34:05:3b:16:7e:88:d9:d1:a2:69:8e:91:06:00:f0:d8:
e2:66:fb:29:92:3f:72:12:59:51:ef:d3:73:05:eb:18:c6:bc:
f1:12:ab:45:79:86:5e:e8:b7:69:8f:cb:74:94:45:84:e5:a5:
25:aa:ac:32:84:98:c9:f6:93:1c:b1:43:e0:8c:61:4d:5c:f8:
3f:4b:1f:a7:34:1b:93:4a:5e:57:de:06:d2:7a:30:04:c5:61:
f5:04:b5:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 1 10:44:47 2024 by rpki-client on console-ams.rpki-client.org