Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/607721-00ff-4581-80e5-6fa84402d6a0/1/QXYqddMsfU3q92QxbCqK_fo5LtA.roa
File: QXYqddMsfU3q92QxbCqK_fo5LtA.roa (raw, json)
Hash identifier: I4Fxe2SxPgRkNAbnrcZ8X3Q4WPOxF01TrWiyaU/3S10=
Subject key identifier: 41:76:2A:75:D3:2C:7D:4D:EA:F7:64:31:6C:2A:8A:FD:FA:39:2E:D0
Certificate issuer: /CN=7c86f13a9b721cd1869fbb974ee53d90022eaa2c
Certificate serial: 018BAA74B7D5CDC14FB5B94457D25EB6E146
Authority key identifier: 7C:86:F1:3A:9B:72:1C:D1:86:9F:BB:97:4E:E5:3D:90:02:2E:AA:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fIbxOptyHNGGn7uXTuU9kAIuqiw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/607721-00ff-4581-80e5-6fa84402d6a0/1/QXYqddMsfU3q92QxbCqK_fo5LtA.roa
Signing time: Tue 07 Nov 2023 15:44:17 +0000
ROA not before: Tue 07 Nov 2023 15:44:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44887
IP address blocks: 185.46.165.0/24 maxlen: 24
2a14:3e00::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:aa:74:b7:d5:cd:c1:4f:b5:b9:44:57:d2:5e:b6:e1:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7c86f13a9b721cd1869fbb974ee53d90022eaa2c
Validity
Not Before: Nov 7 15:44:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=41762a75d32c7d4deaf764316c2a8afdfa392ed0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:63:8b:09:96:09:d3:05:41:dc:86:b3:3f:97:
eb:dd:e3:b4:e9:13:6b:db:32:b1:89:ed:c9:26:2c:
07:07:a3:29:19:70:ab:9f:c0:fd:2f:02:95:cd:18:
9e:4f:2c:e4:af:05:58:61:e8:f4:41:eb:3e:38:f3:
96:9a:1d:78:d7:dc:d6:05:b8:ea:39:ee:00:03:44:
ab:b5:dc:e9:3b:36:bd:d0:49:e4:d8:5f:9a:9b:39:
48:1f:cb:9e:cc:c8:e1:c0:6e:31:61:9e:d4:7d:87:
f7:89:94:3e:23:b8:08:83:a2:3a:3b:86:d8:e2:a6:
7a:69:56:86:5b:92:a7:d9:b7:45:05:ba:bf:12:77:
b2:3f:ae:fe:3a:16:c0:a5:f0:47:0a:4b:72:e9:30:
f3:47:19:78:85:2e:26:24:25:d1:db:fb:a4:a2:f7:
fa:ee:23:b9:8f:f7:7e:ff:f3:3b:2b:19:eb:60:26:
50:09:0b:cd:12:99:31:dd:fa:d9:1d:67:b6:9d:29:
9e:c0:8f:cc:5a:36:cb:d6:a6:c8:49:0e:8b:bb:0e:
13:e3:d2:b0:60:2f:d0:d4:c3:de:23:bd:2a:70:e0:
9d:f9:1f:ca:53:c2:73:4d:6f:7f:d3:9a:26:87:0f:
0c:09:c0:c0:33:65:c7:03:36:46:e4:e4:5b:fb:b1:
b4:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:76:2A:75:D3:2C:7D:4D:EA:F7:64:31:6C:2A:8A:FD:FA:39:2E:D0
X509v3 Authority Key Identifier:
keyid:7C:86:F1:3A:9B:72:1C:D1:86:9F:BB:97:4E:E5:3D:90:02:2E:AA:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fIbxOptyHNGGn7uXTuU9kAIuqiw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/607721-00ff-4581-80e5-6fa84402d6a0/1/QXYqddMsfU3q92QxbCqK_fo5LtA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/607721-00ff-4581-80e5-6fa84402d6a0/1/fIbxOptyHNGGn7uXTuU9kAIuqiw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.46.165.0/24
IPv6:
2a14:3e00::/29
Signature Algorithm: sha256WithRSAEncryption
69:85:36:b0:5e:7a:82:74:9d:b8:72:db:6e:42:fa:41:45:3c:
52:d0:b5:53:73:f9:9a:ce:73:80:61:d1:c7:6d:47:c8:0d:1a:
8f:62:85:1c:7f:96:c3:42:70:10:8b:84:c0:e4:36:8a:77:8b:
69:e6:cd:9d:e9:f0:22:f9:dd:72:cf:31:b0:9e:37:d3:a0:f0:
8b:93:23:6b:fe:d1:f2:89:a9:2f:7c:6c:dd:6c:c2:32:4a:70:
da:a8:a7:7b:55:fe:33:3a:ff:03:f9:8c:b4:47:5f:05:c5:99:
0c:9d:01:fd:74:85:5c:de:01:07:57:d3:ff:ae:e1:84:8b:99:
40:82:bc:c7:3c:a4:b4:02:79:6d:22:1b:6c:5d:fd:f6:d5:72:
cc:ac:a6:64:af:1d:b1:80:d8:a4:93:10:16:d4:a9:8b:bf:23:
7f:82:7c:26:c4:6c:27:78:4d:81:a6:ab:8b:c7:ff:d1:b8:af:
59:e3:6d:5c:d5:a0:c6:60:c3:49:67:e0:7b:61:9b:56:15:20:
80:ba:fc:4f:79:bf:bb:2f:6f:f5:ae:97:6f:22:8b:3e:5d:ea:
48:89:e9:2a:a5:85:e1:30:df:57:ad:66:bd:77:4b:ff:1e:e8:
5a:d9:ab:a4:13:f4:70:92:36:e9:49:39:68:06:fc:05:a2:64:
fd:d9:ed:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:02 2024 by rpki-client on console-fra.rpki-client.org