Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/3c589f-2bd2-49bd-bd81-57e6320b118f/1/qH-Ra6-M5BzgVHK4KXhNbOKZeoI.roa
File: qH-Ra6-M5BzgVHK4KXhNbOKZeoI.roa (raw, json)
Hash identifier: BA7V1RPikSZTB/ZymmUw6QCg3CaFMN1GYQB5U63Q7Hk=
Subject key identifier: A8:7F:91:6B:AF:8C:E4:1C:E0:54:72:B8:29:78:4D:6C:E2:99:7A:82
Certificate issuer: /CN=6b7603d55541c359f8e874477cbe8af21f69787c
Certificate serial: 019290B8A0FE8BF9010DF2B27BFD9AE0FF6D
Authority key identifier: 6B:76:03:D5:55:41:C3:59:F8:E8:74:47:7C:BE:8A:F2:1F:69:78:7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a3YD1VVBw1n46HRHfL6K8h9peHw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/3c589f-2bd2-49bd-bd81-57e6320b118f/1/qH-Ra6-M5BzgVHK4KXhNbOKZeoI.roa
Signing time: Tue 15 Oct 2024 15:07:51 +0000
ROA not before: Tue 15 Oct 2024 15:07:51 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206830
IP address blocks: 185.172.176.0/22 maxlen: 22
Validation: Failed, certificate revoked on Wed 01 Jan 2025 11:48:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:90:b8:a0:fe:8b:f9:01:0d:f2:b2:7b:fd:9a:e0:ff:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b7603d55541c359f8e874477cbe8af21f69787c
Validity
Not Before: Oct 15 15:07:51 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a87f916baf8ce41ce05472b829784d6ce2997a82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:37:fc:cf:4b:17:e3:ef:60:b9:b2:ee:39:e7:
19:87:51:ba:76:aa:bc:f6:5c:de:57:cb:c3:de:1c:
47:8b:c7:9d:70:03:0c:52:a4:71:9c:7b:35:e2:56:
12:de:8a:09:ab:5e:e2:96:a4:d8:63:44:37:29:a0:
e6:3b:54:b3:f2:ca:e0:16:6b:d2:b4:bd:bb:f3:a6:
b5:7c:be:c5:52:34:f6:38:0c:e7:bf:79:89:b8:28:
74:56:0b:f1:f6:05:10:b5:6b:50:9a:74:e8:33:2e:
89:24:f1:4e:21:0d:08:f4:a8:26:c5:3d:ec:c2:5c:
ec:96:b0:03:30:16:67:42:d1:d6:6e:87:15:03:a2:
bf:0c:5b:78:06:8e:6d:3c:fa:ed:fb:db:55:7c:c8:
82:64:45:26:f6:02:b4:3f:b9:6c:3f:a5:be:f3:56:
dc:ae:65:46:90:7d:b4:90:a7:2d:d7:d0:90:e7:43:
1c:c9:f9:96:a5:c6:e8:ac:dd:b5:83:f5:93:f0:21:
4d:9c:4f:6f:1c:19:40:f6:e3:79:82:3b:ae:85:75:
4d:1f:19:13:93:f0:1c:40:65:8f:de:f6:55:26:b0:
e6:f9:38:9b:49:85:ab:b4:19:05:ec:60:d8:a8:a6:
11:f2:22:96:a2:40:92:0e:54:76:98:2f:e7:3d:d7:
55:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:7F:91:6B:AF:8C:E4:1C:E0:54:72:B8:29:78:4D:6C:E2:99:7A:82
X509v3 Authority Key Identifier:
keyid:6B:76:03:D5:55:41:C3:59:F8:E8:74:47:7C:BE:8A:F2:1F:69:78:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3YD1VVBw1n46HRHfL6K8h9peHw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/3c589f-2bd2-49bd-bd81-57e6320b118f/1/qH-Ra6-M5BzgVHK4KXhNbOKZeoI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/3c589f-2bd2-49bd-bd81-57e6320b118f/1/a3YD1VVBw1n46HRHfL6K8h9peHw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.172.176.0/22
Signature Algorithm: sha256WithRSAEncryption
a9:76:32:1b:62:ea:41:3a:b8:33:0c:1c:b9:69:2e:12:90:b6:
05:8d:e4:da:0c:74:9b:66:6c:dd:da:28:72:d0:70:43:0f:80:
49:88:f3:1c:00:a2:90:69:1c:20:3f:dc:03:91:0c:7b:36:06:
7a:78:95:3d:7f:f9:07:82:d0:6a:c7:e1:d6:f1:f7:60:29:21:
5e:e4:7e:57:45:dc:ec:cb:0d:ca:86:62:28:3b:f1:a0:a0:73:
16:94:80:d3:c3:0f:36:e4:6b:d9:82:7a:99:41:c4:d1:41:35:
96:73:06:66:63:24:47:59:10:16:28:82:2b:fe:b5:4b:73:2f:
03:11:4e:97:98:d2:0d:de:eb:d3:f9:8d:48:cc:3a:fd:b1:cf:
c2:43:01:9c:47:ca:d2:4e:48:15:3c:a6:79:5b:47:0d:b7:c1:
5a:dc:cd:9d:00:1e:c2:8e:e7:8b:4c:54:ae:74:a3:9c:77:e7:
60:49:a5:70:95:16:3f:86:ab:37:9f:cb:62:67:66:45:1f:aa:
0c:4e:6f:aa:36:26:3c:8d:ec:b5:99:be:9a:78:ed:1d:65:bd:
1f:11:d8:2a:ef:b9:36:16:0f:d0:a7:f3:d2:79:1c:b9:d2:a8:
33:f4:f0:04:82:2b:f5:41:33:e5:03:22:6e:99:c6:0e:13:c4:
55:a6:9a:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:51:18 2025 by rpki-client