Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/QlWjvIrh6GhKv7agrKdx7pX06nw.roa
File: QlWjvIrh6GhKv7agrKdx7pX06nw.roa (raw, json)
Hash identifier: Ow5FKGGVUqwYrenMOdW5sIoZoMsl+YS38qgIA9bBEC8=
Subject key identifier: 42:55:A3:BC:8A:E1:E8:68:4A:BF:B6:A0:AC:A7:71:EE:95:F4:EA:7C
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018E2D554189674A15E66084C6BD443CBCF6
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/QlWjvIrh6GhKv7agrKdx7pX06nw.roa
Signing time: Mon 11 Mar 2024 11:45:45 +0000
ROA not before: Mon 11 Mar 2024 11:45:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215479
IP address blocks: 80.76.51.0/24 maxlen: 24
95.214.27.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 20 Apr 2024 08:41:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:2d:55:41:89:67:4a:15:e6:60:84:c6:bd:44:3c:bc:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Mar 11 11:45:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4255a3bc8ae1e8684abfb6a0aca771ee95f4ea7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:3e:ef:e1:19:58:2d:69:36:2e:d5:1c:09:8b:
bb:f2:8b:e4:d3:30:ed:26:89:75:82:47:3d:53:80:
8d:86:00:fd:c0:91:38:2f:08:b2:2f:20:31:52:ee:
71:5f:87:ce:34:0f:cd:a5:17:2e:2d:c4:63:83:05:
a2:fa:27:9b:4d:9d:c8:a5:71:ef:a9:4a:a8:9e:c0:
a2:ac:34:b3:a2:75:5b:e0:2c:c2:ae:27:b1:c7:39:
83:4c:29:1c:c6:fb:89:7d:11:60:c2:b7:19:04:4a:
f8:02:88:8a:c3:35:34:93:75:0d:bc:c0:34:91:e6:
5b:7d:28:8b:4b:bb:49:ef:42:5b:0b:5b:4b:8b:91:
57:b3:8b:0b:9a:ad:d2:be:1f:51:f2:b3:39:52:52:
9e:74:2e:5c:70:99:6b:3c:6d:cf:bb:b8:b6:d8:4f:
2d:47:23:f7:b1:60:28:cf:ca:9b:42:ea:fb:75:74:
f7:c6:da:ab:bd:fd:82:b4:05:98:1e:1b:8b:87:87:
79:74:73:87:c8:b2:0d:19:0a:a5:cc:e0:d9:cc:58:
e6:77:41:f3:be:22:73:20:05:e8:ac:69:23:bc:2c:
f8:63:81:ec:f0:54:c5:88:75:de:8f:91:7a:a7:7a:
8c:10:b8:91:10:16:88:38:c0:be:a9:c6:40:7a:a7:
82:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:55:A3:BC:8A:E1:E8:68:4A:BF:B6:A0:AC:A7:71:EE:95:F4:EA:7C
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/QlWjvIrh6GhKv7agrKdx7pX06nw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.76.51.0/24
95.214.27.0/24
Signature Algorithm: sha256WithRSAEncryption
03:dc:6c:09:05:23:61:a9:22:13:86:c8:79:54:df:a0:00:1b:
cb:b7:1a:f5:6e:11:8f:c5:d1:4c:77:64:bb:70:27:67:aa:2a:
5b:80:ac:d2:bb:71:ac:31:4b:cf:99:b8:dd:51:a8:0c:f8:2c:
b6:8c:04:9d:33:be:9b:40:9f:18:f7:2d:4c:b0:51:49:bd:83:
2f:e0:f7:9a:6c:85:79:0b:d1:35:94:71:ef:7f:b3:96:5c:9a:
0b:1e:98:26:5b:1e:4b:c9:5b:99:de:4f:87:a5:47:47:b0:3f:
5e:12:07:89:58:4e:b7:03:25:1d:b8:8c:8b:98:74:f9:18:fa:
3b:b9:fd:be:6e:fd:37:02:bf:61:b1:5c:14:bb:f8:86:09:c5:
b6:9d:2a:b6:e1:b7:75:17:3a:36:1b:f9:da:9f:59:32:41:80:
45:12:fb:62:97:95:73:77:e5:48:06:0a:79:37:3a:3f:5e:a0:
6c:90:d4:67:c7:0c:8c:14:78:01:09:4f:52:fa:3f:be:f6:08:
b9:ed:cb:a0:7f:61:87:a5:16:7a:ca:06:8d:ab:a6:45:e3:5f:
cb:b3:f9:da:11:ac:f0:f6:43:7a:fc:47:00:83:a6:d2:64:2d:
71:1e:e6:81:d2:ee:23:3c:42:84:bd:30:b5:bf:35:54:a1:9b:
13:ca:6a:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 20 11:32:10 2024 by rpki-client on console-ams.rpki-client.org