Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/a7ef4d-dc44-4faf-9513-e9c9132836ff/1/QMt7rmNi1ZlrYSZsVc4HX6EQdMI.roa
File: QMt7rmNi1ZlrYSZsVc4HX6EQdMI.roa (raw, json)
Hash identifier: mdkXE8L02WKDbE2VcqHjE82AYWja/CIfr8zVbe6amuQ=
Subject key identifier: 40:CB:7B:AE:63:62:D5:99:6B:61:26:6C:55:CE:07:5F:A1:10:74:C2
Certificate issuer: /CN=0dd441c3ffae829842249e944b03851081f4d9e0
Certificate serial: 018C64C42253EDFCC232D490A537CAEB7E99
Authority key identifier: 0D:D4:41:C3:FF:AE:82:98:42:24:9E:94:4B:03:85:10:81:F4:D9:E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DdRBw_-ugphCJJ6USwOFEIH02eA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/a7ef4d-dc44-4faf-9513-e9c9132836ff/1/QMt7rmNi1ZlrYSZsVc4HX6EQdMI.roa
Signing time: Wed 13 Dec 2023 20:00:24 +0000
ROA not before: Wed 13 Dec 2023 20:00:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206092
IP address blocks: 37.140.254.0/24 maxlen: 24
185.82.72.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:30:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:64:c4:22:53:ed:fc:c2:32:d4:90:a5:37:ca:eb:7e:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0dd441c3ffae829842249e944b03851081f4d9e0
Validity
Not Before: Dec 13 20:00:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=40cb7bae6362d5996b61266c55ce075fa11074c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:42:12:5b:11:9a:2f:d4:74:ac:51:85:f4:2c:
0c:3c:f9:cf:58:b9:7f:24:5a:b4:1d:4c:c2:29:06:
9f:59:b1:5a:ff:85:ae:0e:68:b0:b8:db:7a:de:ed:
f5:ec:c3:76:7f:f2:8e:a3:2e:44:39:60:9a:ca:d2:
8e:aa:4a:ae:6c:bc:ab:d0:95:39:d7:b1:8c:39:71:
c1:3b:99:d1:68:e1:2f:27:80:dd:b3:f9:62:7f:4b:
f4:66:6d:93:9c:5e:03:e2:45:ad:39:ed:56:75:ec:
05:82:c1:10:9a:de:b7:8c:88:d2:34:30:77:85:8c:
3e:dc:94:b5:91:1e:6f:0c:d5:1c:ad:3d:ce:c3:87:
20:d7:44:77:86:74:fe:01:09:96:43:7e:57:ab:86:
24:4d:8e:7b:7d:0f:94:ac:1f:10:e7:ad:d6:ba:3d:
d1:e4:f8:53:7d:7a:05:c5:c7:fe:f2:f1:4a:7c:37:
77:4c:fb:ba:9d:e3:8b:e4:ce:e0:7c:6c:ac:7e:69:
1d:0a:94:f7:13:be:e1:f3:b1:1d:29:06:75:73:92:
8a:47:5d:5a:86:47:4d:3d:59:7f:25:24:94:b8:4a:
1f:61:97:e5:c6:7f:91:b7:aa:30:42:8d:15:b1:ed:
06:4e:4c:4e:57:c9:18:46:7f:a1:20:2c:0a:3c:62:
a7:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:CB:7B:AE:63:62:D5:99:6B:61:26:6C:55:CE:07:5F:A1:10:74:C2
X509v3 Authority Key Identifier:
keyid:0D:D4:41:C3:FF:AE:82:98:42:24:9E:94:4B:03:85:10:81:F4:D9:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DdRBw_-ugphCJJ6USwOFEIH02eA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a7ef4d-dc44-4faf-9513-e9c9132836ff/1/QMt7rmNi1ZlrYSZsVc4HX6EQdMI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a7ef4d-dc44-4faf-9513-e9c9132836ff/1/DdRBw_-ugphCJJ6USwOFEIH02eA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.140.254.0/24
185.82.72.0/24
Signature Algorithm: sha256WithRSAEncryption
75:c6:d2:15:d5:36:21:89:c9:76:d5:3c:eb:90:e6:5a:10:fd:
d8:1f:fd:5e:a8:aa:40:5e:a8:3b:2c:3f:6c:f7:53:9a:4a:5a:
a2:59:8f:cb:10:c7:7b:50:1f:9e:19:b4:21:cb:f3:8b:ce:38:
b0:27:01:bf:39:17:b3:ca:25:9f:cc:b5:b0:60:d1:9f:1d:bd:
56:f8:f7:4f:ed:ee:a7:b4:75:ab:ec:db:a9:4d:5b:8d:b1:28:
b0:e5:4e:1b:4d:f3:90:f9:bb:83:f1:4c:e3:af:ed:9c:99:2f:
12:d8:90:ed:cc:a8:6e:94:14:30:8d:0f:8a:0d:54:d6:6a:b1:
59:46:e2:25:40:d5:4e:57:73:0c:ec:73:b7:d3:d9:f4:9f:4a:
4d:d3:39:07:82:7f:16:af:2b:58:1d:f3:eb:56:30:1c:de:c5:
e9:dc:53:3a:bd:6c:f9:88:b6:5e:9a:74:cb:8a:9a:a4:a2:36:
35:61:a0:59:2b:88:97:51:6e:02:14:5b:fe:64:80:6a:e6:9d:
51:4f:3a:0d:c8:78:ec:25:f9:4a:7c:c2:4c:4e:54:da:39:fb:
64:5b:78:60:5f:14:82:f0:5d:db:4e:29:90:ac:36:39:0e:77:
aa:4c:99:6d:fb:4b:6e:f2:df:d7:7d:e8:eb:8a:fb:57:cd:c2:
12:83:da:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:38 2024 by rpki-client on console-fra.rpki-client.org