Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/332477-c83c-4f80-b1be-7c0db7bae135/1/qQ2S_v1o6l5_Q6RFXmJZaKJIlsA.roa
File: qQ2S_v1o6l5_Q6RFXmJZaKJIlsA.roa (raw, json)
Hash identifier: tXmmUIT0+1v7j+nxhgkj+8EyLOcGdZTKF+BbnAuS6Zs=
Subject key identifier: A9:0D:92:FE:FD:68:EA:5E:7F:43:A4:45:5E:62:59:68:A2:48:96:C0
Certificate issuer: /CN=1ee5efbf65897160d55a52dc3a22c017876cd06c
Certificate serial: 01922387B3ED4147FBE033721E298BD77820
Authority key identifier: 1E:E5:EF:BF:65:89:71:60:D5:5A:52:DC:3A:22:C0:17:87:6C:D0:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HuXvv2WJcWDVWlLcOiLAF4ds0Gw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/332477-c83c-4f80-b1be-7c0db7bae135/1/qQ2S_v1o6l5_Q6RFXmJZaKJIlsA.roa
Signing time: Tue 24 Sep 2024 10:15:48 +0000
ROA not before: Tue 24 Sep 2024 10:15:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198949
IP address blocks: 185.176.124.0/24 maxlen: 24
185.201.166.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 15:50:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:23:87:b3:ed:41:47:fb:e0:33:72:1e:29:8b:d7:78:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ee5efbf65897160d55a52dc3a22c017876cd06c
Validity
Not Before: Sep 24 10:15:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a90d92fefd68ea5e7f43a4455e625968a24896c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:bd:99:07:9c:8e:0c:87:b8:70:02:30:0d:f3:
fd:0d:3a:ec:16:b1:df:b4:a2:12:4d:76:93:bc:3f:
ab:40:d2:23:48:59:65:2a:72:ab:99:08:51:f7:13:
ee:95:cf:63:2a:a0:bc:30:fc:a3:e1:8f:57:2a:75:
4c:5b:bc:d0:f9:e7:26:d4:25:43:dd:d5:79:31:b9:
97:60:26:82:25:18:41:41:0b:6a:b8:3e:1f:5e:59:
47:08:f9:46:55:17:4b:85:05:9b:f8:4b:dd:81:c7:
9a:13:ed:d0:62:23:91:d0:c8:13:73:03:a7:53:4e:
25:f8:87:66:be:26:6c:1a:6c:29:e5:6c:1d:6b:5c:
8f:d9:c5:ad:74:e8:41:51:ef:b3:38:b3:33:f0:7e:
11:f8:d6:f1:81:e9:12:54:42:67:6e:ec:9f:32:8d:
e1:f5:3b:82:64:59:96:d3:3d:e3:cb:97:0e:66:39:
44:c3:72:12:5b:c9:d6:12:e9:de:18:da:c7:89:a8:
da:8e:17:48:92:03:17:7d:8c:3d:f3:e5:38:13:a3:
29:86:f5:5c:3b:31:7a:64:8a:d2:cc:f0:be:2e:4d:
a3:28:41:99:85:a9:c7:92:c1:1d:54:d6:28:b4:5e:
ee:8b:0f:a9:a1:2d:0b:d0:13:d1:35:c8:3a:38:03:
a6:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:0D:92:FE:FD:68:EA:5E:7F:43:A4:45:5E:62:59:68:A2:48:96:C0
X509v3 Authority Key Identifier:
keyid:1E:E5:EF:BF:65:89:71:60:D5:5A:52:DC:3A:22:C0:17:87:6C:D0:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HuXvv2WJcWDVWlLcOiLAF4ds0Gw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/332477-c83c-4f80-b1be-7c0db7bae135/1/qQ2S_v1o6l5_Q6RFXmJZaKJIlsA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/332477-c83c-4f80-b1be-7c0db7bae135/1/HuXvv2WJcWDVWlLcOiLAF4ds0Gw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.176.124.0/24
185.201.166.0/24
Signature Algorithm: sha256WithRSAEncryption
71:b8:ee:7d:d0:c1:dd:8c:e4:e3:33:20:45:ba:bb:84:3d:f9:
8d:a2:38:89:8b:04:ae:b7:1e:f9:1b:a2:fe:cf:b0:0b:f3:07:
81:c4:26:37:a3:98:f8:fe:4c:d9:a5:96:85:ad:29:c0:45:d8:
f9:59:9e:a7:4e:23:e0:14:c2:ad:52:cf:f6:31:ad:a0:20:41:
ee:21:85:ac:70:a3:48:03:2c:db:20:73:ff:6d:70:7d:41:0b:
0d:61:df:07:cf:a7:07:dc:ac:6a:dd:20:c9:d2:85:f3:2f:7c:
37:56:02:90:9f:05:7e:d6:d1:44:fc:b0:f0:16:5c:8c:9c:4d:
0d:96:ad:b5:98:47:62:22:3d:b1:1c:e4:d1:34:f7:56:be:ef:
05:41:1f:b6:b8:f0:f2:03:b8:b0:64:28:c4:49:42:e2:f9:09:
46:aa:db:01:88:19:6f:6c:06:01:6a:ad:e7:ff:f6:a9:77:34:
2a:6f:51:35:0f:de:24:fd:3a:90:7a:5e:62:86:66:8d:30:63:
be:4a:19:57:05:53:a1:61:ce:54:f4:4b:4e:19:4a:8b:85:39:
f0:8f:0f:63:cc:83:5d:4c:e0:ad:7a:19:9a:1f:4b:e7:ee:01:
14:b4:3d:2d:92:9d:b7:21:bb:a8:1b:38:12:b1:cd:c2:58:8f:
d1:c5:7c:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:54:09 2025 by rpki-client