Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/a4bdf7-2579-4bd0-8a93-224fd78ef827/1/CQcrDmNiVfZqQ3IucB2xnaNdBac.roa
File: CQcrDmNiVfZqQ3IucB2xnaNdBac.roa (raw, json)
Hash identifier: TDDwycfhs7nBl0p0gx5e8pAbTqSV2q1Zd+Kdq5Ird10=
Subject key identifier: 09:07:2B:0E:63:62:55:F6:6A:43:72:2E:70:1D:B1:9D:A3:5D:05:A7
Certificate issuer: /CN=c115b327e84761685022f47328d6f4cbd6d3041e
Certificate serial: 01856CF8360B6E089E095E68606ACBF62548
Authority key identifier: C1:15:B3:27:E8:47:61:68:50:22:F4:73:28:D6:F4:CB:D6:D3:04:1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wRWzJ-hHYWhQIvRzKNb0y9bTBB4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/a4bdf7-2579-4bd0-8a93-224fd78ef827/1/CQcrDmNiVfZqQ3IucB2xnaNdBac.roa
Signing time: Sun 01 Jan 2023 10:54:44 +0000
ROA not before: Sun 01 Jan 2023 10:54:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29119
IP address blocks: 185.152.172.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:f8:36:0b:6e:08:9e:09:5e:68:60:6a:cb:f6:25:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c115b327e84761685022f47328d6f4cbd6d3041e
Validity
Not Before: Jan 1 10:54:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=09072b0e636255f66a43722e701db19da35d05a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:02:2a:fe:3e:91:52:07:55:95:07:4d:84:4b:
cc:17:1a:7a:f9:9e:1a:5b:d8:e2:db:df:f5:0d:49:
21:74:1b:2e:5a:ae:b9:95:c6:fb:a1:a1:80:84:3f:
a0:72:07:c7:ce:6e:2a:b0:7f:21:8d:94:61:fe:56:
70:d7:a1:21:98:e8:6b:8a:bf:ff:25:1b:92:84:00:
bd:d7:77:b5:ea:34:05:d9:eb:32:4a:ee:48:f5:bf:
59:3c:36:db:db:a0:83:d0:6d:21:a8:74:96:8a:20:
b9:05:b2:8f:08:85:45:ce:50:f4:4e:b0:5a:55:7e:
2c:01:5f:10:61:8d:98:43:0d:2e:f3:74:58:ba:f1:
5b:da:e3:8b:b1:8d:18:e8:ba:20:8a:aa:71:0c:47:
05:f4:56:e4:e2:35:d5:b5:25:88:dd:ed:9a:89:61:
f4:2c:54:9b:b1:30:99:ee:f0:4c:48:e1:52:29:2c:
9a:8f:6b:09:69:7d:af:09:9f:87:cc:8a:9e:fe:60:
bc:d6:38:d4:b7:9e:77:88:c5:7f:85:28:a4:1d:02:
91:53:24:ab:4f:21:81:01:43:87:3a:a5:59:ee:8f:
b9:d5:b9:fa:03:60:23:51:a1:d2:22:0c:74:45:cb:
6b:79:33:86:5d:98:c9:5e:12:af:68:f8:e3:75:25:
c0:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:07:2B:0E:63:62:55:F6:6A:43:72:2E:70:1D:B1:9D:A3:5D:05:A7
X509v3 Authority Key Identifier:
keyid:C1:15:B3:27:E8:47:61:68:50:22:F4:73:28:D6:F4:CB:D6:D3:04:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wRWzJ-hHYWhQIvRzKNb0y9bTBB4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/a4bdf7-2579-4bd0-8a93-224fd78ef827/1/CQcrDmNiVfZqQ3IucB2xnaNdBac.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/a4bdf7-2579-4bd0-8a93-224fd78ef827/1/wRWzJ-hHYWhQIvRzKNb0y9bTBB4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.152.172.0/22
Signature Algorithm: sha256WithRSAEncryption
27:0b:52:56:e4:d7:87:76:c9:79:8c:34:01:6c:90:ae:5e:7a:
21:44:8a:11:52:00:ae:e5:44:e0:5a:b2:06:e7:51:78:00:25:
e0:61:32:c0:10:d2:7f:28:e2:34:16:46:7f:25:15:01:bb:b7:
57:e2:92:f0:ca:89:86:7c:5d:15:53:7c:a0:48:40:03:fa:f4:
42:17:b2:ce:e3:b9:7e:d1:d4:d7:58:f0:6f:4f:27:4f:5b:da:
d2:41:fe:f8:7b:cc:70:60:a0:0a:ee:04:b0:02:58:bf:c8:a1:
d0:55:90:f8:1a:d4:4a:58:2b:4c:2b:b3:75:a5:5f:d7:ab:dd:
8a:1c:1c:71:ac:cb:da:95:f6:8d:65:b9:a1:ff:b3:92:77:2d:
19:d0:2a:cd:95:88:b1:25:88:fc:9e:cb:9f:37:2c:67:0d:b3:
8d:98:82:e7:27:ad:be:0a:04:ee:7b:ca:ec:27:36:98:f2:74:
fb:0d:8e:af:92:e4:39:c6:d6:aa:60:a1:84:9c:c6:27:46:66:
32:43:00:85:8d:54:d5:74:15:d0:c5:95:ad:8a:2a:ec:eb:9a:
9b:a0:5e:f4:8a:02:b4:c2:1a:39:e4:e1:3b:7d:02:72:17:00:
cc:01:32:17:2b:36:d4:f5:1d:53:85:6a:a6:02:14:78:c0:59:
9a:6f:75:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:03 2024 by rpki-client on console-fra.rpki-client.org