Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/3qKi8sTClmebupIQJ0TpZLnDQAY.roa
File: 3qKi8sTClmebupIQJ0TpZLnDQAY.roa (raw, json)
Hash identifier: jfXvlxLdF2ISE/Uyyjon0V3KvoAvwvHeGXNTaNobdJg=
Subject key identifier: DE:A2:A2:F2:C4:C2:96:67:9B:BA:92:10:27:44:E9:64:B9:C3:40:06
Certificate issuer: /CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Certificate serial: 018D136CCE7791845395465BCE4969E6808B
Authority key identifier: 4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/3qKi8sTClmebupIQJ0TpZLnDQAY.roa
Signing time: Tue 16 Jan 2024 17:58:34 +0000
ROA not before: Tue 16 Jan 2024 17:58:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7018
IP address blocks: 146.19.93.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 22 Apr 2024 14:48:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:13:6c:ce:77:91:84:53:95:46:5b:ce:49:69:e6:80:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Validity
Not Before: Jan 16 17:58:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=dea2a2f2c4c296679bba92102744e964b9c34006
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:a9:0b:de:cf:73:30:e2:72:4f:0d:9d:23:46:
97:f6:77:33:42:42:6d:ef:23:95:9d:6b:84:e9:26:
40:9e:8e:9a:9e:e2:5d:9a:12:19:8f:2a:3e:0b:6e:
c1:ea:a9:fa:40:74:45:14:a3:0f:46:61:8d:42:f7:
1b:c6:e7:53:f2:ad:4d:61:2e:3e:d7:41:6e:52:d5:
fd:91:60:39:fc:3a:de:f0:64:ee:2b:c2:b0:e3:2a:
89:f0:89:a8:41:bb:af:d1:34:7a:62:a4:2a:f7:3e:
54:20:db:3e:c7:94:0e:10:ff:15:6a:2a:88:98:d2:
ee:bb:97:6e:49:86:e5:94:72:00:ca:a0:7d:82:25:
4f:75:f2:f7:7f:58:6b:45:2d:53:20:96:e5:04:3b:
b7:1c:26:95:20:a2:d1:1c:fa:6a:b5:67:88:ef:b0:
ca:ce:e4:9d:c0:c7:2e:01:3f:d6:a4:2b:7f:c8:79:
53:b3:88:ca:e7:31:03:75:09:b6:10:e7:c7:47:cd:
d8:ff:78:2c:97:5c:37:42:7a:ab:04:4b:d6:9d:6e:
37:28:3f:fc:ff:2c:97:48:7c:25:f8:1e:fd:b4:bd:
6b:3f:95:6e:25:27:f9:1f:df:1c:6a:30:4f:75:fd:
4d:d0:ee:ca:22:72:ab:32:a6:8c:ad:2d:3f:e7:30:
31:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:A2:A2:F2:C4:C2:96:67:9B:BA:92:10:27:44:E9:64:B9:C3:40:06
X509v3 Authority Key Identifier:
keyid:4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/3qKi8sTClmebupIQJ0TpZLnDQAY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.93.0/24
Signature Algorithm: sha256WithRSAEncryption
22:ed:53:5d:29:d3:68:d8:dd:72:f8:18:09:81:e3:1e:e9:28:
da:0e:28:ce:9d:19:7e:96:2b:8c:b5:a6:a9:f7:8f:18:9d:05:
41:30:2b:10:8a:c4:c3:db:2f:17:92:6c:c8:cf:dc:b3:02:40:
e6:08:9c:7f:50:12:c5:65:f0:f9:fd:1e:4b:95:1f:96:f3:20:
e6:d9:ac:2c:07:44:d8:e6:3c:7a:00:ae:08:53:24:72:56:19:
b6:99:c4:96:c5:a5:61:7f:af:cb:31:fe:3e:1b:63:1d:66:4c:
4c:42:75:75:12:2f:1f:96:0f:b4:3a:ff:01:d3:a0:c6:12:5b:
d4:3d:ae:1e:e2:15:23:15:70:b2:74:81:21:9d:8d:7b:53:12:
28:89:8c:33:67:d8:91:91:fb:1a:09:f9:ef:ed:d6:1e:ca:2c:
d7:5e:ba:e6:68:09:0c:02:df:e5:38:c6:0f:10:c3:be:b9:88:
6d:a5:a2:c5:c6:26:6a:1c:0b:a3:43:f3:41:69:6c:05:83:72:
bc:19:65:05:a7:8b:80:2b:ed:cc:4b:69:db:33:a0:48:eb:4f:
c5:d0:eb:b1:79:cc:c4:44:4b:0b:85:b8:45:ca:9b:c4:7b:03:
92:7a:dc:8c:03:63:22:8e:31:95:4f:6b:87:f6:4a:6d:8b:fb:
ea:95:99:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:19 2024 by rpki-client on console-ams.rpki-client.org