Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a0450e-5634-458d-918f-103d93d251ab/1/QRfFDHSK2FcaoLumCeQxmxp0C1M.roa
File: QRfFDHSK2FcaoLumCeQxmxp0C1M.roa (raw, json)
Hash identifier: w+qeJ9noHvgyLA5r86E5XoTB/wbtd4yisngiimwfg2w=
Subject key identifier: 41:17:C5:0C:74:8A:D8:57:1A:A0:BB:A6:09:E4:31:9B:1A:74:0B:53
Certificate issuer: /CN=1034068b5e9f7314277e2be9726c732131b1756c
Certificate serial: 0190440EBAF8367521F3A70A9091223C88F2
Authority key identifier: 10:34:06:8B:5E:9F:73:14:27:7E:2B:E9:72:6C:73:21:31:B1:75:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EDQGi16fcxQnfivpcmxzITGxdWw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a0450e-5634-458d-918f-103d93d251ab/1/QRfFDHSK2FcaoLumCeQxmxp0C1M.roa
Signing time: Sun 23 Jun 2024 07:45:34 +0000
ROA not before: Sun 23 Jun 2024 07:45:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 19905
IP address blocks: 82.178.144.0/21 maxlen: 24
Validation: Failed, certificate revoked on Sun 23 Jun 2024 08:03:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:44:0e:ba:f8:36:75:21:f3:a7:0a:90:91:22:3c:88:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1034068b5e9f7314277e2be9726c732131b1756c
Validity
Not Before: Jun 23 07:45:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4117c50c748ad8571aa0bba609e4319b1a740b53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:7d:60:0f:a5:f0:db:b3:20:6e:44:93:c0:0b:
92:9c:3c:11:86:cb:e6:b6:a0:04:44:c4:96:df:48:
3f:24:83:65:87:4b:45:6f:09:d7:57:d7:3a:94:b1:
4d:72:94:52:aa:5f:6b:32:e2:9e:70:ab:52:ab:bb:
91:52:05:9e:26:82:05:71:32:7d:04:f2:5b:7b:e7:
14:d4:e0:b6:83:24:9a:c0:2a:27:24:99:52:14:99:
04:1d:84:8b:18:a5:eb:f7:8b:40:0b:d8:af:2d:f1:
3f:15:46:e2:f7:01:f1:21:79:75:b7:4c:b9:fd:a4:
18:fe:97:a6:5c:1c:83:cc:43:53:ec:65:20:38:c3:
88:64:67:49:75:0d:76:2b:2a:66:75:3d:cd:28:c3:
80:29:5a:78:f5:d8:b8:23:b2:8c:11:ba:91:77:57:
83:cd:01:47:ab:7c:13:2f:cc:d9:08:48:d0:82:6f:
df:44:e9:ee:fb:54:07:c9:77:81:54:4b:6d:dd:0e:
73:1c:1a:82:84:9b:d6:2c:92:29:3c:9b:4e:2e:c1:
f0:59:16:43:f2:a4:8e:34:9e:f1:43:70:d8:1d:2b:
ab:96:34:b2:85:a8:b6:2b:75:00:a6:a7:f4:55:01:
3c:36:f1:11:4c:7d:cf:5e:5a:e1:fc:d7:bc:66:26:
0c:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:17:C5:0C:74:8A:D8:57:1A:A0:BB:A6:09:E4:31:9B:1A:74:0B:53
X509v3 Authority Key Identifier:
keyid:10:34:06:8B:5E:9F:73:14:27:7E:2B:E9:72:6C:73:21:31:B1:75:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EDQGi16fcxQnfivpcmxzITGxdWw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a0450e-5634-458d-918f-103d93d251ab/1/QRfFDHSK2FcaoLumCeQxmxp0C1M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a0450e-5634-458d-918f-103d93d251ab/1/EDQGi16fcxQnfivpcmxzITGxdWw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.178.144.0/21
Signature Algorithm: sha256WithRSAEncryption
74:79:3c:db:88:50:a8:6a:ea:d8:36:32:54:11:c0:02:8c:01:
6a:2b:b9:18:d9:e9:94:7c:22:4f:13:52:1b:b6:69:55:7e:07:
bb:03:f1:d5:86:5f:ac:de:43:19:a8:16:28:f4:34:60:8c:4d:
33:29:d3:56:b1:f3:c5:c6:c2:d7:13:b0:e0:c0:bd:3b:d7:e3:
84:63:89:1f:8e:a2:66:4b:94:54:de:27:1d:dc:2c:09:17:17:
75:c2:af:9c:d7:b7:19:30:f2:a8:c2:a6:36:b9:60:7a:ca:81:
c4:7b:3e:3e:03:67:15:92:40:67:51:8b:37:3c:fc:b5:96:b9:
2c:6a:b5:ba:e6:cd:60:33:8a:f0:2c:80:05:6e:ec:84:be:67:
5b:a4:f7:74:39:f8:3b:85:9d:22:11:b6:d9:8a:24:46:1e:b9:
0e:39:9c:0e:ed:de:1f:a7:4a:b3:82:8a:f7:a4:1a:ea:0b:7b:
6c:a3:11:f6:3a:f7:34:43:2d:0a:71:f7:39:36:39:c0:06:6b:
3d:0f:1c:74:aa:22:62:8b:ab:53:cb:bb:fb:5d:4a:33:11:5b:
8f:b4:db:dc:91:c9:9a:88:42:f0:89:ef:8a:df:23:34:16:bd:
72:e3:00:43:eb:54:df:33:96:ff:00:a1:ca:c4:70:0d:bf:56:
42:73:55:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 23 09:06:05 2024 by rpki-client on console-fra.rpki-client.org