Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/Q0TeHVUW-7Bk9VXXSpN2TF9uvsQ.roa
File: Q0TeHVUW-7Bk9VXXSpN2TF9uvsQ.roa (raw, json)
Hash identifier: Lm1jx89Sd2b95Dtn8FUkYwOAm6EsDcaMn6waxz3i01M=
Subject key identifier: 43:44:DE:1D:55:16:FB:B0:64:F5:55:D7:4A:93:76:4C:5F:6E:BE:C4
Certificate issuer: /CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Certificate serial: 018570676DD78C9D4EBD1E4B85BF1F59B5FD
Authority key identifier: B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/Q0TeHVUW-7Bk9VXXSpN2TF9uvsQ.roa
Signing time: Mon 02 Jan 2023 02:55:04 +0000
ROA not before: Mon 02 Jan 2023 02:55:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 396998
IP address blocks: 185.228.81.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 20 Mar 2023 15:25:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:67:6d:d7:8c:9d:4e:bd:1e:4b:85:bf:1f:59:b5:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Validity
Not Before: Jan 2 02:55:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4344de1d5516fbb064f555d74a93764c5f6ebec4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:30:e5:3b:12:91:09:26:24:0e:66:a9:84:32:
20:e3:9b:c0:7d:7c:15:79:e8:de:21:78:05:d4:60:
81:fe:c0:bd:8d:59:49:f5:22:69:ff:7e:40:c4:41:
2b:35:32:1e:5e:86:8d:a4:02:9b:ef:96:42:6a:5b:
8e:4f:7f:bf:05:2a:76:a5:ae:86:23:90:d7:a9:34:
be:33:0a:56:47:9c:32:5a:2c:1a:1d:0b:78:38:e8:
a2:2c:04:2a:09:69:a8:6e:23:67:b3:f2:23:f1:6d:
4f:a3:d7:2e:a4:79:cc:ca:ec:76:d8:8b:ed:98:e7:
63:3c:a0:3e:0b:19:39:fb:a4:d1:fb:77:8d:cc:9b:
be:52:4a:c0:9b:28:64:e3:26:78:ee:16:e0:b1:fd:
60:69:41:b7:f6:19:c1:c7:dd:5e:94:67:be:cb:7e:
0a:ec:ed:e7:3a:08:9d:4a:67:28:8f:f3:e9:5e:f0:
4d:df:de:ae:6f:14:fa:22:b9:bb:a7:49:04:c6:b8:
6f:80:d6:c1:98:a1:6b:7d:f1:15:c8:35:82:80:90:
77:db:ec:d7:8f:bf:6c:ab:f7:0e:e0:c0:77:4c:5a:
d8:f1:a6:5c:16:e5:8c:3a:ac:f2:f4:6e:cb:96:29:
9f:47:7f:c2:a8:4a:de:9a:0f:94:80:e2:4b:67:1d:
39:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:44:DE:1D:55:16:FB:B0:64:F5:55:D7:4A:93:76:4C:5F:6E:BE:C4
X509v3 Authority Key Identifier:
keyid:B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/Q0TeHVUW-7Bk9VXXSpN2TF9uvsQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.228.81.0/24
Signature Algorithm: sha256WithRSAEncryption
87:10:66:af:b8:b3:29:d0:cd:10:82:01:6f:60:03:13:bc:ec:
5b:56:26:8d:73:30:2e:e2:39:3a:9a:fe:29:3d:bf:5e:8f:85:
7a:d9:8b:07:8a:c7:b9:b5:59:cc:9b:27:ef:a0:67:ef:a0:bc:
77:85:b8:74:6b:5c:85:d0:98:e6:aa:6b:97:a6:11:71:67:d9:
1b:f9:00:22:39:e9:98:8f:ab:33:d2:e8:8a:74:3c:b9:79:50:
80:e1:8e:a2:7c:d4:ab:c5:ef:52:a9:9f:fc:90:6b:f5:90:fe:
37:fa:2e:79:e8:d7:dd:5a:d1:53:43:ae:c1:34:ae:2d:7c:0c:
46:4f:04:00:6f:8f:27:db:ad:28:f6:af:15:f2:7e:e1:f8:ee:
d0:37:0f:b0:d8:a5:b2:8c:20:51:a1:ea:c7:19:38:d8:cb:40:
47:fa:73:be:03:5a:49:8b:4c:12:40:96:76:6c:ad:39:40:e3:
40:97:79:5d:42:d3:94:e7:a6:02:f2:9d:35:0f:1f:7d:68:1b:
0c:58:be:42:cd:43:a6:c8:8a:c6:a2:33:59:2d:e9:e2:31:32:
e1:18:7c:fb:5b:54:b1:3f:0d:06:11:8b:b4:37:b3:99:94:87:
96:96:65:1d:b0:08:a9:d7:71:cc:db:92:51:13:30:5f:19:c9:
ff:37:83:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:25 2024 by rpki-client on console-fra.rpki-client.org