Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/fa278b-1246-48e3-9a05-509611b59c4a/1/QCvZkI5jOHvh9b8_mzAXjUsI3pA.roa
File: QCvZkI5jOHvh9b8_mzAXjUsI3pA.roa (raw, json)
Hash identifier: ZEvIz3GZQuScgVthe+AdklHm/cSFftQqledVDt8wdWQ=
Subject key identifier: 40:2B:D9:90:8E:63:38:7B:E1:F5:BF:3F:9B:30:17:8D:4B:08:DE:90
Certificate issuer: /CN=4ee0b21c89a302be9dc03870c098f23280304b0f
Certificate serial: 01862B16F3A6894FAC1BB4723C8D73A9519C
Authority key identifier: 4E:E0:B2:1C:89:A3:02:BE:9D:C0:38:70:C0:98:F2:32:80:30:4B:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TuCyHImjAr6dwDhwwJjyMoAwSw8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/fa278b-1246-48e3-9a05-509611b59c4a/1/QCvZkI5jOHvh9b8_mzAXjUsI3pA.roa
Signing time: Tue 07 Feb 2023 08:56:09 +0000
ROA not before: Tue 07 Feb 2023 08:56:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39216
IP address blocks: 185.222.20.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:2b:16:f3:a6:89:4f:ac:1b:b4:72:3c:8d:73:a9:51:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ee0b21c89a302be9dc03870c098f23280304b0f
Validity
Not Before: Feb 7 08:56:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=402bd9908e63387be1f5bf3f9b30178d4b08de90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:f0:86:85:f5:0f:81:6d:86:b3:dd:2b:02:b0:
87:70:33:ac:d7:72:1b:61:66:68:0d:12:7b:8b:a5:
b8:0d:db:d1:e4:62:1a:d0:4c:e2:1d:82:02:d8:71:
17:36:e7:a4:d3:f5:52:c5:99:2a:02:31:03:df:1a:
8a:17:dc:d0:a0:f3:94:af:15:9d:64:cd:de:18:7e:
95:86:34:6c:0e:ce:56:24:46:b2:cd:f7:d7:8a:6b:
be:23:3c:6c:28:e6:f8:bc:73:dd:c8:5e:d4:76:82:
89:13:4c:6f:55:00:cc:6e:ba:4f:96:f9:fa:f2:84:
f1:fb:c5:cf:d7:b5:b6:86:d8:f0:f0:2e:dd:e0:29:
c8:58:1b:d7:60:d8:d0:27:e9:7b:10:6f:bc:c8:a3:
fa:f3:21:9e:7e:10:a4:93:09:8c:0b:32:40:03:21:
26:01:d5:15:69:b1:2a:15:c9:0a:8c:85:06:3d:97:
e9:ee:d1:c4:07:1d:97:1d:b1:95:5d:c7:71:3a:f8:
53:bc:65:a4:65:51:43:1d:3a:3c:cd:bd:99:5d:54:
aa:23:8b:95:1f:78:37:ad:51:59:c5:ba:42:00:a1:
e0:7d:83:62:bd:21:ce:9f:c4:05:a7:1a:da:e0:85:
fb:ba:96:ca:81:b0:f6:7e:f0:87:aa:94:94:aa:a9:
e7:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:2B:D9:90:8E:63:38:7B:E1:F5:BF:3F:9B:30:17:8D:4B:08:DE:90
X509v3 Authority Key Identifier:
keyid:4E:E0:B2:1C:89:A3:02:BE:9D:C0:38:70:C0:98:F2:32:80:30:4B:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TuCyHImjAr6dwDhwwJjyMoAwSw8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/fa278b-1246-48e3-9a05-509611b59c4a/1/QCvZkI5jOHvh9b8_mzAXjUsI3pA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/fa278b-1246-48e3-9a05-509611b59c4a/1/TuCyHImjAr6dwDhwwJjyMoAwSw8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.222.20.0/24
Signature Algorithm: sha256WithRSAEncryption
82:2f:86:04:fa:b6:87:db:3b:a7:b3:2e:96:86:91:2d:ce:4d:
3b:ae:7b:ad:3c:1d:44:3d:a7:22:95:f7:84:5c:57:0c:82:e1:
69:04:b6:df:46:95:79:f2:dc:b4:df:33:50:0f:80:93:47:a4:
bb:60:24:31:c7:59:0d:df:a8:aa:95:34:d4:48:cb:0c:40:41:
19:51:cd:bc:62:57:6b:1f:db:06:13:2d:69:ab:04:ef:1a:a3:
91:de:ba:17:9e:be:95:84:37:10:cb:ee:4f:1d:87:bc:ec:92:
51:7f:67:df:6b:5c:c7:4a:78:9f:d8:82:88:3c:3a:c3:df:bd:
0d:f7:8c:db:0b:b7:e9:e3:59:87:2c:54:09:11:65:9c:4d:83:
10:75:39:60:be:2d:8e:6b:dc:25:bf:d0:e0:55:41:dc:a7:f6:
77:d0:67:a4:29:a2:4d:2d:ef:a2:c1:ae:21:a8:53:1e:3b:a2:
eb:75:c1:ae:c4:cc:e4:78:24:c9:76:f8:4a:de:ff:66:74:6b:
33:14:75:43:93:c9:f4:33:16:b0:97:d7:f4:91:82:f3:ff:ad:
2c:e7:81:af:6b:1e:3e:a6:89:e4:cd:75:57:af:6a:02:cb:9e:
da:28:d9:e1:93:fa:b1:4c:e1:2c:60:f8:62:7c:d3:09:08:49:
bb:10:7c:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:42 2024 by rpki-client on console-ams.rpki-client.org