Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/Q9_HdDPSr7aEYIrDzZJsXvrFz7U.roa
File: Q9_HdDPSr7aEYIrDzZJsXvrFz7U.roa (raw, json)
Hash identifier: aOQJLSXNP2JKErO61GaasaKi2r435cyyNoLZKoBNNBw=
Subject key identifier: 43:DF:C7:74:33:D2:AF:B6:84:60:8A:C3:CD:92:6C:5E:FA:C5:CF:B5
Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Certificate serial: 0185738FDD63133118DD436D6EE106E17CEF
Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/Q9_HdDPSr7aEYIrDzZJsXvrFz7U.roa
Signing time: Mon 02 Jan 2023 17:38:05 +0000
ROA not before: Mon 02 Jan 2023 17:38:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21161
IP address blocks: 185.186.67.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:8f:dd:63:13:31:18:dd:43:6d:6e:e1:06:e1:7c:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Validity
Not Before: Jan 2 17:38:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=43dfc77433d2afb684608ac3cd926c5efac5cfb5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:60:dd:e0:a1:3d:a5:e8:46:10:20:4c:b8:b1:
3f:c5:d7:c9:68:85:8a:74:67:3e:78:32:9b:75:d5:
85:2d:16:2c:00:7d:8f:fe:97:30:da:a8:4c:7d:d6:
19:d9:e4:a9:ee:67:e6:1f:da:ec:7d:65:52:de:ed:
5c:cd:4d:45:b0:67:1a:1c:6c:1b:28:ca:34:fa:2f:
59:65:2c:43:e8:27:88:31:53:db:c0:d3:97:f5:60:
a7:b1:3b:09:97:24:16:ce:39:55:0c:d7:bf:c7:aa:
8e:bb:10:20:f6:fd:f4:27:c9:f9:ad:38:45:75:24:
d4:67:c6:ef:5c:6c:3b:5c:50:c2:4f:7e:e8:97:76:
d0:2c:23:66:d5:6c:a4:64:5a:40:7c:a2:05:21:22:
8f:98:e0:84:f0:61:c3:d5:9a:73:a1:4a:44:da:6e:
43:26:8f:57:5b:ae:57:f3:fb:88:93:17:7c:11:24:
78:1f:5f:39:2d:32:e0:c6:e6:46:e3:29:2e:4f:dd:
10:50:d3:1b:cb:11:71:8e:1d:14:84:ef:7d:b9:bd:
74:23:56:2d:2b:96:5e:7c:b3:28:e6:63:e1:f7:da:
a2:9f:e0:52:d2:bf:6b:a3:c8:ad:16:ba:04:af:77:
8e:7e:f0:fc:6e:00:51:6f:a8:84:59:4c:6f:65:01:
1c:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:DF:C7:74:33:D2:AF:B6:84:60:8A:C3:CD:92:6C:5E:FA:C5:CF:B5
X509v3 Authority Key Identifier:
keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/Q9_HdDPSr7aEYIrDzZJsXvrFz7U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.186.67.0/24
Signature Algorithm: sha256WithRSAEncryption
23:d5:0b:cf:92:d8:32:7d:bd:95:c2:22:40:91:1a:c6:12:04:
92:d8:fa:0e:fe:f6:3c:ce:1a:f2:75:09:f6:c3:20:59:3b:23:
ee:c8:3a:e8:fa:35:40:0e:87:72:c1:67:29:12:ee:16:6f:a1:
f3:51:b4:a7:ea:a9:3b:36:47:42:a0:81:6b:cd:be:be:3a:44:
c4:78:52:c0:86:dc:11:73:ac:0c:ef:92:b8:2a:7b:c4:4c:c6:
f3:5e:10:86:42:59:6d:ca:c5:3a:6b:7a:9e:0d:52:44:86:72:
16:b9:3a:cd:fe:4b:8d:44:8d:f3:5f:7e:e8:db:dd:05:12:34:
ff:08:73:c1:34:46:a8:9e:c9:96:31:37:98:8f:0d:02:93:53:
42:89:5b:de:50:ba:e5:f1:10:5c:af:3e:fd:bc:50:09:1e:b9:
54:94:25:5a:5d:3f:0f:fe:47:a3:ff:39:19:d5:d7:40:a4:e9:
00:37:b6:39:32:bb:c7:25:f0:b6:94:f3:72:1f:52:21:da:7b:
5b:b9:35:f5:0c:81:18:7b:4e:71:f3:8a:d8:74:61:fd:61:eb:
bb:e1:ba:9b:86:45:85:5e:b7:13:74:c8:44:65:89:6e:2b:8d:
0b:2d:5a:42:73:55:64:f6:9c:48:36:5c:eb:65:7d:28:2b:15:
68:20:25:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:49 2024 by rpki-client on console-fra.rpki-client.org