Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/d45f11-67c2-47a5-996c-891eb548b891/1/QnQVWWnJmcJMw2BU_l4NRczsf7A.roa
File: QnQVWWnJmcJMw2BU_l4NRczsf7A.roa (raw, json)
Hash identifier: YEiK98W+f0ZpOfmzMpzhwkKuTTI20eWht7Pd5nYvT8o=
Subject key identifier: 42:74:15:59:69:C9:99:C2:4C:C3:60:54:FE:5E:0D:45:CC:EC:7F:B0
Certificate issuer: /CN=9cf608ffadf600081ee922298e4b2ae96aff48e8
Certificate serial: 01857246AE1B14EA6F7D841529E01C66F41D
Authority key identifier: 9C:F6:08:FF:AD:F6:00:08:1E:E9:22:29:8E:4B:2A:E9:6A:FF:48:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nPYI_632AAge6SIpjksq6Wr_SOg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/d45f11-67c2-47a5-996c-891eb548b891/1/QnQVWWnJmcJMw2BU_l4NRczsf7A.roa
Signing time: Mon 02 Jan 2023 11:38:32 +0000
ROA not before: Mon 02 Jan 2023 11:38:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208526
IP address blocks: 45.131.124.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:46:ae:1b:14:ea:6f:7d:84:15:29:e0:1c:66:f4:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9cf608ffadf600081ee922298e4b2ae96aff48e8
Validity
Not Before: Jan 2 11:38:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4274155969c999c24cc36054fe5e0d45ccec7fb0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:af:d0:24:c7:1b:02:16:b5:22:66:ef:49:97:
03:87:af:b3:28:fa:88:bd:46:85:79:3c:b3:e3:a9:
fd:00:3f:7d:ba:b1:58:18:9c:2f:91:0d:00:41:fd:
4a:52:32:ed:00:7d:ed:7d:aa:8b:48:ee:8f:24:d7:
61:db:f6:4d:f0:60:d7:94:18:5f:e4:e8:46:21:7f:
f7:ac:ab:44:48:a3:bc:dc:17:f4:cc:1b:ed:91:bb:
f9:c1:7a:16:2b:36:44:c0:1c:8b:97:05:bd:81:db:
ad:58:51:6b:96:4a:43:bc:47:2b:a5:e8:64:7b:d8:
bf:b5:58:46:92:2f:5e:a1:e3:33:14:36:dc:21:bb:
54:2a:d0:6f:98:aa:f6:37:62:76:79:2f:b2:bc:b1:
59:a3:9e:c6:26:6d:c9:13:6a:02:8b:d6:38:db:8c:
42:7c:e5:ed:98:8e:6b:30:5b:c4:71:48:95:1d:3d:
d9:04:01:fc:fb:81:f7:3f:c0:2f:17:03:75:2e:de:
99:e6:28:a6:bc:3b:28:2c:6a:0e:6b:8f:cf:35:e8:
c6:54:cf:ff:11:c3:99:10:ec:3e:d7:06:aa:81:99:
be:97:30:e2:9a:68:bc:36:fe:12:a9:d9:f2:87:b0:
62:b1:82:f0:b2:f5:0a:21:b5:d1:ce:44:fa:c2:42:
2b:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:74:15:59:69:C9:99:C2:4C:C3:60:54:FE:5E:0D:45:CC:EC:7F:B0
X509v3 Authority Key Identifier:
keyid:9C:F6:08:FF:AD:F6:00:08:1E:E9:22:29:8E:4B:2A:E9:6A:FF:48:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nPYI_632AAge6SIpjksq6Wr_SOg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/d45f11-67c2-47a5-996c-891eb548b891/1/QnQVWWnJmcJMw2BU_l4NRczsf7A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/d45f11-67c2-47a5-996c-891eb548b891/1/nPYI_632AAge6SIpjksq6Wr_SOg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.131.124.0/24
Signature Algorithm: sha256WithRSAEncryption
62:16:f5:c0:91:d3:dc:e8:a5:19:b0:4a:36:c0:b6:5c:24:d4:
60:b2:af:dd:15:d2:db:28:96:3a:cf:99:c7:66:67:d8:d1:e7:
53:fa:d0:26:7d:ba:8b:b1:27:3a:5f:64:d7:d9:f4:12:0e:48:
d4:9b:a6:4c:2d:7f:8a:5d:fc:55:10:1e:47:10:3b:1c:fe:e9:
54:3d:8f:29:e0:47:76:73:f3:3f:7f:9f:28:1f:be:23:17:75:
98:37:93:b6:5e:5d:cf:bc:b2:22:92:b1:ad:e4:cc:7e:fa:d8:
76:76:45:65:71:67:2e:40:29:7a:f2:f2:4d:61:df:4e:84:7a:
1c:39:5a:80:85:7b:6a:11:83:74:39:f7:bc:28:1d:90:17:22:
c5:90:df:8c:23:af:8c:09:cd:98:a5:af:99:3f:1c:2b:b3:15:
91:3d:a4:a8:fb:5d:3f:c5:e4:4d:72:88:f1:7c:b3:76:7d:fe:
27:78:a6:44:8d:18:87:56:37:11:72:4b:e9:7d:82:f0:ca:4e:
c1:ab:00:a4:4b:df:31:13:ba:f2:8a:ca:e8:cb:7c:51:25:0d:
f0:0a:2c:57:c3:7e:ce:f2:e3:67:55:c4:9d:3f:31:ce:8f:ca:
31:27:08:b5:30:c0:54:2c:94:b6:bf:81:81:39:09:e1:9f:ae:
b6:1e:13:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:56:21 2024 by rpki-client on console-ams.rpki-client.org