Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/qSaN5hnevXUjg6qLfRJfyjHnTu4.roa
File: qSaN5hnevXUjg6qLfRJfyjHnTu4.roa (raw, json)
Hash identifier: T0EQDePJnk2caU1oTJPYvs2Cd6aHP2GzvX018OuRz0w=
Subject key identifier: A9:26:8D:E6:19:DE:BD:75:23:83:AA:8B:7D:12:5F:CA:31:E7:4E:EE
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 018964E6C3A8F25630FD3721046BC752AA1A
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/qSaN5hnevXUjg6qLfRJfyjHnTu4.roa
Signing time: Mon 17 Jul 2023 17:29:52 +0000
ROA not before: Mon 17 Jul 2023 17:29:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44592
IP address blocks: 185.117.3.0/24 maxlen: 24
45.13.227.0/24 maxlen: 24
5.253.246.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:33:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:64:e6:c3:a8:f2:56:30:fd:37:21:04:6b:c7:52:aa:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Jul 17 17:29:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a9268de619debd752383aa8b7d125fca31e74eee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:9c:a9:77:7e:16:cc:5a:dd:46:32:f6:d7:1e:
54:3a:b2:e7:36:08:b4:34:64:75:d6:b9:28:57:1e:
eb:ab:17:56:56:05:a2:88:10:c4:c7:0c:15:fd:a0:
2d:02:40:81:36:21:09:b8:95:0b:52:c2:c0:d5:9d:
ca:b9:50:0b:e3:c4:3c:3e:1b:4b:13:26:53:1f:e7:
a1:3d:9c:4b:8d:fb:2a:ae:de:a4:de:4f:b1:8f:7a:
d0:ce:36:cd:17:1b:2a:65:7e:74:55:2b:2c:61:4e:
8f:c8:33:65:99:35:f3:82:1e:28:40:a5:f8:53:fa:
67:39:ca:3d:38:c9:f2:d0:3e:84:eb:06:31:a9:37:
31:8b:71:2c:45:78:56:88:b9:12:f3:be:f2:10:fa:
b3:28:af:9d:1f:a1:45:47:75:7c:74:84:ff:fe:d4:
4c:a2:26:e0:0b:f0:65:c7:60:49:ae:ac:54:cb:86:
7c:ca:54:11:70:a1:45:8c:fc:19:52:43:de:c7:21:
54:68:85:13:6e:f8:1a:29:54:74:3c:22:0e:29:0e:
d2:2f:48:3a:12:34:db:1e:50:da:5c:f2:83:8b:48:
20:5b:99:89:7b:db:b6:2d:6e:81:03:0e:39:24:e6:
c1:8d:9b:e9:e0:c2:9d:d8:6b:09:f7:8a:f7:62:e9:
02:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:26:8D:E6:19:DE:BD:75:23:83:AA:8B:7D:12:5F:CA:31:E7:4E:EE
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/qSaN5hnevXUjg6qLfRJfyjHnTu4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.246.0/24
45.13.227.0/24
185.117.3.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:49:23:f8:50:5f:b0:8e:22:fe:d3:3d:58:24:4e:ee:4f:9b:
72:51:b8:ca:57:67:d6:12:f5:c1:bb:52:d0:96:27:67:8f:f8:
9f:df:05:01:ab:5a:1a:eb:a9:32:26:b9:19:59:5b:f2:f2:ac:
e3:42:7e:e5:09:24:6c:10:a4:a1:c1:30:a4:50:6c:d9:66:62:
b6:6d:69:b5:c6:12:d1:cc:90:e6:c8:45:2f:fa:c1:ce:28:1c:
c7:74:06:c5:b0:02:16:f3:5c:fb:f3:eb:6b:4b:49:72:45:8c:
36:45:66:6d:f9:7a:60:6e:c8:15:3e:ff:91:65:51:be:ba:73:
74:a2:df:40:a9:78:40:66:71:e3:a7:6f:1a:13:38:57:dc:f3:
eb:ad:7a:da:95:74:89:8e:e5:78:48:7c:34:9c:4f:c9:4d:2f:
05:96:9e:a2:80:c1:47:6f:48:35:e4:37:7a:7a:81:b1:d3:81:
ae:b1:7b:96:c3:4b:d4:36:bb:e6:c9:ee:98:29:c1:29:a1:02:
1d:0e:05:c8:ad:f2:6b:90:08:79:5c:5c:cc:5b:bc:6f:cc:51:
d0:2c:be:ba:cd:42:38:19:ae:6c:11:6a:df:3c:f2:35:1f:7c:
9c:41:50:bf:bc:6f:d0:78:a6:ca:7d:5c:97:aa:c9:26:b5:27:
ce:d3:45:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:28 2024 by rpki-client on console-fra.rpki-client.org