Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/145631-b63e-4809-b4ab-bcef9e322f2a/1/QWZlMUdIaBaHdBd5AgCkqL61Ohw.roa
File: QWZlMUdIaBaHdBd5AgCkqL61Ohw.roa (raw, json)
Hash identifier: 2SKrHCSbkbqApeQlVFbVu+dXP1JeHoNdL1b7kuYrEIo=
Subject key identifier: 41:66:65:31:47:48:68:16:87:74:17:79:02:00:A4:A8:BE:B5:3A:1C
Certificate issuer: /CN=ea4e028658912e69697c18553b9529f3d1ce405d
Certificate serial: 01856DDD713886D9AAAB496480196AD58D0B
Authority key identifier: EA:4E:02:86:58:91:2E:69:69:7C:18:55:3B:95:29:F3:D1:CE:40:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6k4ChliRLmlpfBhVO5Up89HOQF0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/145631-b63e-4809-b4ab-bcef9e322f2a/1/QWZlMUdIaBaHdBd5AgCkqL61Ohw.roa
Signing time: Sun 01 Jan 2023 15:05:07 +0000
ROA not before: Sun 01 Jan 2023 15:05:07 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50673
IP address blocks: 194.104.236.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:dd:71:38:86:d9:aa:ab:49:64:80:19:6a:d5:8d:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ea4e028658912e69697c18553b9529f3d1ce405d
Validity
Not Before: Jan 1 15:05:07 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4166653147486816877417790200a4a8beb53a1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:bc:57:02:bd:79:f7:bd:43:75:ed:9a:ea:c3:
37:66:bd:d6:c2:c6:b6:44:ce:13:66:d5:26:3b:d2:
2e:3a:8d:ad:bc:42:b2:27:d5:4a:5f:9d:45:8f:e4:
ab:61:1d:35:7c:a6:62:3d:33:74:29:b6:08:ce:b7:
99:a6:17:9d:ac:a2:1a:78:3c:55:ca:87:ca:a8:cc:
59:a8:79:53:97:fe:ef:13:34:3e:c8:e6:99:43:cd:
bf:f0:e3:e7:f9:36:62:0f:89:12:1b:cc:51:e0:72:
82:9b:69:92:8f:30:db:99:da:32:fb:2f:12:7c:ef:
28:bb:01:cd:cf:c1:f7:4f:9f:52:df:f2:3b:37:85:
f3:f5:1a:dd:d6:95:31:d5:5a:06:06:dc:2e:47:fa:
a8:88:aa:1d:e1:3c:79:8e:f9:dd:99:d2:6b:a7:4a:
ef:56:0d:07:9f:d0:cf:b4:6c:d1:31:c8:fa:0a:f8:
3b:51:58:b5:05:50:dd:a1:d2:33:ed:93:9f:41:d0:
19:16:56:7f:67:88:5a:bc:c1:c6:91:73:ac:10:f3:
58:94:c3:d3:6e:c4:31:49:7f:42:57:95:3c:9d:37:
0b:88:23:8d:4f:05:b0:41:0d:85:06:d3:c5:5a:6a:
c4:f4:5d:c8:b4:bb:7c:3e:7e:a8:7a:c4:13:fe:b2:
8b:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:66:65:31:47:48:68:16:87:74:17:79:02:00:A4:A8:BE:B5:3A:1C
X509v3 Authority Key Identifier:
keyid:EA:4E:02:86:58:91:2E:69:69:7C:18:55:3B:95:29:F3:D1:CE:40:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6k4ChliRLmlpfBhVO5Up89HOQF0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/145631-b63e-4809-b4ab-bcef9e322f2a/1/QWZlMUdIaBaHdBd5AgCkqL61Ohw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/145631-b63e-4809-b4ab-bcef9e322f2a/1/6k4ChliRLmlpfBhVO5Up89HOQF0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.104.236.0/24
Signature Algorithm: sha256WithRSAEncryption
89:fa:6b:7d:13:46:4c:02:8b:f6:b1:01:b0:eb:87:9d:9e:16:
15:20:10:4f:2e:99:98:15:79:c0:6d:4c:95:9d:03:bc:db:09:
5a:47:ac:ca:95:2f:bb:7b:fd:1f:7b:43:a9:32:e6:52:5c:08:
f6:07:f2:0e:61:54:16:79:05:0e:53:55:34:2d:e6:ae:22:86:
16:77:23:f5:f1:3c:6e:62:8e:03:6c:84:b5:70:74:6b:e7:fb:
81:ee:f9:3b:fa:40:da:92:13:8b:ff:47:e9:c2:90:6b:08:23:
ad:c0:b7:50:d4:87:81:33:c6:af:35:db:b5:d1:c8:e5:fe:9d:
ca:e3:ac:72:43:78:c5:24:c4:4d:01:88:09:a0:3c:f5:01:db:
42:a2:e6:d6:44:df:56:eb:74:01:1a:29:b6:ed:84:b3:74:af:
87:92:2b:d1:94:28:8a:23:f7:af:f9:9d:ed:ea:83:2f:84:20:
eb:1b:f5:54:d7:c5:17:5e:63:27:d4:68:73:00:a6:e2:84:53:
58:eb:9d:4f:7d:e9:68:f4:71:c8:fd:16:f9:2d:f7:50:05:3e:
3d:16:bc:69:82:17:7c:6c:82:3f:bc:54:06:96:b6:81:62:8a:
44:e1:bd:fe:a2:81:42:df:fe:cb:57:52:c6:e5:71:f1:cc:ed:
81:b1:9b:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:32 2024 by rpki-client on console-fra.rpki-client.org