Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/205275-2ced-4a4e-b900-4f3e5b2e0c56/1/rQGmpSIwESJwrd_6xLP4vXxCh1g.roa
File: rQGmpSIwESJwrd_6xLP4vXxCh1g.roa (raw, json)
Hash identifier: QW9t7Y0Go0jg1StyfGeUPWhKmO84fgKs+HzkJbWYX+Y=
Subject key identifier: AD:01:A6:A5:22:30:11:22:70:AD:DF:FA:C4:B3:F8:BD:7C:42:87:58
Certificate issuer: /CN=1d0871fc2e99892ea1115a302138e1d32a62182c
Certificate serial: 0185737A9F3524EF001A14FB1B25D8AD9A67
Authority key identifier: 1D:08:71:FC:2E:99:89:2E:A1:11:5A:30:21:38:E1:D3:2A:62:18:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HQhx_C6ZiS6hEVowITjh0ypiGCw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/205275-2ced-4a4e-b900-4f3e5b2e0c56/1/rQGmpSIwESJwrd_6xLP4vXxCh1g.roa
Signing time: Mon 02 Jan 2023 17:14:53 +0000
ROA not before: Mon 02 Jan 2023 17:14:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 185.118.109.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:30:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:7a:9f:35:24:ef:00:1a:14:fb:1b:25:d8:ad:9a:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d0871fc2e99892ea1115a302138e1d32a62182c
Validity
Not Before: Jan 2 17:14:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ad01a6a52230112270addffac4b3f8bd7c428758
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:a5:fa:66:19:ab:ad:e0:05:e4:0a:2b:cc:fd:
b8:3f:f9:a4:00:08:6d:50:63:b9:d3:fe:72:25:32:
24:df:ed:78:98:f7:5f:72:74:b5:cd:04:0d:49:6c:
db:63:5c:4d:3d:99:a1:21:45:99:ca:76:25:15:e0:
99:60:7c:fd:3e:40:1c:54:d5:0f:06:7d:84:5b:35:
83:0f:26:ad:ae:c4:3f:d4:be:f2:5f:9d:0a:cd:4e:
d3:80:87:04:16:56:a8:c1:fb:fc:b4:3b:28:6a:1c:
ea:e3:64:68:81:07:ff:50:3e:5f:8b:2c:a1:e4:9f:
1d:4f:40:3b:6d:9d:11:26:f4:1a:fe:a0:83:3b:b5:
c9:40:4d:91:7a:8a:dc:f4:96:ec:98:8f:61:df:39:
20:01:92:66:d2:d0:6f:d7:cb:75:81:c6:3c:19:3c:
f9:5c:af:aa:64:1b:31:28:d2:56:90:12:e4:e0:d8:
e2:95:3e:04:a3:27:4c:35:1b:14:3c:c4:93:06:5e:
35:c2:93:17:e7:ce:49:75:a8:fd:1b:6a:a7:1d:5b:
f4:07:c6:12:73:1e:6d:b1:e4:01:3a:91:27:28:4f:
5f:a6:73:9c:1c:a1:3b:49:8f:86:00:d6:a6:26:67:
da:75:fe:06:5d:f3:54:18:d8:18:e5:15:c1:d9:2d:
b0:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:01:A6:A5:22:30:11:22:70:AD:DF:FA:C4:B3:F8:BD:7C:42:87:58
X509v3 Authority Key Identifier:
keyid:1D:08:71:FC:2E:99:89:2E:A1:11:5A:30:21:38:E1:D3:2A:62:18:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HQhx_C6ZiS6hEVowITjh0ypiGCw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/205275-2ced-4a4e-b900-4f3e5b2e0c56/1/rQGmpSIwESJwrd_6xLP4vXxCh1g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/205275-2ced-4a4e-b900-4f3e5b2e0c56/1/HQhx_C6ZiS6hEVowITjh0ypiGCw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.118.109.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:7f:35:97:87:76:db:d8:9d:ea:1b:c4:38:6a:d1:89:53:27:
61:54:17:1a:dc:12:70:a5:68:12:e2:6e:b7:02:f1:20:b1:6f:
86:37:f5:03:6a:59:ce:5c:c6:b0:da:b9:77:b7:bb:4d:06:16:
84:e6:d2:b6:18:33:47:f5:8d:42:32:9a:4f:f5:43:ac:d5:8d:
01:ae:8c:e9:9e:1d:e5:67:2a:a5:4d:d7:c1:19:e7:26:60:b1:
e7:2d:c1:f7:ce:dd:88:19:96:66:2f:44:56:2a:c0:db:09:2c:
0e:c6:bb:f9:0c:02:5d:fe:ee:e3:5b:62:7e:2c:14:48:f3:b3:
25:60:a5:af:33:de:91:c9:a6:2a:f6:03:36:4f:98:7a:88:10:
08:7b:c4:09:71:8c:33:10:2c:1f:55:ff:7e:f9:30:11:94:f9:
88:7e:0c:73:89:3f:00:84:7f:b2:07:5a:ec:94:d4:30:b9:5d:
87:1f:f1:00:4f:d4:d3:65:ed:6d:d2:45:01:d0:fe:70:bb:df:
da:c7:81:25:16:e5:6b:c9:2f:ff:89:e5:40:99:5e:46:e3:a3:
e3:b3:6e:96:ac:f3:59:30:6f:de:b5:67:14:c7:fd:82:c5:76:
ea:46:e8:5f:3e:a7:70:2b:eb:b3:1d:56:bf:5e:62:1c:f3:ed:
f1:62:3b:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:08 2024 by rpki-client on console-ams.rpki-client.org