Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/6cf8be-253d-46d5-ab7c-8276c8aac50e/1/QVlqny_eBD6TLddOG8iFi6qFRzI.roa
File: QVlqny_eBD6TLddOG8iFi6qFRzI.roa (raw, json)
Hash identifier: asGDSzPtdkjv4+cnTajhcCLdwOEAhfsfqlOzNg3O3jg=
Subject key identifier: 41:59:6A:9F:2F:DE:04:3E:93:2D:D7:4E:1B:C8:85:8B:AA:85:47:32
Certificate issuer: /CN=d6aa3fbc78e31229157c78b6d23a65eb2e353dce
Certificate serial: 0194E13258285B2C94025254F688F5FF0F05
Authority key identifier: D6:AA:3F:BC:78:E3:12:29:15:7C:78:B6:D2:3A:65:EB:2E:35:3D:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1qo_vHjjEikVfHi20jpl6y41Pc4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/6cf8be-253d-46d5-ab7c-8276c8aac50e/1/QVlqny_eBD6TLddOG8iFi6qFRzI.roa
Signing time: Fri 07 Feb 2025 16:16:00 +0000
ROA not before: Fri 07 Feb 2025 16:16:00 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 213641
IP address blocks: 185.244.2.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 06 Mar 2025 01:37:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:e1:32:58:28:5b:2c:94:02:52:54:f6:88:f5:ff:0f:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d6aa3fbc78e31229157c78b6d23a65eb2e353dce
Validity
Not Before: Feb 7 16:16:00 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=41596a9f2fde043e932dd74e1bc8858baa854732
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:62:2e:c5:d4:53:3d:90:c2:78:3f:e7:9d:73:
0d:09:ee:0c:7d:62:f5:9f:c8:3e:6f:40:88:b2:fa:
06:12:04:2b:0e:fe:c2:08:94:69:dd:07:ef:7b:5c:
32:34:bf:30:af:de:3a:30:c3:68:cc:70:ee:36:6f:
f9:c2:21:a9:9e:fd:89:5e:b3:93:b1:60:e2:ce:1a:
f7:0a:a0:80:12:6e:e3:cb:b6:b4:fa:73:b0:79:ca:
fb:5e:4e:f9:d4:b1:ae:49:6c:74:04:36:2b:cf:22:
6a:77:84:e3:3e:97:e9:21:e5:19:57:2b:12:21:e7:
70:46:fa:73:09:f1:ae:ab:1b:04:f6:8b:3b:03:0a:
36:51:90:1d:0f:a7:19:bd:83:d8:dc:e8:5d:ac:98:
87:18:b3:8d:a0:aa:6c:1b:ac:7f:cc:08:10:17:45:
a0:01:80:8e:fc:4b:c4:85:bf:a4:b8:9e:b2:be:a4:
66:73:9f:40:e8:24:c6:65:2e:c1:ca:a3:31:a3:b9:
c4:87:1f:8c:43:d8:42:7e:52:37:09:d2:ff:24:59:
fe:cb:6e:f3:cd:d8:58:18:68:12:42:87:77:a6:c1:
aa:88:05:ec:63:da:7f:73:ba:12:7b:1e:41:7d:59:
72:b7:25:09:fd:27:a8:77:a5:26:b1:55:fe:c7:5a:
d6:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:59:6A:9F:2F:DE:04:3E:93:2D:D7:4E:1B:C8:85:8B:AA:85:47:32
X509v3 Authority Key Identifier:
keyid:D6:AA:3F:BC:78:E3:12:29:15:7C:78:B6:D2:3A:65:EB:2E:35:3D:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1qo_vHjjEikVfHi20jpl6y41Pc4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/6cf8be-253d-46d5-ab7c-8276c8aac50e/1/QVlqny_eBD6TLddOG8iFi6qFRzI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/6cf8be-253d-46d5-ab7c-8276c8aac50e/1/1qo_vHjjEikVfHi20jpl6y41Pc4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.244.2.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:d7:d2:a3:3d:35:ce:9c:8a:b6:96:70:b0:fa:98:0a:89:70:
ef:b3:7c:0f:f8:20:3d:f5:6b:08:0c:46:c9:d6:d2:3c:6b:59:
86:b7:0a:0a:d5:67:95:fa:ad:bf:5f:87:9c:d9:11:58:c8:a9:
46:1e:d6:b4:64:e2:25:8d:ff:f4:f4:56:03:0a:7b:c9:94:fd:
f1:94:f7:08:65:55:cf:4e:0b:ed:a9:01:c8:23:78:45:24:9a:
17:cd:d8:3f:4a:0d:b4:c6:86:30:89:06:06:dc:76:0c:ce:a1:
21:ed:59:20:10:e7:e1:0f:d2:d6:10:1d:83:46:c6:a5:f0:91:
87:87:91:17:2c:61:3c:36:90:ff:4b:33:d6:73:cd:d9:56:bb:
8d:25:f5:ac:6c:1e:10:bd:dc:29:f7:d0:a8:67:3e:12:89:f3:
a6:da:0d:47:97:ec:e2:e0:72:6f:00:55:89:ec:b5:aa:9f:cc:
1d:d3:93:1f:66:b2:c8:81:3f:53:b1:36:e3:79:c1:31:56:8a:
43:42:a1:a4:7b:69:42:f9:46:eb:e0:6d:68:46:f3:f7:dc:95:
e6:46:2a:d5:3b:17:1c:59:22:37:e8:93:86:e0:4d:58:78:84:
83:24:6d:46:cb:4f:72:eb:ce:33:a7:59:e0:b8:04:c7:6c:b1:
aa:3e:d0:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 00:46:16 2025 by rpki-client