Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/981176-4d10-4859-ba0f-1d22b02b9b1b/1/QHHoJwt7x_abnPTFl_e-VHfS5mA.roa
File: QHHoJwt7x_abnPTFl_e-VHfS5mA.roa (raw, json)
Hash identifier: pwSwbapPRWM0DiKdAjmiovEy1/cMnc4gkYMp3lDzi54=
Subject key identifier: 40:71:E8:27:0B:7B:C7:F6:9B:9C:F4:C5:97:F7:BE:54:77:D2:E6:60
Certificate issuer: /CN=b74f63fd0dc197e52ad272276c40d3ee4bb1d799
Certificate serial: 01856C6F1EAEF27633C4B4F90A6156530BC0
Authority key identifier: B7:4F:63:FD:0D:C1:97:E5:2A:D2:72:27:6C:40:D3:EE:4B:B1:D7:99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t09j_Q3Bl-Uq0nInbEDT7kux15k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/981176-4d10-4859-ba0f-1d22b02b9b1b/1/QHHoJwt7x_abnPTFl_e-VHfS5mA.roa
Signing time: Sun 01 Jan 2023 08:24:59 +0000
ROA not before: Sun 01 Jan 2023 08:24:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204108
IP address blocks: 185.114.136.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:29:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:6f:1e:ae:f2:76:33:c4:b4:f9:0a:61:56:53:0b:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b74f63fd0dc197e52ad272276c40d3ee4bb1d799
Validity
Not Before: Jan 1 08:24:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4071e8270b7bc7f69b9cf4c597f7be5477d2e660
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:47:1c:f7:5e:10:74:28:8d:60:77:a0:06:38:
6c:9f:95:eb:e7:4e:cf:f8:57:1f:77:ee:b8:57:59:
f1:2c:34:d1:3f:48:4d:ac:f5:c5:12:88:ca:a6:2d:
2c:12:ea:f9:59:5e:60:bd:79:6e:4a:30:7c:67:3a:
29:5a:91:df:10:b8:29:13:8d:93:b9:72:3f:6b:f0:
a4:82:77:2b:23:7d:fd:88:73:4a:b5:37:4a:bb:e3:
0d:df:c9:85:fc:be:f7:52:3f:9d:0c:47:3a:45:ba:
0c:6a:c6:e5:a6:94:86:02:45:72:5d:40:7c:2c:b8:
28:47:48:92:f7:e3:46:12:2b:df:00:b1:4f:52:d5:
53:a2:0c:19:b2:07:ac:de:6c:c6:be:c5:6b:df:4d:
c8:06:1c:bd:e8:2a:ac:34:ad:51:c7:e8:31:ea:7e:
f2:2b:a9:d9:3b:29:34:d1:13:fb:8c:5d:ea:97:e1:
e4:df:a1:b7:b6:00:32:df:c8:e4:a6:c3:ab:0a:47:
d1:b5:c8:16:16:72:b4:50:68:44:16:85:0c:5c:4a:
5e:da:90:68:35:ec:7a:e5:29:ab:12:2f:ef:19:e3:
a1:9a:e6:48:0c:0e:d2:15:9a:67:82:c3:d1:6e:7c:
72:96:34:de:00:67:54:df:02:a8:1e:7c:44:d5:1f:
68:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:71:E8:27:0B:7B:C7:F6:9B:9C:F4:C5:97:F7:BE:54:77:D2:E6:60
X509v3 Authority Key Identifier:
keyid:B7:4F:63:FD:0D:C1:97:E5:2A:D2:72:27:6C:40:D3:EE:4B:B1:D7:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t09j_Q3Bl-Uq0nInbEDT7kux15k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/981176-4d10-4859-ba0f-1d22b02b9b1b/1/QHHoJwt7x_abnPTFl_e-VHfS5mA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/981176-4d10-4859-ba0f-1d22b02b9b1b/1/t09j_Q3Bl-Uq0nInbEDT7kux15k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.114.136.0/22
Signature Algorithm: sha256WithRSAEncryption
1d:f8:ce:b6:d7:35:72:8b:da:85:8d:a5:e7:7f:26:5c:b0:e4:
ab:f2:5e:41:c6:99:c7:90:61:d2:9b:55:62:5d:0b:a5:48:2b:
f3:72:72:36:a5:c7:df:0f:ad:8b:01:d8:f6:5b:2a:18:4c:74:
c5:62:7e:8c:42:5c:ef:60:cd:43:8d:f8:0b:b0:52:87:c9:1f:
50:4a:4c:33:d0:0b:3c:4d:4b:07:12:d0:2a:f2:75:ab:0d:45:
57:a6:bb:ec:a3:2c:ea:dc:50:57:8c:83:04:3c:66:a0:1c:57:
66:1d:d7:d0:a9:54:8d:e8:fa:08:d1:29:8a:03:8f:ed:e6:f3:
e6:1d:bf:15:80:81:98:f5:07:6d:da:37:80:3c:16:cf:a8:63:
d2:6a:57:ae:13:e8:bf:db:e3:db:5a:64:a0:86:e6:6d:ca:cf:
6b:33:6f:a0:12:8c:25:b3:9f:df:1b:1e:17:e4:cb:5a:04:a5:
ce:bf:6a:fd:0d:c5:90:3f:4e:09:60:25:9b:5b:90:62:04:06:
59:1b:c2:7f:04:5b:c2:50:38:c9:0e:27:83:0b:0a:50:7c:ce:
c8:65:a6:b2:8f:7d:12:15:6d:e6:50:9d:85:76:68:f6:9a:6c:
78:cc:c8:c2:e9:71:a0:a5:dd:f6:34:ca:5f:e1:90:ba:12:35:
9c:58:26:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:43 2024 by rpki-client on console-ams.rpki-client.org