Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/9d1a4b-509a-4913-b937-d0adb11ded34/1/PXQFQ190Nj9TXzKQWdqmu4tJ1WM.roa
File: PXQFQ190Nj9TXzKQWdqmu4tJ1WM.roa (raw, json)
Hash identifier: I91IOPBE5LSc8ttX/vW8zRUPSgVNPR3/xRRD7Lml/R8=
Subject key identifier: 3D:74:05:43:5F:74:36:3F:53:5F:32:90:59:DA:A6:BB:8B:49:D5:63
Certificate issuer: /CN=8e303cc2af838789652771c345e07df3e80d544f
Certificate serial: 018CC6B80673D5CE7779ECD75968C189C570
Authority key identifier: 8E:30:3C:C2:AF:83:87:89:65:27:71:C3:45:E0:7D:F3:E8:0D:54:4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jjA8wq-Dh4llJ3HDReB98-gNVE8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/9d1a4b-509a-4913-b937-d0adb11ded34/1/PXQFQ190Nj9TXzKQWdqmu4tJ1WM.roa
Signing time: Mon 01 Jan 2024 20:29:58 +0000
ROA not before: Mon 01 Jan 2024 20:29:58 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 201311
IP address blocks: 185.78.248.0/22 maxlen: 22
Validation: Failed, certificate revoked on Fri 23 Feb 2024 09:27:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b8:06:73:d5:ce:77:79:ec:d7:59:68:c1:89:c5:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e303cc2af838789652771c345e07df3e80d544f
Validity
Not Before: Jan 1 20:29:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3d7405435f74363f535f329059daa6bb8b49d563
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:74:76:79:af:71:e0:c4:ab:8b:4f:4f:0e:1d:
d8:e9:b5:d1:e0:96:30:ce:09:4f:45:71:db:0a:1d:
0a:cc:0f:7b:78:12:81:9e:f0:99:8b:ef:ff:19:a4:
3c:27:82:78:7d:7f:a6:bd:b3:d0:b1:6c:e4:8c:be:
60:44:7e:b4:bb:5b:7c:92:88:47:f4:4d:b5:46:10:
d1:d6:e4:c2:83:84:81:fa:5c:70:c8:40:4e:97:a3:
c5:ee:48:df:fa:c7:66:a3:a4:07:2e:d0:a2:ae:49:
fa:37:00:27:62:4a:e8:65:42:92:62:51:1e:61:fe:
73:11:9c:ec:ce:46:d0:6f:56:c9:b0:e3:28:a4:09:
4b:f4:da:05:90:97:f0:97:29:dd:1a:2c:ac:18:29:
f9:47:04:c5:6c:f9:bc:21:9c:da:72:f3:aa:38:28:
e5:a2:e5:64:b7:41:82:ec:ba:7c:ba:8c:56:42:3e:
dc:61:ea:4e:d5:81:5e:9d:97:dd:88:d2:21:16:4d:
52:56:de:05:f6:d0:73:f4:31:a9:03:17:3e:75:08:
6b:4c:9f:a1:92:f7:58:58:bb:53:de:10:82:7e:c0:
3e:46:5a:25:12:7f:f5:ad:7f:6d:53:23:de:09:59:
29:82:44:ea:f9:f7:5e:f7:31:3e:d0:bf:5b:4d:d2:
5d:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:74:05:43:5F:74:36:3F:53:5F:32:90:59:DA:A6:BB:8B:49:D5:63
X509v3 Authority Key Identifier:
keyid:8E:30:3C:C2:AF:83:87:89:65:27:71:C3:45:E0:7D:F3:E8:0D:54:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jjA8wq-Dh4llJ3HDReB98-gNVE8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/9d1a4b-509a-4913-b937-d0adb11ded34/1/PXQFQ190Nj9TXzKQWdqmu4tJ1WM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/9d1a4b-509a-4913-b937-d0adb11ded34/1/jjA8wq-Dh4llJ3HDReB98-gNVE8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.78.248.0/22
Signature Algorithm: sha256WithRSAEncryption
b8:d3:eb:ac:c7:5c:2a:b7:f0:00:f8:2c:0f:10:49:f5:75:ca:
ab:60:66:fc:8c:26:4e:70:41:8d:30:65:8b:9e:d2:dd:16:c6:
7a:59:b9:52:05:8f:d7:8d:0d:d3:97:15:48:5b:02:43:8b:1f:
33:60:a7:d4:e9:32:c7:d9:50:72:97:2e:01:a7:ec:2e:f2:1e:
fa:85:ea:d8:2f:4c:37:cf:09:af:6f:c9:42:72:71:2a:50:24:
08:00:53:cd:73:9b:0a:7e:7f:ed:20:9b:59:01:94:86:ee:8f:
aa:6b:b4:71:4a:71:ec:98:a6:65:b2:5c:ce:fa:8e:11:66:5b:
1c:f1:f3:16:7f:f1:78:b0:32:39:33:3f:25:ac:b4:37:ea:77:
0d:36:7c:75:ef:91:51:e8:55:7d:cf:86:8b:b0:f3:03:00:ae:
e6:56:37:0b:4c:db:fd:45:e6:fa:93:27:bd:ef:df:97:5e:7e:
07:8c:e7:21:29:66:50:61:69:1d:67:91:ad:28:ce:16:6e:10:
35:ad:8c:28:0d:0e:4e:43:8f:0e:1e:94:ad:70:9d:47:77:59:
2c:5b:aa:2b:4a:f2:46:a5:8f:c1:86:8c:89:52:74:72:40:9f:
7a:63:00:d6:e9:bd:b9:0d:5d:b4:2d:31:b3:6d:3c:04:3a:04:
00:dc:37:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:02 2024 by rpki-client on console-ams.rpki-client.org