Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/247ee2-2365-4768-977f-fefa1abaedcf/1/qCnXeQ_EAoNMDIug2WIlApZEJUQ.roa
File: qCnXeQ_EAoNMDIug2WIlApZEJUQ.roa (raw, json)
Hash identifier: rR8FRxLgs2YjrbyElpFNqWaS6toYwTgak5b9bbIaRqw=
Subject key identifier: A8:29:D7:79:0F:C4:02:83:4C:0C:8B:A0:D9:62:25:02:96:44:25:44
Certificate issuer: /CN=4dbd0b135a7dfd6b6aa1b1849eb163402de8e1b1
Certificate serial: 018CCA29F312E1AE2824071759AEAEB221C4
Authority key identifier: 4D:BD:0B:13:5A:7D:FD:6B:6A:A1:B1:84:9E:B1:63:40:2D:E8:E1:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tb0LE1p9_WtqobGEnrFjQC3o4bE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/247ee2-2365-4768-977f-fefa1abaedcf/1/qCnXeQ_EAoNMDIug2WIlApZEJUQ.roa
Signing time: Tue 02 Jan 2024 12:33:15 +0000
ROA not before: Tue 02 Jan 2024 12:33:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44874
IP address blocks: 185.217.165.0/24 maxlen: 24
2a10:d700::/29 maxlen: 48
Validation: Failed, certificate revoked on Thu 04 Jan 2024 18:46:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:29:f3:12:e1:ae:28:24:07:17:59:ae:ae:b2:21:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4dbd0b135a7dfd6b6aa1b1849eb163402de8e1b1
Validity
Not Before: Jan 2 12:33:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a829d7790fc402834c0c8ba0d962250296442544
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:72:16:5e:9f:23:70:a9:7b:31:a8:3b:6c:fb:
26:5e:d8:fc:2c:30:a3:ad:a7:8e:ca:df:7a:d7:b1:
c5:2d:87:09:99:9c:07:f5:b9:1f:8c:ca:68:48:dc:
ed:6b:9e:58:f6:9a:68:e7:04:16:e1:ca:0b:79:88:
35:e5:4b:79:86:6c:7d:99:0e:a4:b7:7b:c6:f2:03:
5a:c9:d0:16:da:fe:34:eb:d2:46:a9:55:ff:e0:11:
0e:f9:68:ba:ac:11:e9:2b:e1:f3:a3:e3:41:7b:93:
88:63:54:39:8b:18:31:0f:15:14:38:b2:61:4e:09:
8f:b3:e6:c5:2a:fa:13:36:9d:df:ba:45:33:63:be:
c1:ac:bb:df:c0:1a:21:ad:84:58:9b:0d:da:93:a8:
f2:7d:8e:7e:7e:df:fb:2b:a6:9b:46:3c:81:62:4a:
4a:b9:51:9f:10:71:84:81:9c:9b:88:40:d5:7a:b1:
b3:64:fe:d4:5f:77:25:3a:8e:bb:ff:12:01:96:a8:
cc:f8:1d:44:a4:08:60:73:28:13:93:e1:a6:7b:d1:
58:97:47:47:69:88:3e:57:5a:40:e7:41:9a:30:cf:
06:c2:f6:2c:05:49:01:e5:04:46:82:73:b3:da:ef:
61:a0:61:09:2c:8e:60:9b:23:a7:cc:30:7f:54:a2:
06:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:29:D7:79:0F:C4:02:83:4C:0C:8B:A0:D9:62:25:02:96:44:25:44
X509v3 Authority Key Identifier:
keyid:4D:BD:0B:13:5A:7D:FD:6B:6A:A1:B1:84:9E:B1:63:40:2D:E8:E1:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tb0LE1p9_WtqobGEnrFjQC3o4bE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/247ee2-2365-4768-977f-fefa1abaedcf/1/qCnXeQ_EAoNMDIug2WIlApZEJUQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/247ee2-2365-4768-977f-fefa1abaedcf/1/Tb0LE1p9_WtqobGEnrFjQC3o4bE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.217.165.0/24
IPv6:
2a10:d700::/29
Signature Algorithm: sha256WithRSAEncryption
83:7f:94:c5:05:eb:d1:a8:7f:2b:86:d1:66:e8:d4:97:38:7c:
d8:17:b3:e5:c6:ec:09:cf:f1:07:b1:32:e7:87:9c:5c:2e:5d:
3d:f1:e5:92:92:c9:14:85:2d:bf:b2:b6:5d:24:3a:71:a3:fd:
f5:42:b9:fe:12:23:36:31:fc:98:4a:07:aa:e0:80:4d:08:ec:
4d:17:a3:31:96:45:ee:d2:57:28:b5:ec:0e:29:f9:f6:9d:4e:
be:ff:9f:57:75:5d:f3:74:e9:83:bc:39:e8:32:67:b9:c6:70:
bf:5a:d6:be:df:00:09:7e:ba:a7:df:a8:9c:74:db:4b:36:cd:
22:45:5c:40:d2:24:0d:5e:ef:cd:6f:52:17:b4:a9:1e:4f:c6:
ed:1b:b6:9f:76:8f:5d:13:20:d2:a4:ff:2e:e2:1c:e0:85:be:
0d:e6:44:26:74:ae:4b:a5:09:2e:27:fb:cd:01:4e:7c:d7:78:
1c:57:67:d3:41:4c:75:9b:92:fa:26:39:8c:b6:01:16:2a:cb:
d6:ae:e6:8f:8a:f7:e2:f0:69:c2:09:48:d9:05:2d:63:28:b7:
7f:b6:62:db:ef:72:47:88:91:7f:f0:b8:66:8c:a4:4c:31:54:
dc:43:cc:85:e5:34:d1:a5:6f:00:93:dd:bc:5c:98:15:cd:06:
97:d2:4d:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:49:55 2024 by rpki-client on console-ams.rpki-client.org