Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/q1WS3B0kjZKl_gqb2Uiu1JRNqNM.roa
File: q1WS3B0kjZKl_gqb2Uiu1JRNqNM.roa (raw, json)
Hash identifier: uYaWAOs76GOUpARpO1v6a3nZghdHKJ6n8z6MO5JIrZc=
Subject key identifier: AB:55:92:DC:1D:24:8D:92:A5:FE:0A:9B:D9:48:AE:D4:94:4D:A8:D3
Certificate issuer: /CN=19426325acb8ce609a686fa655b058968809b346
Certificate serial: 0185D3A53B75558177AE5A0340858E3E3B82
Authority key identifier: 19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/q1WS3B0kjZKl_gqb2Uiu1JRNqNM.roa
Signing time: Sat 21 Jan 2023 09:24:59 +0000
ROA not before: Sat 21 Jan 2023 09:24:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 54339
IP address blocks: 212.111.211.0/24 maxlen: 24
212.111.218.0/23 maxlen: 24
185.143.56.0/22 maxlen: 24
77.47.180.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 06 Mar 2023 08:49:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:d3:a5:3b:75:55:81:77:ae:5a:03:40:85:8e:3e:3b:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19426325acb8ce609a686fa655b058968809b346
Validity
Not Before: Jan 21 09:24:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ab5592dc1d248d92a5fe0a9bd948aed4944da8d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:53:50:ae:0c:d3:cf:5f:0a:7f:79:19:b7:d7:
66:65:5a:8e:77:8b:a7:cd:42:7e:ea:8a:df:ea:3a:
22:31:5c:00:1f:d8:80:38:4d:02:ba:50:aa:bb:87:
0f:ff:01:ae:84:39:f4:50:1c:ba:cd:aa:48:37:95:
43:11:a1:4c:01:01:4a:2b:2d:19:d4:2a:51:2f:01:
d1:b2:49:41:3e:20:92:14:b8:11:a5:17:b9:da:6b:
44:c1:5c:a0:37:4f:73:72:0e:84:24:97:f7:00:3f:
fb:db:a1:eb:25:0a:c2:04:a7:ee:f5:52:36:18:33:
2a:de:2a:1f:e1:3d:1a:3c:5b:b8:6b:54:3a:aa:30:
9d:6a:91:2f:68:0f:f1:05:c7:08:0a:69:9a:63:1f:
d1:44:ce:9b:dc:34:f1:5b:f6:14:59:ec:a2:9b:36:
76:b9:6d:6f:a4:f1:2f:24:54:c3:d1:22:a4:94:bb:
f9:ce:ec:97:c5:cf:83:d2:99:b4:c2:0c:41:b6:65:
73:ca:eb:3d:64:e7:92:e2:d2:75:c6:d3:9f:2f:f6:
8a:e4:02:c4:0f:38:7d:6e:ae:d8:2b:bc:94:a0:4c:
ad:54:fc:e0:70:d0:09:52:2f:f4:48:4e:a1:72:03:
af:cc:6b:c5:e5:ff:46:43:e5:84:bc:b0:29:34:66:
6c:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:55:92:DC:1D:24:8D:92:A5:FE:0A:9B:D9:48:AE:D4:94:4D:A8:D3
X509v3 Authority Key Identifier:
keyid:19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/q1WS3B0kjZKl_gqb2Uiu1JRNqNM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/GUJjJay4zmCaaG-mVbBYlogJs0Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.47.180.0/22
185.143.56.0/22
212.111.211.0/24
212.111.218.0/23
Signature Algorithm: sha256WithRSAEncryption
4c:7f:3c:2b:e5:f7:67:09:c9:99:e8:cd:4e:13:11:27:ec:95:
44:bc:6a:54:bb:73:09:1c:ef:8a:e4:1e:5a:60:bf:9b:22:c6:
58:87:76:e2:8c:30:c0:40:5e:62:3d:97:4c:b9:48:39:9d:69:
ce:30:36:6f:15:ef:06:08:2d:84:57:54:72:40:50:c9:de:b2:
0e:fa:d4:7e:85:88:ad:17:f6:39:62:16:11:cd:82:63:1f:39:
e2:21:80:2e:18:28:02:36:7b:26:2e:ea:2d:c2:a0:34:1b:6d:
ff:41:c7:75:f4:58:c6:71:47:93:68:55:b2:4e:71:e3:ce:b1:
de:7f:2e:43:cd:bb:1b:5d:70:d5:cf:30:30:66:d1:3b:2d:05:
95:9b:38:7f:b6:3b:86:ed:eb:53:71:63:36:1b:8d:76:5d:1c:
ac:8e:33:14:d9:f1:15:35:0d:42:c8:8b:d0:d9:e3:86:a5:05:
30:67:ba:b8:77:af:3b:11:13:d4:67:b4:e6:87:73:00:36:ea:
23:b0:6a:82:06:ea:25:f9:d7:18:01:60:a0:de:81:c0:8b:23:
56:d8:55:6b:9e:c5:69:4a:22:df:35:27:d1:52:52:78:c9:e3:
14:c1:9b:0b:4b:4f:b5:9a:aa:db:fd:fb:86:31:f6:34:08:ad:
04:d4:5c:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:09:38 2024 by rpki-client on console-ams.rpki-client.org