Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/7cb179-ad2c-4824-a1e5-ae07f32e4102/1/QcTOwUiA7v63bHr17KolOzuSk8w.roa
File: QcTOwUiA7v63bHr17KolOzuSk8w.roa (raw, json)
Hash identifier: BFw4wmrU0d2JLdn8QPL9g1IL/yfxxFs1dsCTMkJmsHo=
Subject key identifier: 41:C4:CE:C1:48:80:EE:FE:B7:6C:7A:F5:EC:AA:25:3B:3B:92:93:CC
Certificate issuer: /CN=fc44297e9271c6edf064915f6180ae12690dda8b
Certificate serial: 018DA75A7D6EC72CA8F35481DEA826878159
Authority key identifier: FC:44:29:7E:92:71:C6:ED:F0:64:91:5F:61:80:AE:12:69:0D:DA:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_EQpfpJxxu3wZJFfYYCuEmkN2os.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/7cb179-ad2c-4824-a1e5-ae07f32e4102/1/QcTOwUiA7v63bHr17KolOzuSk8w.roa
Signing time: Wed 14 Feb 2024 11:22:21 +0000
ROA not before: Wed 14 Feb 2024 11:22:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199631
IP address blocks: 82.114.44.0/23 maxlen: 24
Validation: Failed, certificate revoked on Fri 16 Feb 2024 14:40:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:a7:5a:7d:6e:c7:2c:a8:f3:54:81:de:a8:26:87:81:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fc44297e9271c6edf064915f6180ae12690dda8b
Validity
Not Before: Feb 14 11:22:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=41c4cec14880eefeb76c7af5ecaa253b3b9293cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:d7:0c:1d:58:2d:41:c2:7b:52:5e:f6:f1:b9:
0a:79:2c:3b:a5:5f:62:83:be:dd:53:28:da:fc:03:
53:02:f0:ad:62:4f:c7:ff:74:2f:e6:2e:84:66:3c:
d2:46:9f:1d:a9:6b:8e:2a:c1:5b:6d:66:0b:59:73:
33:48:7a:c9:a2:c0:0d:57:c8:e7:7e:b5:25:f0:d3:
47:01:3e:74:06:0b:c6:7b:2f:23:62:98:c9:40:ca:
f8:eb:75:55:d5:bc:66:0f:8e:fb:28:12:98:01:f7:
6d:ed:8f:45:6f:65:77:85:fe:1c:c9:8d:5f:a0:3f:
d6:16:3f:dc:bc:80:fd:1c:74:3a:26:76:70:45:be:
0d:ee:28:25:82:b6:53:aa:79:b8:9a:ac:80:4e:3d:
80:46:44:17:c4:6f:a0:9a:6f:48:a8:70:39:5c:ef:
03:c6:48:ac:81:27:5a:35:db:ce:03:97:33:77:98:
b7:b9:83:6d:59:a0:25:f9:f2:70:c9:5c:bf:ff:c2:
70:12:23:e5:68:6e:be:4b:25:f9:27:0b:c6:35:b5:
23:a1:c3:5d:fc:55:57:d3:69:d1:21:fa:c1:92:ac:
42:d0:ae:a9:6d:d9:e3:5f:57:81:af:5c:4a:fb:fc:
59:d2:b2:41:d4:6e:06:94:16:2b:72:e7:2b:de:95:
bb:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:C4:CE:C1:48:80:EE:FE:B7:6C:7A:F5:EC:AA:25:3B:3B:92:93:CC
X509v3 Authority Key Identifier:
keyid:FC:44:29:7E:92:71:C6:ED:F0:64:91:5F:61:80:AE:12:69:0D:DA:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_EQpfpJxxu3wZJFfYYCuEmkN2os.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/7cb179-ad2c-4824-a1e5-ae07f32e4102/1/QcTOwUiA7v63bHr17KolOzuSk8w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/7cb179-ad2c-4824-a1e5-ae07f32e4102/1/_EQpfpJxxu3wZJFfYYCuEmkN2os.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.114.44.0/23
Signature Algorithm: sha256WithRSAEncryption
bd:b9:ad:09:b6:09:ec:9a:bb:c7:b3:2d:7b:76:45:bc:b1:f5:
52:59:93:4b:50:db:01:e1:fa:fe:96:ee:e6:7a:29:3a:34:3b:
0f:a5:3c:6e:40:c3:d1:62:9f:d4:df:4b:c1:8e:63:62:f8:1f:
a4:e5:83:bb:a4:a8:12:b0:79:a1:5b:ce:4c:70:cf:c5:9e:b7:
16:4b:35:a0:8e:56:26:d8:7f:94:be:e4:db:74:c9:2e:68:e0:
c6:89:40:28:74:6f:c2:56:9c:8c:aa:e1:34:f2:32:ec:32:00:
ca:89:3e:36:a8:a5:87:4b:72:5d:00:e6:c6:8e:14:00:a1:75:
e4:29:42:12:b9:b6:97:bb:9f:ad:5e:eb:ea:86:77:43:32:1c:
08:58:b7:c6:2d:40:9a:6b:e9:ee:7c:43:ba:06:a3:01:41:1b:
6e:b8:3a:76:9b:57:92:1e:fe:d8:81:20:b4:30:57:ab:30:07:
1b:0d:39:fa:f3:27:f9:59:cc:a6:be:57:80:74:43:2d:38:13:
14:70:85:1d:49:85:68:20:f6:37:12:8e:b6:97:06:71:e1:2b:
70:e0:12:2d:b8:50:cd:b0:5c:fe:ec:8c:61:58:df:8c:c9:95:
34:98:89:46:9b:86:42:1a:b8:80:9c:f1:f8:5b:bb:e5:34:7f:
6d:88:ff:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:54 2024 by rpki-client on console-ams.rpki-client.org