Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/QVY9LW31Neiqf5wpB143UOUjSDk.roa
File: QVY9LW31Neiqf5wpB143UOUjSDk.roa (raw, json)
Hash identifier: m93zg07+Lyd/e7c5CqOakANHy8bBV5KL0t22HIOvfdk=
Subject key identifier: 41:56:3D:2D:6D:F5:35:E8:AA:7F:9C:29:07:5E:37:50:E5:23:48:39
Certificate issuer: /CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Certificate serial: 018732D5F202A3AF153CF662DD2651D8B904
Authority key identifier: B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/QVY9LW31Neiqf5wpB143UOUjSDk.roa
Signing time: Thu 30 Mar 2023 14:04:54 +0000
ROA not before: Thu 30 Mar 2023 14:04:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199033
IP address blocks: 45.154.237.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:32:d5:f2:02:a3:af:15:3c:f6:62:dd:26:51:d8:b9:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Validity
Not Before: Mar 30 14:04:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=41563d2d6df535e8aa7f9c29075e3750e5234839
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:a9:8b:f6:83:f3:9d:86:32:48:64:10:7e:ef:
bd:0a:69:1f:ad:f5:3c:c4:70:3f:20:2e:40:17:31:
61:bb:35:43:1a:19:03:7e:52:c9:fc:a4:38:31:b0:
cc:53:a1:c1:fb:4f:05:a5:a0:1d:21:b4:47:27:27:
4d:40:01:25:d8:b9:cc:c8:6d:94:11:69:e4:16:4c:
e3:f4:d7:65:bf:e2:bb:08:bf:31:e5:1a:4d:b1:56:
f7:4b:d8:37:1d:b6:3c:5c:9f:0f:9a:8c:12:64:52:
d4:20:66:d5:c7:92:66:73:3c:52:93:d3:30:fe:2e:
28:3a:7f:73:27:7c:25:44:d2:3c:8b:eb:ba:2b:2a:
32:70:18:42:ac:f9:90:63:88:0e:0a:d9:dc:98:0f:
da:33:71:e8:df:59:42:44:6b:1e:bf:97:94:a6:9f:
bc:16:f4:9e:85:75:82:4a:fe:23:b4:25:65:0d:b4:
e2:ec:a9:63:11:4b:a4:1b:60:8e:9d:c1:b1:8b:85:
92:31:26:ca:58:20:eb:d1:d6:62:07:a1:cf:e8:0a:
22:62:8c:b7:cc:55:ff:9c:1c:2c:87:f7:e8:97:59:
1b:dd:c7:b2:fc:26:f8:a6:42:87:87:07:b1:05:0f:
8d:1a:b5:5d:8d:b4:7a:31:f6:c4:6f:25:dc:26:b4:
51:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:56:3D:2D:6D:F5:35:E8:AA:7F:9C:29:07:5E:37:50:E5:23:48:39
X509v3 Authority Key Identifier:
keyid:B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/QVY9LW31Neiqf5wpB143UOUjSDk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.154.237.0/24
Signature Algorithm: sha256WithRSAEncryption
66:de:4a:b7:f7:d8:22:86:45:1b:a1:74:fc:b1:51:8e:6d:e9:
17:e1:3f:0e:49:10:c2:96:01:fb:0a:2c:8a:f7:55:e2:2c:f6:
b0:84:fe:05:fd:99:a9:3e:28:f4:50:67:43:d6:ff:33:a3:8a:
50:88:04:16:55:f6:da:dc:8f:06:61:1a:5c:66:97:4b:fe:ec:
c4:ec:83:88:01:bd:9f:83:ef:04:43:6c:b8:e4:f2:ef:48:cd:
aa:8a:00:9d:ce:83:40:f1:b8:11:93:2e:10:29:a0:5f:77:5b:
96:50:a3:09:e5:a9:97:09:5d:b0:28:65:da:ff:be:f7:4b:9b:
06:a1:09:65:d8:4a:f1:c7:17:f8:7e:38:2d:53:eb:06:0b:4e:
00:02:02:50:aa:04:a6:88:1d:b4:b5:2c:33:dd:84:e5:0b:f0:
73:c1:c3:0a:30:a0:af:e2:57:71:3b:fe:48:b2:68:5a:e0:fd:
9b:59:be:db:ba:92:d4:25:56:6b:63:80:cd:04:88:52:19:e0:
cc:34:8b:df:da:c0:74:74:2e:4a:73:85:70:61:bb:03:a1:ea:
8b:14:e7:2d:41:02:93:0c:1c:cb:0c:30:ec:4e:31:0d:d8:d3:
ae:a1:77:45:ba:2e:b5:d6:63:26:f6:ef:39:2d:c3:9c:f3:30:
2c:36:73:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:25 2024 by rpki-client on console-fra.rpki-client.org