Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/QhJeNQewYStKFy2JlMjzIW5A7eA.roa
File: QhJeNQewYStKFy2JlMjzIW5A7eA.roa (raw, json)
Hash identifier: anncripLk52ioIzhoC815PNux3BCT2Ki2Bj/KmtE98E=
Subject key identifier: 42:12:5E:35:07:B0:61:2B:4A:17:2D:89:94:C8:F3:21:6E:40:ED:E0
Certificate issuer: /CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Certificate serial: 018B6DA8BA1C2F652CEDDCEDBEB50540655A
Authority key identifier: 83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/QhJeNQewYStKFy2JlMjzIW5A7eA.roa
Signing time: Thu 26 Oct 2023 20:24:16 +0000
ROA not before: Thu 26 Oct 2023 20:24:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 109.122.46.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 19 Nov 2023 22:31:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:6d:a8:ba:1c:2f:65:2c:ed:dc:ed:be:b5:05:40:65:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Validity
Not Before: Oct 26 20:24:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=42125e3507b0612b4a172d8994c8f3216e40ede0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:ae:c8:4d:14:72:21:87:77:06:33:2b:e6:da:
56:61:f9:ca:d1:35:5c:99:41:d1:d5:2d:99:b7:bc:
47:f4:73:8b:bf:b4:79:04:ab:e7:1d:b5:eb:5a:ee:
9d:db:17:d9:ad:42:40:27:a7:b4:c2:cd:00:3f:b8:
88:80:61:1d:cd:03:ab:51:91:72:7e:df:7d:41:f8:
63:17:18:49:a5:dc:f5:88:77:86:d7:21:1c:3a:d5:
18:6e:71:df:62:c4:b3:fb:48:4d:16:de:d7:e8:fc:
dd:9a:86:d1:33:b3:5d:1b:e7:a6:88:a7:c4:8e:f2:
9c:d3:fb:b7:35:8a:6d:ec:11:5e:1f:e3:fc:b4:22:
88:11:53:25:c6:2a:bb:ca:99:98:44:f7:6f:39:60:
ca:18:0d:86:10:60:46:d1:d2:7f:3a:db:74:61:1a:
c3:bd:a5:55:69:0d:93:e2:de:05:4a:b6:a2:42:16:
09:13:13:7e:dd:7e:3b:30:d9:ed:b6:48:39:7b:a9:
e3:23:b6:27:45:c1:f9:45:f4:cb:30:1c:bc:fb:d8:
a2:63:b4:15:40:d5:c3:4d:cb:f0:2c:b0:0d:7b:28:
e7:85:92:08:ca:1b:a4:ca:a0:bf:6e:1d:7b:84:60:
d0:a0:97:7e:04:92:12:f6:1a:2a:f3:d4:d1:8e:7d:
9b:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:12:5E:35:07:B0:61:2B:4A:17:2D:89:94:C8:F3:21:6E:40:ED:E0
X509v3 Authority Key Identifier:
keyid:83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/QhJeNQewYStKFy2JlMjzIW5A7eA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/gz4_XvglVWsBSghdMlZbsMvFrI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.122.46.0/24
Signature Algorithm: sha256WithRSAEncryption
33:7f:4a:47:50:86:1d:b8:eb:52:8c:9e:c1:b8:bb:30:54:4b:
33:76:00:5c:d3:e4:46:be:fd:3e:8f:bd:97:02:90:50:31:50:
3c:60:a1:41:b0:38:d3:8e:15:22:e3:f9:f6:d6:c6:89:b2:39:
27:bb:32:cd:ae:97:d1:94:5e:12:86:cb:b4:fc:c3:d4:af:49:
2c:bb:bf:06:7c:24:c7:0f:ed:8c:a1:ab:1b:55:b6:da:a3:eb:
5f:8d:22:d5:65:8f:d6:b8:f5:85:7a:e2:46:14:e0:e8:6b:dd:
fb:80:5a:16:4c:8b:d7:07:47:84:f7:f9:32:ac:19:1f:12:5a:
2f:7d:ea:54:89:e2:d3:62:6a:19:91:ee:72:41:df:f6:43:36:
0e:97:6a:90:cd:77:78:d7:89:b7:a3:7f:6c:e4:8d:49:a3:08:
aa:27:57:59:8b:6d:d0:f2:6e:66:17:49:c2:c9:08:f5:9f:1a:
3b:03:e2:4d:12:6b:d6:67:fc:82:00:24:99:2f:65:3f:26:71:
e2:21:c7:e6:0c:11:8b:8a:b5:83:8b:5e:fa:27:fa:55:6a:3b:
da:ff:7e:b5:4e:39:05:d2:5d:1e:1c:d1:72:fa:9b:99:f4:fe:
9a:0a:62:7d:6f:21:42:94:ed:fa:f4:55:e4:08:91:64:8f:be:
66:c9:d7:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:36 2024 by rpki-client on console-fra.rpki-client.org