Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/QvGc5Wn59vpLnERLC8bVcodKZV8.roa
File: QvGc5Wn59vpLnERLC8bVcodKZV8.roa (raw, json)
Hash identifier: kXAV8RcpXKjBmXrC+3ddig0ci1OVE6qWn1YhDxQNXaI=
Subject key identifier: 42:F1:9C:E5:69:F9:F6:FA:4B:9C:44:4B:0B:C6:D5:72:87:4A:65:5F
Certificate issuer: /CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Certificate serial: 0190939725033FB2208CF6F933B3A212BD44
Authority key identifier: 4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/QvGc5Wn59vpLnERLC8bVcodKZV8.roa
Signing time: Mon 08 Jul 2024 18:24:34 +0000
ROA not before: Mon 08 Jul 2024 18:24:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215133
IP address blocks: 77.72.81.0/24 maxlen: 24
146.19.93.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 30 Jul 2024 15:58:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:93:97:25:03:3f:b2:20:8c:f6:f9:33:b3:a2:12:bd:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Validity
Not Before: Jul 8 18:24:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=42f19ce569f9f6fa4b9c444b0bc6d572874a655f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:79:13:c7:56:54:b9:26:35:6f:3d:42:5b:04:
0a:8a:4a:7a:9b:70:91:84:be:fd:3e:b9:ad:dc:04:
30:ea:b5:d5:97:10:c3:78:b9:00:84:fb:59:3d:70:
dc:6a:b2:26:26:9a:33:8a:1a:04:54:28:6d:d6:46:
7b:bd:d9:67:ae:70:8d:4a:46:ca:3e:30:e3:ad:d1:
9f:6b:10:42:9d:70:d1:7d:cc:60:f0:3b:53:d8:98:
41:40:c1:02:98:b9:25:63:dd:78:20:ab:58:2b:5c:
dc:c6:17:d9:81:09:fe:c1:4c:99:26:8a:9d:9d:da:
e0:31:20:97:cd:33:bb:73:c9:aa:dd:33:71:62:b1:
66:4e:61:cb:ba:02:5d:dc:2e:41:11:49:c8:eb:e4:
ba:6e:a6:41:c2:56:a3:1a:7a:9b:42:1b:e0:8e:53:
b0:16:f2:79:b9:ed:fe:b3:62:1f:98:da:b9:7c:42:
20:f3:6b:35:46:e5:07:6a:8f:a9:a0:9b:f3:35:1b:
b2:dc:c5:fa:18:9c:ca:4a:57:6a:2f:3c:22:9d:03:
94:26:75:6d:1e:15:cf:36:ad:47:76:02:42:1f:be:
21:55:e5:c7:06:11:13:81:ea:6e:4d:92:af:e8:b1:
2d:99:09:ca:4e:b2:08:ec:a3:dd:2c:4c:af:0b:aa:
bc:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:F1:9C:E5:69:F9:F6:FA:4B:9C:44:4B:0B:C6:D5:72:87:4A:65:5F
X509v3 Authority Key Identifier:
keyid:4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/QvGc5Wn59vpLnERLC8bVcodKZV8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.72.81.0/24
146.19.93.0/24
Signature Algorithm: sha256WithRSAEncryption
06:b7:14:94:86:1b:5e:15:f4:20:a3:4b:72:3a:a4:07:63:32:
ae:21:7b:c5:3f:d4:76:74:05:18:fa:4e:c5:49:6f:6a:2b:99:
0f:3a:2a:a0:08:28:c1:ce:a9:25:9c:65:c3:85:df:45:fa:bb:
bd:42:c6:6d:70:1b:02:36:c4:d6:4c:38:10:d0:92:7e:59:c5:
b4:77:33:fc:59:b2:9d:85:f0:86:8b:6a:f9:d5:43:5f:cc:75:
60:30:cc:03:b7:49:62:4f:5f:38:c9:83:1c:7c:2b:ea:fa:a0:
d9:70:70:e1:48:93:09:01:cf:57:fc:b4:9c:40:8c:b9:3c:c5:
ac:a9:9f:68:36:80:84:9c:3b:63:3e:1f:f9:9b:09:a8:63:20:
79:75:30:85:12:b5:1b:27:b0:d9:72:0b:a3:4c:38:11:b5:09:
eb:5b:67:07:30:72:6a:bd:ca:1b:48:cb:83:11:20:cb:45:c2:
48:6c:6e:20:1f:54:32:82:e4:50:86:f7:8e:55:b8:63:d6:9e:
8c:60:c6:bb:70:ee:88:08:7e:76:56:24:e6:89:39:26:aa:9f:
89:2b:76:9c:38:c8:48:4c:67:8e:c7:a6:a5:45:4a:1e:cd:38:
72:b4:31:8e:49:58:a6:9c:55:61:84:c3:b1:2a:c9:ea:6e:69:
c0:63:6d:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 30 18:12:30 2024 by rpki-client on console-fra.rpki-client.org