Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/QAzWbYXfWDxjnDnvvSL6G9HohWM.roa
File: QAzWbYXfWDxjnDnvvSL6G9HohWM.roa (raw, json)
Hash identifier: NjE5eeaoiJyKcCOGxAgceg8nO3Uk/1htLC6b7IfXqog=
Subject key identifier: 40:0C:D6:6D:85:DF:58:3C:63:9C:39:EF:BD:22:FA:1B:D1:E8:85:63
Certificate issuer: /CN=c74c60adeb0cd5768cf756f562b1b5cc5b9c180a
Certificate serial: 0192CEB1465D98F052E04D3F1575263BB6EF
Authority key identifier: C7:4C:60:AD:EB:0C:D5:76:8C:F7:56:F5:62:B1:B5:CC:5B:9C:18:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x0xgresM1XaM91b1YrG1zFucGAo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/QAzWbYXfWDxjnDnvvSL6G9HohWM.roa
Signing time: Sun 27 Oct 2024 15:56:17 +0000
ROA not before: Sun 27 Oct 2024 15:56:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49245
IP address blocks: 185.1.206.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 23:48:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:ce:b1:46:5d:98:f0:52:e0:4d:3f:15:75:26:3b:b6:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c74c60adeb0cd5768cf756f562b1b5cc5b9c180a
Validity
Not Before: Oct 27 15:56:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=400cd66d85df583c639c39efbd22fa1bd1e88563
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:bf:01:5e:fc:3f:63:a8:f9:2e:2b:29:3e:23:
f6:7d:e3:74:2a:22:ca:79:59:94:bc:7c:df:25:2c:
d4:ef:57:e3:1a:3c:e1:17:05:c6:73:f7:cc:72:b6:
d9:0b:75:94:f4:49:50:a4:3a:90:9a:47:dd:15:84:
d8:f4:1a:91:17:fd:73:c4:09:fa:63:16:f9:13:b6:
5c:e9:42:a4:eb:4e:cc:fe:06:a3:79:3e:81:d1:3a:
b2:1f:db:ab:bf:b3:7a:72:4d:53:27:fa:4d:ce:77:
26:63:15:c9:48:c5:02:19:f6:53:d4:ca:38:82:05:
ec:ec:13:ec:9d:65:03:11:e3:44:4a:89:b6:4f:22:
76:cf:a5:5f:ad:88:71:85:a2:27:ab:59:af:1c:f7:
cd:c5:b6:f3:1e:81:1a:8a:f5:7b:03:e5:d6:ec:b2:
51:ee:9b:b8:84:74:87:bb:8e:90:ba:eb:21:55:a8:
e0:21:eb:5b:a9:08:63:12:b3:84:d4:b0:c7:5b:1c:
6f:19:15:dd:8e:b0:be:46:be:ee:45:ad:91:95:ef:
d6:8a:98:75:45:e0:ca:b9:76:b7:03:a2:c4:36:f0:
72:39:23:b2:87:20:86:de:ac:d5:2d:88:ac:da:3b:
69:cf:78:3b:f5:60:de:90:d5:a7:e4:ca:f9:f5:e7:
dc:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:0C:D6:6D:85:DF:58:3C:63:9C:39:EF:BD:22:FA:1B:D1:E8:85:63
X509v3 Authority Key Identifier:
keyid:C7:4C:60:AD:EB:0C:D5:76:8C:F7:56:F5:62:B1:B5:CC:5B:9C:18:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x0xgresM1XaM91b1YrG1zFucGAo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/QAzWbYXfWDxjnDnvvSL6G9HohWM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/x0xgresM1XaM91b1YrG1zFucGAo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.1.206.0/24
Signature Algorithm: sha256WithRSAEncryption
91:f6:6d:4f:c4:f9:cc:d9:97:81:3c:2b:c6:09:5f:01:17:ad:
c0:31:06:ca:51:bd:d8:b3:77:5d:15:d9:fc:0d:9d:5d:f9:86:
c8:b2:2f:ec:9e:2f:4b:91:8d:15:3c:8b:27:69:7e:83:ec:5b:
f3:db:42:68:b3:cf:ac:6a:22:57:3b:7f:f9:d5:b0:2c:eb:56:
19:53:ff:d3:f1:d9:57:92:ce:9e:11:72:53:a5:e8:b1:19:71:
b7:20:0a:eb:62:5a:27:2e:1e:b5:10:c7:21:2a:48:b5:35:da:
ee:47:44:39:38:1b:7c:a1:91:4c:06:e0:78:5d:af:fd:d8:e1:
e7:b9:c4:29:e4:bf:45:6a:3f:07:09:d0:08:76:ac:df:73:02:
60:da:47:32:e4:cd:1d:5d:7c:d2:0c:95:ed:26:81:2e:93:d3:
71:a1:ec:7a:e9:09:59:8d:68:be:ac:38:73:ec:a6:86:29:49:
e2:5f:70:90:a3:06:e0:a5:d1:ce:6e:91:a6:c5:25:02:57:b1:
61:9f:d1:04:22:61:50:c0:88:e8:2f:8b:92:a3:7f:64:b8:0d:
30:88:33:4a:72:08:29:dc:38:1e:40:02:0c:f2:9d:0e:61:3e:
32:63:91:ed:dc:b7:f3:95:57:82:74:02:b6:c8:83:f7:19:e1:
f3:d1:88:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:48:02 2025 by rpki-client