Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/798745-e247-4a87-ba1d-b66d8664b09b/1/QisIDRmFhz_-QX4nRmxtT4pLunM.roa
File: QisIDRmFhz_-QX4nRmxtT4pLunM.roa (raw, json)
Hash identifier: LS+6ccOcCLMsw/qCSvlFtPgwGLDYV0w5RvCEiI+4T54=
Subject key identifier: 42:2B:08:0D:19:85:87:3F:FE:41:7E:27:46:6C:6D:4F:8A:4B:BA:73
Certificate issuer: /CN=ff24b72f5f9040d4d22688f5ea511f615f15004c
Certificate serial: 0187B8289A4EA7880E92005DD0CE42C980EA
Authority key identifier: FF:24:B7:2F:5F:90:40:D4:D2:26:88:F5:EA:51:1F:61:5F:15:00:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_yS3L1-QQNTSJoj16lEfYV8VAEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/798745-e247-4a87-ba1d-b66d8664b09b/1/QisIDRmFhz_-QX4nRmxtT4pLunM.roa
Signing time: Tue 25 Apr 2023 11:24:41 +0000
ROA not before: Tue 25 Apr 2023 11:24:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44694
IP address blocks: 81.24.12.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:b8:28:9a:4e:a7:88:0e:92:00:5d:d0:ce:42:c9:80:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff24b72f5f9040d4d22688f5ea511f615f15004c
Validity
Not Before: Apr 25 11:24:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=422b080d1985873ffe417e27466c6d4f8a4bba73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:ae:09:50:c1:fe:e9:4c:b5:c7:65:dd:3c:6b:
74:8b:13:c8:4f:06:9d:de:c4:fe:61:3a:2b:31:3b:
45:63:aa:fb:a1:13:3d:83:8a:19:61:58:8c:98:25:
3e:98:3b:17:2f:25:91:da:e9:c2:68:94:c7:04:33:
62:ce:37:bf:79:7a:13:24:79:09:bc:04:4f:f9:02:
d0:7f:33:56:9b:c9:d1:53:9f:61:5c:b0:ae:c5:71:
da:6f:5c:45:78:b9:64:4b:6c:4d:3e:4b:26:58:9b:
94:2d:23:34:29:41:eb:e1:e6:39:d3:4a:95:5d:e1:
c3:db:ea:fb:03:5c:f9:fa:d4:09:e5:5a:dc:71:1a:
79:b8:6b:48:96:b2:81:a6:54:db:4f:50:ef:ee:12:
17:29:32:07:05:70:5c:ad:00:69:99:61:b2:be:be:
c5:f1:e2:67:fe:79:13:e7:5f:13:05:06:c8:d6:ae:
4f:40:74:61:12:c6:a2:55:16:e1:12:48:a1:52:3d:
42:49:db:01:5a:95:a9:fd:2d:c6:51:52:be:0f:a6:
33:78:7c:3b:63:ee:a0:d4:04:0e:ca:8b:c4:ea:10:
54:04:a0:d7:76:17:0c:c6:a2:80:91:d2:16:25:4f:
11:39:ef:3f:b8:8e:17:88:d6:2d:db:76:5e:df:dd:
b9:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:2B:08:0D:19:85:87:3F:FE:41:7E:27:46:6C:6D:4F:8A:4B:BA:73
X509v3 Authority Key Identifier:
keyid:FF:24:B7:2F:5F:90:40:D4:D2:26:88:F5:EA:51:1F:61:5F:15:00:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_yS3L1-QQNTSJoj16lEfYV8VAEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/798745-e247-4a87-ba1d-b66d8664b09b/1/QisIDRmFhz_-QX4nRmxtT4pLunM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/798745-e247-4a87-ba1d-b66d8664b09b/1/_yS3L1-QQNTSJoj16lEfYV8VAEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.24.12.0/22
Signature Algorithm: sha256WithRSAEncryption
93:a9:cc:01:93:d3:ef:be:a1:80:0b:92:3f:c4:93:fb:22:7f:
0f:71:2c:98:48:b2:ab:15:de:d4:53:34:a5:13:89:aa:dd:93:
74:de:76:84:d2:2e:bb:4e:af:c5:62:d1:c5:d7:df:5c:30:35:
39:b3:ee:91:8f:1a:5a:a4:76:92:1e:2f:25:7b:97:4b:d2:03:
51:a8:68:23:0a:3f:0a:99:9a:51:25:6a:db:e4:ab:29:af:d0:
b4:02:fb:b9:b8:02:b0:6a:b5:bc:4c:4a:1b:fe:24:0c:e9:fa:
be:5e:8e:ba:bd:76:b2:b0:fa:8c:27:de:59:28:53:d9:c0:1a:
df:76:1c:9b:91:ef:af:33:ef:14:46:89:f6:dc:73:32:21:b7:
6d:22:64:bc:98:ce:f5:26:e4:95:f7:56:d4:56:01:b5:d3:8d:
39:19:a6:2b:c1:a2:06:29:7e:37:e9:d9:53:f0:fb:4f:84:7b:
a8:52:eb:ea:d4:2d:5c:c3:44:3d:93:ed:a9:79:d6:ef:21:18:
6d:21:8a:85:49:f6:45:4a:b4:3a:58:28:3e:db:60:b7:a3:ec:
ff:65:58:06:be:7d:09:5f:ae:fb:91:e1:98:37:c9:48:25:3f:
6e:4e:e1:f5:4c:5f:46:64:07:45:7c:90:27:62:02:db:5e:70:
a1:a7:cf:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:25 2024 by rpki-client on console-fra.rpki-client.org