Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/6b0344-8229-4d25-b498-8ce7c4fc5e0b/1/qQimWO3pgA5TaGBOXdytwaxQTxw.roa
File: qQimWO3pgA5TaGBOXdytwaxQTxw.roa (raw, json)
Hash identifier: pIbKvMnYRoa+rAqWqbpCfTRhaohxZlYQuIxTyHFHR2M=
Subject key identifier: A9:08:A6:58:ED:E9:80:0E:53:68:60:4E:5D:DC:AD:C1:AC:50:4F:1C
Certificate issuer: /CN=37e751a11c1a7888fa58dbfc32c8959bc946303e
Certificate serial: 018570672FC2A5BB106D7F89881A51971055
Authority key identifier: 37:E7:51:A1:1C:1A:78:88:FA:58:DB:FC:32:C8:95:9B:C9:46:30:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N-dRoRwaeIj6WNv8MsiVm8lGMD4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/6b0344-8229-4d25-b498-8ce7c4fc5e0b/1/qQimWO3pgA5TaGBOXdytwaxQTxw.roa
Signing time: Mon 02 Jan 2023 02:54:48 +0000
ROA not before: Mon 02 Jan 2023 02:54:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62371
IP address blocks: 185.205.70.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:29:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:67:2f:c2:a5:bb:10:6d:7f:89:88:1a:51:97:10:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37e751a11c1a7888fa58dbfc32c8959bc946303e
Validity
Not Before: Jan 2 02:54:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a908a658ede9800e5368604e5ddcadc1ac504f1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:05:c7:f5:db:08:80:16:36:b0:bd:31:d7:1c:
b1:1a:4a:26:2a:c6:ea:50:05:c8:4e:44:e0:b6:2b:
ff:22:5c:ba:33:5b:f7:ec:4d:92:70:05:47:3f:0a:
34:3a:eb:f8:74:05:b8:84:ce:d6:5a:81:98:80:8b:
03:bc:63:01:59:b3:ac:c3:34:14:bc:84:8a:e7:a0:
e9:92:2d:59:ad:a6:ff:7d:be:fa:a8:d6:f5:33:56:
7e:f4:2e:35:cb:d4:82:ac:fd:37:55:ac:65:8c:e1:
7e:9e:b0:82:05:96:c9:d7:85:75:a4:3e:49:67:fe:
19:5e:21:2a:f1:48:ed:f7:3a:2f:8f:f8:de:cd:07:
ae:eb:6b:e7:bb:ff:07:e4:e0:03:08:d4:7d:50:6a:
49:69:26:97:3f:fe:d5:0b:11:2a:0c:39:d3:dc:0b:
0a:e6:0f:e6:3b:1d:90:81:50:88:03:02:81:86:b0:
45:25:d2:db:d7:22:d8:07:ac:74:48:af:c4:1c:08:
8c:58:23:d7:a7:48:a1:8f:06:e2:52:28:aa:fa:9f:
41:61:24:59:ee:f9:bf:da:6a:41:3f:10:1e:0f:92:
bd:6a:9c:76:5a:f2:17:d9:a6:f5:17:aa:4b:ee:18:
c3:ec:bb:de:44:10:6a:e1:24:fe:82:c2:4c:ba:81:
c4:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:08:A6:58:ED:E9:80:0E:53:68:60:4E:5D:DC:AD:C1:AC:50:4F:1C
X509v3 Authority Key Identifier:
keyid:37:E7:51:A1:1C:1A:78:88:FA:58:DB:FC:32:C8:95:9B:C9:46:30:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N-dRoRwaeIj6WNv8MsiVm8lGMD4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/6b0344-8229-4d25-b498-8ce7c4fc5e0b/1/qQimWO3pgA5TaGBOXdytwaxQTxw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/6b0344-8229-4d25-b498-8ce7c4fc5e0b/1/N-dRoRwaeIj6WNv8MsiVm8lGMD4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.205.70.0/24
Signature Algorithm: sha256WithRSAEncryption
40:43:e2:22:72:72:7c:da:a5:e3:11:64:fa:75:6b:97:d0:4b:
7f:4a:a6:0b:a3:02:f8:ca:9b:7d:29:e1:09:ee:b2:32:00:59:
cb:72:cf:1e:0e:08:39:1a:2d:50:24:d2:6f:44:34:35:ef:c6:
0a:8d:a4:11:66:99:1a:e7:8a:e9:19:68:ab:fc:b8:2f:c2:3c:
d9:a7:e0:8a:dd:46:7a:3e:52:61:5c:e2:b3:97:0f:62:a9:46:
87:0b:44:bb:30:40:c5:f5:f2:69:28:85:a5:d3:b0:c6:91:8c:
fd:52:e8:bd:c6:8c:da:0a:16:a8:1d:45:52:74:a7:3c:b9:52:
ac:58:3c:cd:53:86:e9:77:22:42:e2:ba:dd:26:de:92:84:d6:
4a:bc:54:e4:37:d3:16:7f:7c:d5:ce:75:d1:83:62:66:b1:7a:
57:82:10:64:60:4c:02:81:06:f6:09:39:4a:17:8f:2e:eb:b2:
46:18:7a:90:5f:7a:67:4e:2a:d0:b1:7b:61:9b:3a:18:84:1f:
e4:c7:a2:f7:68:f6:5e:46:72:4f:ff:d1:46:36:1c:e1:38:43:
98:df:e8:f8:e2:0f:e0:de:af:5d:98:c2:e6:98:f9:4b:7b:fb:
8f:76:1e:0c:1e:22:40:06:e7:69:02:0d:75:d3:65:92:b5:2c:
f2:42:e3:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:25 2024 by rpki-client on console-fra.rpki-client.org