Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/QeUAZh1qbQDbPX6RGHa-ub1m7n4.roa
File: QeUAZh1qbQDbPX6RGHa-ub1m7n4.roa (raw, json)
Hash identifier: MHSsKoJMqok6BOSf7j+2whST2hla/RPHOobR26Vt/3o=
Subject key identifier: 41:E5:00:66:1D:6A:6D:00:DB:3D:7E:91:18:76:BE:B9:BD:66:EE:7E
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 01863051F3C70A9900FB21F415C640136CCC
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/QeUAZh1qbQDbPX6RGHa-ub1m7n4.roa
Signing time: Wed 08 Feb 2023 09:18:42 +0000
ROA not before: Wed 08 Feb 2023 09:18:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3507
IP address blocks: 5.105.166.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 05 May 2023 08:13:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:30:51:f3:c7:0a:99:00:fb:21:f4:15:c6:40:13:6c:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: Feb 8 09:18:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=41e500661d6a6d00db3d7e911876beb9bd66ee7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:85:fd:6b:96:1a:5d:14:cf:b9:e9:3f:3f:89:
3f:0e:a9:27:6e:88:fa:b7:5f:7a:28:ee:dd:59:1e:
a1:78:16:09:2a:31:2d:eb:ae:d8:c3:62:f8:b8:3d:
41:3f:26:34:98:b3:62:70:80:5c:85:34:16:6d:ef:
ac:63:73:fd:6c:94:ff:f8:ef:0a:62:4c:c1:ed:dc:
64:8d:a0:5b:75:57:d9:6a:af:ed:1b:bc:ff:5d:df:
01:63:9f:6c:6b:d7:fa:84:a7:ea:37:e4:ab:28:23:
49:1a:ac:0f:31:14:76:a8:f5:bb:70:47:34:ff:3a:
0a:b9:01:7a:24:a9:81:65:6a:fe:49:dd:50:ef:f2:
1e:25:42:4c:e0:66:07:f1:23:de:f1:51:05:92:18:
96:ce:1b:80:cd:c1:5e:6c:76:b8:94:03:de:41:01:
f9:0f:df:0d:00:2d:44:1f:9f:b9:e5:0f:27:c0:9a:
63:f1:8d:e3:d1:e6:66:7a:eb:2c:e2:ac:56:13:8e:
cc:e8:8d:a9:9c:e2:b8:e6:b6:cf:b6:dd:c3:af:fc:
ac:89:5c:98:62:cf:79:c3:46:83:87:a3:e6:20:f3:
21:08:4b:c0:61:b5:a1:02:bf:b1:fa:97:9a:a9:da:
63:f6:e9:5c:5f:97:f6:07:a6:9a:1a:37:a5:bf:f4:
dc:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:E5:00:66:1D:6A:6D:00:DB:3D:7E:91:18:76:BE:B9:BD:66:EE:7E
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/QeUAZh1qbQDbPX6RGHa-ub1m7n4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.105.166.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:9a:7d:4c:9e:cb:75:27:7f:11:2e:49:fd:17:e8:88:78:0a:
a5:e0:e7:57:e1:e7:fc:25:f1:89:a0:0a:79:38:24:37:cb:4a:
f9:5b:4d:55:a4:f3:8e:61:3c:55:88:58:38:b6:0c:37:2f:82:
42:4f:81:e4:4d:9f:49:2f:1d:1e:76:4b:c4:28:c1:83:e6:16:
ba:f0:42:2c:40:12:02:72:d7:9c:69:14:c5:de:9c:3e:31:11:
30:96:ee:a9:ae:e8:73:49:f0:7a:19:db:7a:cc:b6:c8:8e:df:
df:52:8f:28:8f:cf:57:9d:56:38:ca:4e:1b:21:20:c9:e4:c2:
1d:9e:23:3d:ba:29:d8:7d:a3:66:ce:c2:ec:2c:a3:b3:a6:bf:
e2:27:25:cb:6c:e3:e3:48:26:67:c6:4f:8b:fb:c2:72:97:1b:
66:5d:70:52:dd:9b:1f:27:98:a0:74:8b:64:e1:91:82:8c:03:
d4:92:23:00:d7:31:9b:53:f6:ee:42:8c:0d:c0:c5:59:79:00:
f0:ab:92:3b:4d:7e:31:bf:15:ee:11:c6:32:5e:5a:45:60:17:
a8:f1:a2:f2:75:55:fd:99:4b:26:ce:5d:49:62:ec:b4:08:9d:
3a:b5:7d:f2:82:44:24:3a:ca:b4:61:66:07:6c:0d:6c:b7:cf:
1a:82:a5:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:27 2024 by rpki-client on console-fra.rpki-client.org