Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/19511d-537e-4241-a0d8-2d91cfd7aaf4/1/QWUObBvavsMyJTSoavO38TEBHgs.roa
File: QWUObBvavsMyJTSoavO38TEBHgs.roa (raw, json)
Hash identifier: ETqlXi+cU+gFHSsD3XH8U/HhdSg0VGwXYOF+DOf7220=
Subject key identifier: 41:65:0E:6C:1B:DA:BE:C3:32:25:34:A8:6A:F3:B7:F1:31:01:1E:0B
Certificate issuer: /CN=2ac943517f5e3b747e7530320789a03444b43912
Certificate serial: 018570675138E8A5E313B3FD67D7010C53E7
Authority key identifier: 2A:C9:43:51:7F:5E:3B:74:7E:75:30:32:07:89:A0:34:44:B4:39:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KslDUX9eO3R-dTAyB4mgNES0ORI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/19511d-537e-4241-a0d8-2d91cfd7aaf4/1/QWUObBvavsMyJTSoavO38TEBHgs.roa
Signing time: Mon 02 Jan 2023 02:54:57 +0000
ROA not before: Mon 02 Jan 2023 02:54:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209051
IP address blocks: 185.166.88.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:67:51:38:e8:a5:e3:13:b3:fd:67:d7:01:0c:53:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac943517f5e3b747e7530320789a03444b43912
Validity
Not Before: Jan 2 02:54:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=41650e6c1bdabec3322534a86af3b7f131011e0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:62:e7:47:37:81:1b:db:14:41:ec:6b:3f:e9:
41:fe:ee:4e:4e:29:73:e8:63:93:43:0c:d5:48:29:
71:d0:a4:79:ed:d2:67:a2:4b:64:82:39:23:54:83:
fe:50:46:9c:09:0c:d3:55:f7:33:73:b8:a3:a7:4b:
6f:07:5e:d7:2a:58:da:7d:06:af:55:d7:d6:52:11:
f6:e9:ac:4f:35:9f:0e:c0:8d:07:52:38:b4:b3:ef:
6d:ca:a5:b2:e1:cb:02:18:b2:dc:cb:41:e7:6e:10:
10:98:fd:27:80:ce:00:e4:90:55:b3:af:f3:08:6e:
06:60:85:7b:b6:37:ff:82:ed:a3:2e:1e:fa:61:ce:
be:a9:50:59:b6:40:91:bf:78:b0:f2:39:76:b2:d0:
ff:75:05:19:4e:b3:2f:11:cd:1b:a5:52:5c:d2:78:
bd:01:64:83:0e:f7:82:3c:b7:cb:9e:9d:57:74:3c:
8f:83:d4:74:d0:07:9b:75:9c:4a:56:43:91:6f:28:
ea:1a:54:91:ac:3c:33:89:b8:7c:38:08:48:97:97:
42:ec:63:e7:92:36:33:04:18:47:1d:33:77:36:64:
34:bc:29:86:f5:cf:e2:84:42:80:13:cc:b9:e7:dd:
9d:14:c3:36:2a:be:a5:6a:be:fb:80:f5:f1:5b:18:
85:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:65:0E:6C:1B:DA:BE:C3:32:25:34:A8:6A:F3:B7:F1:31:01:1E:0B
X509v3 Authority Key Identifier:
keyid:2A:C9:43:51:7F:5E:3B:74:7E:75:30:32:07:89:A0:34:44:B4:39:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KslDUX9eO3R-dTAyB4mgNES0ORI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/19511d-537e-4241-a0d8-2d91cfd7aaf4/1/QWUObBvavsMyJTSoavO38TEBHgs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/19511d-537e-4241-a0d8-2d91cfd7aaf4/1/KslDUX9eO3R-dTAyB4mgNES0ORI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.166.88.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:59:0d:7e:83:a2:90:9f:78:15:51:32:60:29:85:47:fc:d3:
dc:89:d8:b9:ed:da:ac:60:4d:43:ba:91:31:89:43:4b:34:4e:
eb:c1:98:c3:18:e4:a1:aa:00:8c:c4:71:5a:fc:c4:14:1a:63:
12:41:44:13:32:6f:54:ad:d8:59:4e:6d:da:a9:2d:bd:fb:1c:
83:db:f7:9f:a6:77:b3:99:db:8a:6e:a2:0f:52:19:d7:9a:0a:
41:85:98:65:8b:e3:b0:b3:b2:b6:9c:bc:4b:7a:a0:d1:52:8f:
57:91:7f:ab:da:15:10:df:15:70:70:08:a8:50:94:a2:78:76:
51:82:ce:e6:92:95:bf:c1:91:97:66:2d:62:c4:f4:cb:a1:f7:
82:1d:53:42:36:06:ad:94:41:3d:09:38:86:01:23:e8:27:5f:
7b:88:ac:db:ec:e8:7a:7b:51:68:0b:7d:ca:1a:17:50:8c:c6:
ac:98:5d:bb:31:5d:1c:4a:71:6b:10:9b:a0:e5:4e:45:c6:16:
aa:50:29:52:c4:91:59:83:02:a4:18:0d:d9:13:1d:a0:c5:e2:
2f:a9:d7:9e:df:d2:19:75:f6:a8:69:5b:96:84:91:5b:c7:38:
c7:0b:21:d9:8f:c5:1f:39:9b:d9:02:62:8f:50:e7:39:6d:0c:
ca:00:1b:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:33 2024 by rpki-client on console-ams.rpki-client.org