Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/Qw8muLNDFPxf_th1zbWjkfLTVA4.roa
File: Qw8muLNDFPxf_th1zbWjkfLTVA4.roa (raw, json)
Hash identifier: E4HeIXLYOCA3RoM2XcBNZ5liCWJmx7GtFimXiWAvngc=
Subject key identifier: 43:0F:26:B8:B3:43:14:FC:5F:FE:D8:75:CD:B5:A3:91:F2:D3:54:0E
Certificate issuer: /CN=d45bdf6eec08370ae1f67e83f99b5ac1fe26872c
Certificate serial: 018572CCA4B290CF3A274F3D8D94D295025A
Authority key identifier: D4:5B:DF:6E:EC:08:37:0A:E1:F6:7E:83:F9:9B:5A:C1:FE:26:87:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1FvfbuwINwrh9n6D-Ztawf4mhyw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/Qw8muLNDFPxf_th1zbWjkfLTVA4.roa
Signing time: Mon 02 Jan 2023 14:04:52 +0000
ROA not before: Mon 02 Jan 2023 14:04:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212238
IP address blocks: 85.203.4.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:cc:a4:b2:90:cf:3a:27:4f:3d:8d:94:d2:95:02:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d45bdf6eec08370ae1f67e83f99b5ac1fe26872c
Validity
Not Before: Jan 2 14:04:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=430f26b8b34314fc5ffed875cdb5a391f2d3540e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:e4:97:4c:a9:b3:2e:f4:b5:dc:c0:b5:0b:9c:
50:81:35:0a:ac:67:e9:10:d1:9f:e0:55:a0:c8:7d:
11:61:10:1d:26:42:58:fa:21:fa:6a:f9:3f:98:11:
c9:02:cb:ac:0a:a6:50:b2:8b:e6:9e:39:da:4f:e8:
f6:66:6b:84:07:a1:ca:8b:3c:5c:87:4a:19:c2:8c:
f2:0f:e3:ed:81:6b:c3:ba:03:ae:7f:ed:99:e6:dd:
20:97:6f:d9:8f:67:a3:64:93:75:0b:31:47:d8:2d:
f0:cf:b0:b1:b6:96:2f:70:7f:ed:4e:90:34:71:2a:
77:42:4d:ce:99:df:8e:8a:5e:16:d7:99:0d:63:93:
eb:a4:e4:30:b8:4a:16:36:54:27:b3:74:07:e7:cd:
51:7a:f9:9d:f9:1d:30:34:2c:13:49:aa:0d:5b:27:
c7:e7:15:82:7b:0e:b8:02:51:8f:37:dd:89:1f:27:
b6:f3:65:83:f8:2a:41:14:2e:02:68:62:c7:ce:7d:
83:fa:da:42:71:6f:c5:ab:df:63:45:28:5b:c8:3a:
45:ea:0e:39:f1:4f:a1:75:fe:a4:c8:bd:ba:fb:2b:
6e:e5:36:0f:c6:01:a4:a9:48:7f:1c:bf:88:d1:2b:
8b:53:f0:fe:1b:df:4d:d0:22:19:c0:23:e5:76:96:
e8:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:0F:26:B8:B3:43:14:FC:5F:FE:D8:75:CD:B5:A3:91:F2:D3:54:0E
X509v3 Authority Key Identifier:
keyid:D4:5B:DF:6E:EC:08:37:0A:E1:F6:7E:83:F9:9B:5A:C1:FE:26:87:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1FvfbuwINwrh9n6D-Ztawf4mhyw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/Qw8muLNDFPxf_th1zbWjkfLTVA4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/1FvfbuwINwrh9n6D-Ztawf4mhyw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.203.4.0/24
Signature Algorithm: sha256WithRSAEncryption
78:68:31:35:3e:a0:03:b9:07:b2:21:b8:f8:27:0c:5c:59:56:
8b:99:4e:90:65:93:0b:05:a2:9c:32:21:e7:89:56:65:7f:c8:
c4:eb:45:82:83:d0:fd:5a:3a:a0:ba:f7:75:9d:87:ba:7c:95:
f0:29:26:a0:b3:a8:30:52:a3:ec:67:34:f0:ea:b7:de:c0:88:
eb:8d:a1:88:eb:f4:77:44:61:b4:c4:52:b5:14:75:81:5f:48:
67:99:3b:d7:57:67:2f:b7:c2:5d:69:ae:3a:50:e8:74:03:00:
b3:5b:05:88:0e:c8:66:cf:a6:85:7d:10:f1:c8:0b:16:2b:20:
86:b5:01:8f:9c:05:d7:39:c0:9e:f9:ab:2c:48:b2:00:de:01:
d8:da:0d:8c:20:7f:47:8b:81:ae:bc:e7:d0:74:4f:da:2d:63:
fc:b5:ed:90:f6:bb:3c:e5:83:3e:0a:54:eb:25:05:80:20:77:
93:ae:d5:97:6c:e5:5f:70:82:cf:e2:11:ce:12:20:be:af:b3:
95:d9:24:7b:f9:12:42:54:55:30:7b:22:b3:08:9c:d8:02:2e:
b4:6d:33:92:fc:7b:62:2e:e3:9c:91:5f:41:59:e2:bb:23:70:
94:46:19:c8:38:01:57:5f:9b:bb:3b:2e:f6:84:12:73:fb:ea:
4e:6f:4c:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:07 2023 by rpki-client on console-fra.rpki-client.org