Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/QMYE1vISxijksJQ_V9NhYxNres8.roa
File: QMYE1vISxijksJQ_V9NhYxNres8.roa (raw, json)
Hash identifier: PcOXLiEEV4nrMhnzB7pLH5T+cpomqCMTVnMJL+rD/wY=
Subject key identifier: 40:C6:04:D6:F2:12:C6:28:E4:B0:94:3F:57:D3:61:63:13:6B:7A:CF
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018CCA2A8722BE14C8DA074634FFBC94C6ED
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/QMYE1vISxijksJQ_V9NhYxNres8.roa
Signing time: Tue 02 Jan 2024 12:33:53 +0000
ROA not before: Tue 02 Jan 2024 12:33:53 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205220
IP address blocks: 194.87.198.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 07 May 2024 06:47:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2a:87:22:be:14:c8:da:07:46:34:ff:bc:94:c6:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jan 2 12:33:53 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=40c604d6f212c628e4b0943f57d36163136b7acf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:22:64:ea:85:63:ba:c4:50:e8:01:28:3f:fb:
8c:dd:88:ab:87:74:6f:90:e9:2f:9d:fb:f3:75:fe:
9f:12:3c:ac:d0:6d:9d:64:ed:13:78:93:84:e0:0b:
a3:33:6c:0a:05:35:17:71:44:9e:fc:96:a4:45:49:
f3:4a:e9:64:e7:96:55:b2:81:a6:bd:8d:da:a6:8b:
c6:3a:47:6f:9b:ae:6e:37:10:dc:7c:f6:15:1f:ad:
7c:26:5b:cc:57:8e:5b:0f:1e:7c:1a:50:3e:01:97:
13:ce:0b:9c:84:b6:ce:fb:64:ba:06:11:4a:6f:15:
76:91:89:e0:41:83:59:bf:04:f0:fb:d6:ff:3e:c9:
e7:c1:3b:03:3c:5c:1d:7e:6e:f5:7c:1e:1e:7f:8a:
a6:5a:6d:a0:e6:5a:01:9d:47:9c:cd:e4:8c:16:8a:
c0:b4:02:ef:55:bb:44:45:ce:ac:a8:c2:81:46:f4:
62:bf:df:a4:58:db:0b:ec:5e:45:c3:6a:cd:99:a0:
6c:1a:e3:1c:fd:c6:e2:59:8b:9d:31:9c:45:6b:8a:
fd:bf:38:38:d8:4b:a1:16:0a:ca:ec:bc:7c:df:8e:
ac:50:1d:74:cc:a1:82:e1:ff:b0:68:e4:87:7d:c6:
3d:46:9b:8d:f9:e8:22:db:6d:d8:16:02:f2:c4:c3:
3f:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:C6:04:D6:F2:12:C6:28:E4:B0:94:3F:57:D3:61:63:13:6B:7A:CF
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/QMYE1vISxijksJQ_V9NhYxNres8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.87.198.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:0b:ef:62:ce:4d:57:08:14:46:f5:f0:31:1e:fb:44:d2:66:
f9:ee:d8:60:df:e6:e2:ca:a0:fd:64:24:b8:e2:a4:7b:94:c6:
47:8b:74:bb:9b:75:1f:5a:7c:ef:87:76:ee:4c:cb:d7:6d:09:
6c:95:97:37:a4:40:71:6e:8d:71:35:e6:9a:0a:6d:05:a5:68:
f2:b6:06:37:a0:d7:6c:fb:fe:a4:ad:02:a4:99:f9:f0:99:e6:
8e:6d:40:48:95:1e:32:f9:ab:75:f5:69:8a:21:de:e5:04:9a:
87:78:ef:12:a9:ed:ea:da:e3:28:6b:20:07:55:bb:22:9b:c5:
8c:42:36:62:07:ac:d6:c7:5b:27:d9:36:bc:3d:12:fc:e4:ea:
65:b0:e9:ec:c5:b9:98:7f:98:b3:a2:47:e1:fb:16:3a:c7:3e:
35:e4:c2:6f:cf:cf:28:26:17:7a:67:b3:f2:8f:64:ce:a0:e7:
06:d4:d6:9e:7d:a4:59:fa:93:1c:5c:71:93:3b:85:3e:be:1d:
41:f2:9b:34:90:3a:9f:c5:ab:9f:81:5e:37:8e:79:51:51:b1:
36:e3:8e:dc:c5:b6:4b:cc:85:d0:5b:97:d9:57:56:08:34:ed:
c1:a0:7a:af:2f:9b:da:d7:1a:03:8d:d7:08:ed:6a:b1:5a:ac:
1c:b0:a5:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:15 2024 by rpki-client on console-fra.rpki-client.org