Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/QBAFqq-fOsb0wPSUwJvz66KMZWE.roa
File: QBAFqq-fOsb0wPSUwJvz66KMZWE.roa (raw, json)
Hash identifier: 6nOBtJZc7aRJlmBVsQaz4TSsv4FLgcKCwVXIXQb6VvI=
Subject key identifier: 40:10:05:AA:AF:9F:3A:C6:F4:C0:F4:94:C0:9B:F3:EB:A2:8C:65:61
Certificate issuer: /CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Certificate serial: 018571DE7741906C583AD7839D46A8FBBAE0
Authority key identifier: 17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/QBAFqq-fOsb0wPSUwJvz66KMZWE.roa
Signing time: Mon 02 Jan 2023 09:44:42 +0000
ROA not before: Mon 02 Jan 2023 09:44:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 38337
IP address blocks: 85.92.115.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 16 Mar 2023 06:55:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:de:77:41:90:6c:58:3a:d7:83:9d:46:a8:fb:ba:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Validity
Not Before: Jan 2 09:44:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=401005aaaf9f3ac6f4c0f494c09bf3eba28c6561
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:17:d4:3a:08:82:07:3e:41:6b:1c:c1:11:04:
1e:b2:cb:fd:3d:84:5b:39:bd:4d:29:79:16:cc:4e:
de:39:83:7d:14:f7:8e:a5:7b:12:dc:00:f7:28:f6:
f1:0d:ab:6b:43:ca:ca:86:8a:a1:4a:5c:3f:58:c0:
65:7a:a5:86:b1:dc:40:92:81:88:1c:54:8e:15:14:
01:71:dc:84:9a:b1:3f:8a:12:d3:ad:b1:14:ce:4c:
da:b5:9a:1e:10:93:c2:94:af:ef:6b:77:d4:21:7e:
f8:33:52:e3:0d:71:03:ca:37:61:01:7d:74:e2:9f:
6f:ca:4e:48:1c:d5:10:80:87:fb:65:a0:ab:31:7c:
ad:bf:77:f5:54:a8:53:a5:67:35:d5:7a:5b:3d:58:
70:e2:26:db:c6:56:e6:72:61:88:c2:a2:c0:e0:93:
bc:cc:ec:73:82:40:d9:1a:1d:7e:f9:72:ae:82:79:
2f:2c:29:06:ed:95:16:01:2c:ad:7a:a4:f3:ac:32:
84:35:8e:c8:bc:6d:9d:22:a5:dd:74:e9:b3:93:ba:
8c:55:61:19:e3:69:15:05:ac:d3:4a:d8:2d:2a:c8:
74:f2:8b:65:4f:7f:ee:2e:bc:9a:ec:b3:1a:92:13:
33:2e:d0:6d:0d:88:7a:e7:58:fb:c0:c7:7a:c2:ba:
f8:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:10:05:AA:AF:9F:3A:C6:F4:C0:F4:94:C0:9B:F3:EB:A2:8C:65:61
X509v3 Authority Key Identifier:
keyid:17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/QBAFqq-fOsb0wPSUwJvz66KMZWE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/F9A_KYGAzBCfGdSxmSx9ccVsjcw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.92.115.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:87:61:18:18:c3:be:45:37:cd:cf:b8:5d:2c:05:41:ef:e3:
ef:f3:5f:b4:34:02:4c:50:16:0a:02:d5:bf:ca:c1:f0:00:6b:
9f:ea:c8:29:a0:a0:c5:10:33:49:fc:6d:68:97:fe:13:ec:d3:
ea:c6:15:cf:fe:e3:6d:eb:14:ee:eb:61:75:d4:e7:37:48:b4:
79:3d:1b:b7:dd:2f:67:fa:87:a5:08:57:4d:66:77:bb:42:33:
a6:b8:f8:49:a5:03:b8:f5:ff:47:04:68:c2:0b:0c:16:c3:91:
26:5c:37:70:7e:d9:cd:a7:07:6b:d2:4d:bc:24:34:72:f0:cd:
91:3a:60:56:e0:dc:bd:f3:15:22:fa:d0:dc:49:52:80:52:95:
15:ab:2a:1e:20:c2:a9:22:e9:5d:5d:d9:60:ff:15:27:8d:4e:
1c:ce:62:14:75:9d:50:24:94:dc:b7:f2:6e:e0:68:f3:1d:9b:
20:4d:06:e1:40:be:99:f8:e6:e6:89:9e:3f:e0:3b:19:8f:b3:
c5:5f:c8:19:13:4f:ac:e2:9d:db:5b:4f:e9:da:3a:d5:46:23:
f7:c6:91:2d:3b:60:73:ee:0d:27:fa:50:e5:37:d0:5b:38:d4:
5c:51:d1:77:91:e1:c2:76:1c:3f:95:52:c3:16:6e:4d:24:23:
b1:dd:f1:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:04 2024 by rpki-client on console-ams.rpki-client.org