Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/f560e1-7840-4951-ab78-5001539d7185/1/QkEOGBR-Nn3nDStyP9o84MFGrzo.roa
File: QkEOGBR-Nn3nDStyP9o84MFGrzo.roa (raw, json)
Hash identifier: 7XLOVYlrjHMPvs41LRY1z2kx0IBfsNQYyfkRYTRKkeo=
Subject key identifier: 42:41:0E:18:14:7E:36:7D:E7:0D:2B:72:3F:DA:3C:E0:C1:46:AF:3A
Certificate issuer: /CN=8b47aa09f2c610f6f44b4e75c1cd9dcd3884e55d
Certificate serial: 018C1EE1C4447B8A143CD373F6BA2C142882
Authority key identifier: 8B:47:AA:09:F2:C6:10:F6:F4:4B:4E:75:C1:CD:9D:CD:38:84:E5:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i0eqCfLGEPb0S051wc2dzTiE5V0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/f560e1-7840-4951-ab78-5001539d7185/1/QkEOGBR-Nn3nDStyP9o84MFGrzo.roa
Signing time: Thu 30 Nov 2023 06:19:21 +0000
ROA not before: Thu 30 Nov 2023 06:19:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212939
IP address blocks: 185.86.183.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:30:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:1e:e1:c4:44:7b:8a:14:3c:d3:73:f6:ba:2c:14:28:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b47aa09f2c610f6f44b4e75c1cd9dcd3884e55d
Validity
Not Before: Nov 30 06:19:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=42410e18147e367de70d2b723fda3ce0c146af3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:4d:47:7a:4d:6b:97:c8:c3:c1:8f:c9:42:c1:
90:32:02:2c:4d:50:45:c5:a4:d8:bb:6a:2e:a9:29:
ef:d2:23:bc:8d:91:1f:cb:42:b4:02:20:7e:e0:7f:
bb:e5:fd:f2:90:cb:5a:44:b5:fd:6d:71:a2:f6:66:
f6:5f:6d:4d:03:7a:4c:b8:8b:5f:74:aa:3a:09:c5:
d4:0d:eb:54:47:00:cd:c6:7c:27:cc:fa:b3:a3:b4:
f6:f6:96:56:16:46:d0:7e:5d:82:2c:f6:98:48:51:
45:6a:d2:07:0e:c0:a7:cf:27:bd:d1:ac:e5:b1:8f:
7a:27:d4:7b:f3:dd:98:ca:0e:31:3a:24:9c:61:44:
4e:56:fa:f2:36:75:19:24:60:54:49:df:ed:27:c6:
91:8b:56:0b:08:f0:d8:66:e4:54:fa:8e:35:39:10:
a0:5e:5b:97:b6:6e:41:21:b0:ab:7b:09:b7:02:b7:
5f:59:3a:fc:99:27:0b:76:f6:6a:36:61:9e:55:93:
a1:34:3b:3e:eb:47:c4:79:ca:46:b7:a2:ef:e7:7c:
2a:c1:df:76:cc:eb:21:b9:b2:92:93:32:82:88:d8:
eb:39:db:c6:78:3f:10:ec:27:69:91:8e:39:88:1b:
ce:b6:f6:96:b1:4e:78:8c:ad:46:b5:00:5a:69:c1:
c1:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:41:0E:18:14:7E:36:7D:E7:0D:2B:72:3F:DA:3C:E0:C1:46:AF:3A
X509v3 Authority Key Identifier:
keyid:8B:47:AA:09:F2:C6:10:F6:F4:4B:4E:75:C1:CD:9D:CD:38:84:E5:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i0eqCfLGEPb0S051wc2dzTiE5V0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/f560e1-7840-4951-ab78-5001539d7185/1/QkEOGBR-Nn3nDStyP9o84MFGrzo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/f560e1-7840-4951-ab78-5001539d7185/1/i0eqCfLGEPb0S051wc2dzTiE5V0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.86.183.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:b7:3a:1f:d6:94:24:84:ed:78:f3:46:a4:ab:d3:f1:0f:2f:
0c:66:5a:7b:7f:cb:42:b6:fe:01:ac:69:c8:24:60:5c:2a:88:
54:33:9a:f5:f5:89:3f:76:d2:68:04:61:04:c9:ea:84:a2:ab:
25:a3:5a:f6:91:33:9c:8d:49:34:d0:1d:e7:2d:da:bd:f8:24:
f4:34:19:45:d0:47:9e:71:8d:2c:5f:a7:22:5b:05:fb:ee:eb:
11:5f:96:a3:6f:f4:45:07:f0:0c:27:35:fd:31:87:83:b2:7e:
b9:60:cf:36:8c:1d:c8:10:80:2c:02:a8:ac:14:0a:17:cb:14:
25:94:d0:a8:b9:12:18:b4:56:9f:09:73:34:7d:a4:e2:e6:0c:
da:da:7e:f8:d3:39:f7:da:53:2e:6b:6b:8e:8c:30:76:53:67:
70:eb:48:d1:cc:c0:60:b9:27:e6:44:03:c9:4f:2a:aa:22:99:
68:41:20:8b:a9:3b:d5:90:83:67:24:03:56:06:26:ba:85:c8:
69:f8:79:0c:e6:a1:f3:6c:6b:ea:14:e2:34:60:03:c2:e0:00:
54:c4:36:41:04:1c:3c:41:fc:52:eb:75:cd:3b:1a:d8:94:49:
e5:03:c6:6d:8f:b1:fc:f3:c6:6e:95:93:32:84:3b:7c:6d:83:
c1:60:e2:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:35 2024 by rpki-client on console-ams.rpki-client.org