Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/2599f9-6f76-4db6-bca7-c1331f49fc09/1/_QnoGn-ttSm_Lujgvb__58p8UMM.roa
File: _QnoGn-ttSm_Lujgvb__58p8UMM.roa (raw, json)
Hash identifier: 2mwhb3za/x9uJebXSQr4Ix3aU1DG6x7SUiAYGq3/shg=
Subject key identifier: FD:09:E8:1A:7F:AD:B5:29:BF:2E:E8:E0:BD:BF:FF:E7:CA:7C:50:C3
Certificate issuer: /CN=bd19d4535c7e62b921e859e6557b821f278e716a
Certificate serial: 018570C2CB730979925479BCF339D4C0FE9D
Authority key identifier: BD:19:D4:53:5C:7E:62:B9:21:E8:59:E6:55:7B:82:1F:27:8E:71:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vRnUU1x-Yrkh6FnmVXuCHyeOcWo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/2599f9-6f76-4db6-bca7-c1331f49fc09/1/_QnoGn-ttSm_Lujgvb__58p8UMM.roa
Signing time: Mon 02 Jan 2023 04:34:52 +0000
ROA not before: Mon 02 Jan 2023 04:34:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47823
IP address blocks: 185.23.6.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 21 Aug 2023 09:32:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:c2:cb:73:09:79:92:54:79:bc:f3:39:d4:c0:fe:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd19d4535c7e62b921e859e6557b821f278e716a
Validity
Not Before: Jan 2 04:34:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fd09e81a7fadb529bf2ee8e0bdbfffe7ca7c50c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:d5:8c:14:73:c6:92:fe:37:5a:ec:2d:b3:ce:
de:97:10:dc:c3:75:05:21:c1:af:b5:43:5a:60:15:
06:96:0a:c6:2c:f0:d8:02:f1:e5:7c:66:7c:84:18:
d5:53:33:e5:ea:16:ff:da:83:f4:ad:34:09:d2:c5:
a2:bd:63:d2:a3:a4:39:1f:df:93:09:bc:a7:b5:12:
22:f8:30:3b:d7:2b:c0:9c:13:05:00:db:0b:21:f5:
ba:69:c9:51:bc:29:99:58:2b:c7:e0:28:17:bd:62:
87:a2:7c:43:5a:01:07:e3:47:08:21:d6:60:0e:9a:
ae:c4:e0:95:37:54:87:96:e7:e9:47:d2:a0:bb:a7:
51:36:5b:a0:99:29:f7:67:20:aa:67:5a:ff:78:38:
b3:c4:b1:68:5e:ec:3a:8c:9d:37:61:05:5e:c8:8c:
0f:ff:15:66:46:24:36:f0:58:62:91:e3:65:81:6e:
68:2f:a2:8b:ad:35:ee:9e:d3:20:6c:84:c0:8f:f2:
27:71:ae:2b:34:be:b3:f0:ea:f1:f4:bc:1a:98:f4:
60:50:05:ab:06:da:6e:23:de:8d:46:3e:8d:e9:f0:
30:2a:a7:5d:f5:81:db:a5:15:20:e0:5a:1d:06:55:
03:5a:1e:92:a9:bb:e7:29:d8:73:7e:ef:64:64:b2:
da:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:09:E8:1A:7F:AD:B5:29:BF:2E:E8:E0:BD:BF:FF:E7:CA:7C:50:C3
X509v3 Authority Key Identifier:
keyid:BD:19:D4:53:5C:7E:62:B9:21:E8:59:E6:55:7B:82:1F:27:8E:71:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vRnUU1x-Yrkh6FnmVXuCHyeOcWo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/2599f9-6f76-4db6-bca7-c1331f49fc09/1/_QnoGn-ttSm_Lujgvb__58p8UMM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/2599f9-6f76-4db6-bca7-c1331f49fc09/1/vRnUU1x-Yrkh6FnmVXuCHyeOcWo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.23.6.0/24
Signature Algorithm: sha256WithRSAEncryption
14:26:5c:f7:5a:8f:b9:c5:95:90:b4:19:81:00:72:92:b2:d2:
7b:08:40:21:52:58:d0:82:e3:81:54:c5:42:aa:fb:e6:45:10:
60:b9:ab:d5:91:63:cb:60:99:eb:ed:ef:37:91:08:8e:42:31:
13:ac:79:17:65:d4:01:e9:2f:c1:f0:24:8b:32:81:51:73:15:
8b:e3:cb:9e:c9:01:03:37:fe:f4:7e:ef:72:ce:b2:50:74:33:
2e:db:6d:fb:64:6e:88:7a:3e:6f:49:3b:41:49:22:82:18:33:
d7:0d:6e:f6:c5:a9:be:d8:3c:40:87:71:f8:f3:ff:30:4a:1a:
ae:b4:b1:ff:e6:dc:95:9a:5b:a3:41:13:a2:67:d5:c0:b1:05:
64:bb:a4:ac:2c:0d:e4:54:8f:90:f8:fa:d3:d2:e6:d6:38:80:
0c:44:6a:1e:25:ac:ca:28:f8:df:0f:29:bd:8d:76:50:74:92:
e3:f3:7e:2e:13:67:84:64:dd:a1:65:eb:c7:8c:f3:3f:52:42:
29:33:d4:59:26:41:a3:99:d4:9f:ca:bd:20:c3:00:39:dd:92:
8b:92:4c:a8:ab:9d:aa:64:92:a9:1a:da:2e:d3:8c:f1:f3:2f:
0f:bb:15:fc:f1:8e:32:60:89:a4:c4:ba:45:8d:2d:a7:c1:9e:
0a:36:4b:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:52 2024 by rpki-client on console-fra.rpki-client.org