Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/5ecfc2-da70-4333-8f96-5b87825c07ee/1/Q3h2MH1qh_fyh_r5kVTHB2KBmmI.roa
File: Q3h2MH1qh_fyh_r5kVTHB2KBmmI.roa (raw, json)
Hash identifier: AXy21V6E2mWQYGXPRGxy9cagXRXgwHpYojuYq4dhZkk=
Subject key identifier: 43:78:76:30:7D:6A:87:F7:F2:87:FA:F9:91:54:C7:07:62:81:9A:62
Certificate issuer: /CN=4456c14cd8724f9a909627b94e006cf69d12307b
Certificate serial: 018A33EC4ED9C6C152F510A6E46C744BDE54
Authority key identifier: 44:56:C1:4C:D8:72:4F:9A:90:96:27:B9:4E:00:6C:F6:9D:12:30:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RFbBTNhyT5qQlie5TgBs9p0SMHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/5ecfc2-da70-4333-8f96-5b87825c07ee/1/Q3h2MH1qh_fyh_r5kVTHB2KBmmI.roa
Signing time: Sat 26 Aug 2023 22:17:19 +0000
ROA not before: Sat 26 Aug 2023 22:17:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 54339
IP address blocks: 185.36.126.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:33:ec:4e:d9:c6:c1:52:f5:10:a6:e4:6c:74:4b:de:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4456c14cd8724f9a909627b94e006cf69d12307b
Validity
Not Before: Aug 26 22:17:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=437876307d6a87f7f287faf99154c70762819a62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:99:71:6a:c4:6a:28:a9:c0:4b:ab:20:f4:b6:
17:7d:0e:12:7e:79:4f:09:b8:97:9f:ec:8f:eb:fc:
5f:a1:d0:f1:37:07:8a:02:65:ac:70:0b:51:70:bb:
9d:dd:ac:a5:28:7b:30:2d:fa:75:86:b8:ce:e6:e9:
1f:4d:e7:c9:dd:17:41:5c:6d:63:44:be:a6:81:38:
fb:80:15:9f:68:fb:ee:7a:56:59:0f:10:77:e7:ba:
fe:88:91:e6:9f:d5:b8:c5:ac:3d:de:4d:4a:88:b1:
b3:1c:b8:bf:60:d8:ad:8a:fd:63:cc:03:8f:0e:17:
b7:f9:d5:b4:9a:7d:09:56:ef:08:00:d9:39:0a:40:
ae:0d:16:a2:df:ae:09:1d:9c:8c:13:2f:f3:8a:23:
54:6e:8a:50:83:d7:6e:51:53:a6:0b:d2:43:f3:87:
29:51:d3:14:3e:2a:4d:6d:22:e6:e9:6a:43:22:3c:
8b:78:ae:4c:67:99:6a:91:00:ca:06:e4:af:4b:68:
c4:aa:b2:71:69:d8:9f:d0:54:07:62:5a:21:cd:81:
5f:3d:75:34:13:f4:88:9a:b3:28:a3:ef:2e:35:e7:
b3:ad:87:b7:1a:40:b2:ea:6f:20:2b:7d:ec:68:00:
db:5d:2a:5c:ce:02:0f:92:ff:77:a1:72:a2:5a:e3:
39:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:78:76:30:7D:6A:87:F7:F2:87:FA:F9:91:54:C7:07:62:81:9A:62
X509v3 Authority Key Identifier:
keyid:44:56:C1:4C:D8:72:4F:9A:90:96:27:B9:4E:00:6C:F6:9D:12:30:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RFbBTNhyT5qQlie5TgBs9p0SMHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/5ecfc2-da70-4333-8f96-5b87825c07ee/1/Q3h2MH1qh_fyh_r5kVTHB2KBmmI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/5ecfc2-da70-4333-8f96-5b87825c07ee/1/RFbBTNhyT5qQlie5TgBs9p0SMHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.36.126.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:cf:0a:65:f2:bc:28:2a:1b:1f:30:4e:cf:dd:2d:c3:f8:5b:
ab:da:16:1c:64:90:0e:9a:8b:de:7a:13:8d:b3:49:c6:77:92:
9d:a4:7b:b9:3e:6f:a9:50:d9:60:da:c2:77:5e:16:dc:ea:2d:
e1:25:5c:ec:55:90:32:1e:ca:42:96:e8:3c:c4:f6:ef:dd:fd:
4d:09:ed:68:6b:8c:8d:b1:bc:b7:d8:ff:16:f8:ef:64:f4:72:
ed:87:41:5b:c5:0b:64:94:b8:43:95:8e:a2:fa:94:54:4c:34:
f5:d4:90:4b:5b:47:e0:45:10:98:30:a5:98:e2:55:ef:63:ec:
5b:d8:36:7e:80:c9:bd:70:f8:03:9d:d2:38:18:0e:bd:f9:c1:
7d:e4:9b:54:17:7f:99:50:9a:b9:5b:cd:a8:4d:bb:55:8a:86:
e3:90:45:20:07:c7:65:19:8c:3b:e8:b2:47:a2:22:c6:8f:a8:
fc:17:cd:ef:5b:61:ee:a7:1d:9a:cc:25:44:c9:c7:57:f5:db:
f8:f5:6a:94:00:c9:38:f5:cf:d0:35:ca:b1:c0:f3:a6:d6:c6:
3f:f9:73:00:e6:3d:91:ea:38:43:32:0d:58:fa:b1:9c:9c:e4:
db:cc:c7:1a:69:c9:fd:0f:b0:65:e5:2c:bb:ac:27:73:66:e7:
15:7d:9e:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:31 2024 by rpki-client on console-ams.rpki-client.org