Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/QMHDw-Kc8B1C0fWRWoK3LBO6XAs.roa
File: QMHDw-Kc8B1C0fWRWoK3LBO6XAs.roa (raw, json)
Hash identifier: Qn6u25F4ueU/7txujG+7vsv1t8XhomT81GlN5ptVTRc=
Subject key identifier: 40:C1:C3:C3:E2:9C:F0:1D:42:D1:F5:91:5A:82:B7:2C:13:BA:5C:0B
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 018CCA2A74E02F81FA7C36DCCF5AB922DFC7
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/QMHDw-Kc8B1C0fWRWoK3LBO6XAs.roa
Signing time: Tue 02 Jan 2024 12:33:49 +0000
ROA not before: Tue 02 Jan 2024 12:33:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198154
IP address blocks: 45.146.241.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Apr 2024 02:11:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2a:74:e0:2f:81:fa:7c:36:dc:cf:5a:b9:22:df:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: Jan 2 12:33:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=40c1c3c3e29cf01d42d1f5915a82b72c13ba5c0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:c5:14:e0:e4:be:2e:2d:36:67:fc:51:ed:46:
e9:19:c1:ce:34:0d:80:51:a5:76:d0:47:b6:a5:a5:
c5:79:aa:3a:db:20:99:ab:4a:84:33:65:ef:df:64:
c1:01:11:d6:f9:17:3a:1c:86:19:ef:80:fb:81:a2:
42:d6:a0:23:61:5b:89:44:33:b8:88:0b:ee:fa:32:
a8:32:ca:cb:df:04:23:6c:8b:f9:a7:77:3d:e3:80:
70:d8:68:7a:5f:44:4a:53:b9:a7:1b:11:da:d6:36:
3c:b6:b7:97:2c:56:cf:f7:e7:01:bd:05:53:58:68:
4f:40:02:ed:10:25:f2:2c:95:ce:8b:a4:be:fc:49:
b1:b9:a2:8e:54:f5:8c:db:f2:9b:75:0c:a6:ab:74:
4a:cb:2c:bd:17:2c:75:7e:87:b7:14:14:3d:e3:56:
7f:f3:75:c1:27:b4:cf:41:34:d8:1a:a5:24:24:3a:
93:fe:f1:72:8d:a6:88:cd:ea:8c:97:b7:1d:6e:bf:
c9:58:7c:af:ed:91:c3:46:01:be:a1:da:7d:56:b1:
70:c9:2e:1b:15:f3:35:16:85:9a:5f:cd:21:c0:8c:
c6:24:ae:dd:bd:b7:1d:b7:23:55:20:3e:ec:8a:cc:
59:d3:fa:e1:d5:46:7d:a9:8a:86:71:46:71:64:48:
d5:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:C1:C3:C3:E2:9C:F0:1D:42:D1:F5:91:5A:82:B7:2C:13:BA:5C:0B
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/QMHDw-Kc8B1C0fWRWoK3LBO6XAs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.146.241.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:97:cb:11:e0:c8:cf:0b:e1:58:37:94:b6:26:e5:e0:f6:0a:
18:53:1f:18:e3:95:ed:13:63:4b:97:18:eb:46:45:1c:48:bb:
e5:99:b7:ff:50:23:25:90:43:e8:07:a1:9b:76:30:08:a3:8d:
7c:28:fe:4b:94:90:f0:0d:b0:3b:6f:bb:22:6e:45:b4:21:00:
84:4b:d3:c1:a8:53:51:bd:05:cf:44:16:1d:07:3e:01:30:89:
57:45:17:e0:f4:23:8f:da:ee:60:18:8d:99:26:52:f4:64:80:
2d:59:b0:50:c9:dc:f4:ec:74:76:f0:62:62:bf:2f:e8:e2:00:
f7:f2:6c:fe:07:1e:d6:c3:e8:68:8e:c1:f3:1a:36:02:1c:d2:
49:a3:07:7d:a4:44:2b:72:a1:97:04:b0:22:65:e9:de:da:da:
e2:3e:43:e9:f8:82:9b:40:63:c3:65:0a:2a:42:1d:9a:d8:91:
4f:98:8c:bc:73:6e:cc:86:d8:b2:55:6f:da:cc:26:be:37:39:
74:2f:4d:0f:47:62:9a:5e:27:3a:b5:37:2e:7e:8b:7c:73:92:
31:49:a6:65:e5:94:ca:27:53:66:23:64:1f:b7:9c:60:6d:ef:
d4:bf:71:2e:6d:7f:0c:4d:0b:f7:c5:6b:f7:d0:11:19:25:1e:
b8:8f:4b:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:35 2024 by rpki-client on console-fra.rpki-client.org