Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/71786a-4637-4364-a742-929287872a53/1/QHZhusy221p_F6a3OcHKF4omFXU.roa
File: QHZhusy221p_F6a3OcHKF4omFXU.roa (raw, json)
Hash identifier: L3Pf01VyysUIvZycDcAOrGreNsZXg9mjYpy547RUQuU=
Subject key identifier: 40:76:61:BA:CC:B6:DB:5A:7F:17:A6:B7:39:C1:CA:17:8A:26:15:75
Certificate issuer: /CN=345b87125acb0251facfd8c0a95b48bc22522146
Certificate serial: 01856CEF273BF8C57832573D40292B7D4676
Authority key identifier: 34:5B:87:12:5A:CB:02:51:FA:CF:D8:C0:A9:5B:48:BC:22:52:21:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NFuHElrLAlH6z9jAqVtIvCJSIUY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/71786a-4637-4364-a742-929287872a53/1/QHZhusy221p_F6a3OcHKF4omFXU.roa
Signing time: Sun 01 Jan 2023 10:44:50 +0000
ROA not before: Sun 01 Jan 2023 10:44:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42413
IP address blocks: 91.192.92.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:ef:27:3b:f8:c5:78:32:57:3d:40:29:2b:7d:46:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=345b87125acb0251facfd8c0a95b48bc22522146
Validity
Not Before: Jan 1 10:44:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=407661baccb6db5a7f17a6b739c1ca178a261575
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:d0:21:30:d0:1b:90:4d:32:0a:0f:d6:22:26:
54:fe:0b:8f:8a:92:7a:24:9b:3c:60:a2:93:2f:b1:
02:4a:47:2b:60:3a:65:be:27:56:62:b7:d0:92:e2:
cd:55:19:8e:de:04:db:79:b2:34:5d:31:e0:ec:fa:
89:ab:4b:f8:65:07:4a:a7:cc:7d:c1:0f:96:0e:3d:
9e:a5:58:c6:d2:9e:ca:4f:a4:fd:44:e7:df:5c:8e:
79:cf:7e:9f:9f:fc:cb:21:06:2a:2e:57:cd:1f:57:
68:5b:97:57:ae:14:c6:ce:a4:da:57:ee:fc:ba:4a:
c5:c2:c6:55:c7:3c:9b:c1:0a:76:e3:56:63:db:93:
86:ce:e0:e5:5b:c1:bd:be:0c:db:45:95:f1:ed:f1:
a5:e1:81:95:50:7a:9c:1a:70:2b:dd:26:ce:fa:6d:
07:6c:7d:09:0d:9d:ef:dd:d8:87:ce:9e:71:8d:5c:
52:ca:75:4b:79:27:ae:15:85:a4:b0:0a:42:89:62:
45:71:c6:c0:1d:36:27:94:14:a4:97:36:ce:2e:3c:
98:0f:e8:09:42:90:26:47:60:a4:fa:52:90:ba:df:
3e:72:a3:bd:d0:09:05:c6:b4:db:a2:b8:23:f2:2e:
3c:5a:6b:19:ca:49:ad:6b:6c:04:c3:31:a2:c2:10:
81:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:76:61:BA:CC:B6:DB:5A:7F:17:A6:B7:39:C1:CA:17:8A:26:15:75
X509v3 Authority Key Identifier:
keyid:34:5B:87:12:5A:CB:02:51:FA:CF:D8:C0:A9:5B:48:BC:22:52:21:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NFuHElrLAlH6z9jAqVtIvCJSIUY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/71786a-4637-4364-a742-929287872a53/1/QHZhusy221p_F6a3OcHKF4omFXU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/71786a-4637-4364-a742-929287872a53/1/NFuHElrLAlH6z9jAqVtIvCJSIUY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.192.92.0/22
Signature Algorithm: sha256WithRSAEncryption
12:ba:62:ec:8c:db:d6:59:61:d1:8a:fc:45:62:53:d2:92:ac:
54:f3:e0:bc:95:b5:28:ff:3f:fd:c3:26:01:9b:a8:5a:d2:5f:
04:26:06:f5:45:a7:45:df:23:43:14:3a:84:70:a6:54:55:7e:
47:ae:b9:82:55:11:4b:b7:00:20:39:a9:ee:e2:1a:66:dc:ae:
65:77:c1:f5:6f:a9:cf:18:a2:99:41:14:5a:ff:e3:81:03:da:
61:71:58:cf:89:46:16:64:33:44:40:7d:48:33:b4:8d:cd:a6:
8f:e8:87:43:c7:5c:87:7b:76:ec:a6:a4:fe:e8:c1:e5:4c:fc:
2a:05:8c:5a:59:8d:47:7c:1a:2d:24:72:cc:1f:97:31:26:a2:
37:06:77:72:fa:cf:98:47:e4:af:af:6f:83:16:dc:00:fe:78:
ae:45:0d:8c:26:fc:ef:9b:a4:6f:aa:c0:13:f5:d0:7a:f1:6b:
62:e8:d2:66:14:96:39:bf:06:37:41:c0:dd:d6:5f:4f:63:c4:
57:7e:62:c3:7d:b4:00:2d:6d:c2:2c:e1:e7:53:96:e6:83:55:
1d:93:3a:3a:e9:70:c1:47:db:26:93:f1:30:c6:3a:09:30:35:
26:bf:5c:b0:ac:46:36:56:80:08:4e:d4:1b:40:ee:bc:ac:05:
d9:b6:2f:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:02 2024 by rpki-client on console-fra.rpki-client.org