Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/bebe6d-16b3-4b02-b205-a783413099d3/1/QiFz75q5hv_MnMEPJa2xGmJ20Y4.roa
File: QiFz75q5hv_MnMEPJa2xGmJ20Y4.roa (raw, json)
Hash identifier: aQ09WoGhZmW7qeXZMO0JkZiduILS3otPIJtVvIXTvGw=
Subject key identifier: 42:21:73:EF:9A:B9:86:FF:CC:9C:C1:0F:25:AD:B1:1A:62:76:D1:8E
Certificate issuer: /CN=9e3533d662c3f0d6bb1e692f3fab6d7ba3824c28
Certificate serial: 018FEEECEB07F5D9CA9B25F66A10199BFB30
Authority key identifier: 9E:35:33:D6:62:C3:F0:D6:BB:1E:69:2F:3F:AB:6D:7B:A3:82:4C:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/njUz1mLD8Na7HmkvP6tte6OCTCg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/bebe6d-16b3-4b02-b205-a783413099d3/1/QiFz75q5hv_MnMEPJa2xGmJ20Y4.roa
Signing time: Thu 06 Jun 2024 19:00:55 +0000
ROA not before: Thu 06 Jun 2024 19:00:55 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 174
IP address blocks: 193.34.48.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 08 Jun 2024 08:01:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:ee:ec:eb:07:f5:d9:ca:9b:25:f6:6a:10:19:9b:fb:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e3533d662c3f0d6bb1e692f3fab6d7ba3824c28
Validity
Not Before: Jun 6 19:00:55 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=422173ef9ab986ffcc9cc10f25adb11a6276d18e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:3b:b7:f4:97:51:c9:3e:0d:c0:d9:6a:23:1f:
f1:6b:f1:09:ea:0c:4e:d8:8b:59:bd:ce:5c:d4:c7:
8e:e2:0b:50:f6:74:e7:4c:29:1b:46:d6:b8:c5:fa:
84:c2:ef:b9:8d:bd:a9:3b:b7:cd:15:48:da:e4:6c:
89:fb:6d:52:18:2f:0b:6e:8b:bc:42:3d:89:21:7c:
93:3e:b8:79:c3:34:ab:b5:1a:b6:99:5c:3c:ac:d8:
d8:00:28:1f:2a:c3:20:32:b8:6c:dd:fd:32:9b:45:
a2:3f:d4:d3:41:36:2d:63:b3:9a:3e:0f:16:6c:74:
d9:61:33:6f:a4:64:da:05:fb:51:9a:18:d5:6e:55:
ed:8d:c1:5e:41:ee:30:97:63:cb:29:78:c3:98:21:
99:b4:1f:0f:a4:f1:f5:3b:76:43:92:7c:f9:7d:39:
2a:20:55:b3:7e:f8:16:56:6b:55:2c:99:6e:5f:f0:
22:b1:9e:67:1a:b2:78:4f:b3:e3:08:0d:b4:01:47:
1f:e0:a7:37:67:1e:4c:74:23:51:e0:42:56:34:bb:
ee:0b:02:72:90:3c:f9:83:74:a9:17:55:a4:d3:58:
42:2f:dd:81:4e:72:f1:02:50:7e:ea:ab:eb:28:f4:
e5:1c:6a:88:4b:b6:d4:aa:a3:db:2c:57:7d:57:1c:
ab:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:21:73:EF:9A:B9:86:FF:CC:9C:C1:0F:25:AD:B1:1A:62:76:D1:8E
X509v3 Authority Key Identifier:
keyid:9E:35:33:D6:62:C3:F0:D6:BB:1E:69:2F:3F:AB:6D:7B:A3:82:4C:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/njUz1mLD8Na7HmkvP6tte6OCTCg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/bebe6d-16b3-4b02-b205-a783413099d3/1/QiFz75q5hv_MnMEPJa2xGmJ20Y4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/bebe6d-16b3-4b02-b205-a783413099d3/1/njUz1mLD8Na7HmkvP6tte6OCTCg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.34.48.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:5c:c6:a4:c5:45:cc:04:bd:11:38:b5:60:3d:0f:60:82:94:
8e:2a:30:86:7e:a5:5b:3f:ee:49:dd:5b:43:55:8f:0f:85:a0:
ce:6a:9b:57:ce:da:45:53:00:c7:0e:6b:14:7c:c9:dc:b7:c7:
ff:14:0d:cc:98:0b:72:a1:92:b1:5c:4a:be:de:a0:df:bc:49:
c8:73:24:26:60:31:18:2c:07:43:25:b7:e9:38:cf:7c:22:ce:
22:44:e9:a0:ca:37:ec:42:18:90:ed:19:d7:26:72:1e:26:bb:
3a:74:39:cf:a6:e3:35:e5:26:fc:79:e5:3d:a1:97:e2:35:bf:
5c:0e:df:57:d4:67:20:45:1c:d5:70:bf:0a:7e:14:65:a9:05:
92:c2:5d:3e:75:63:52:65:28:70:7b:72:a4:b3:96:62:81:d4:
c9:ae:69:41:02:e7:b0:49:e6:cf:f8:6d:c3:33:77:28:f6:93:
40:19:90:20:aa:2e:51:ce:c1:3b:4f:2f:93:8a:3e:89:da:84:
6a:39:45:5d:9e:ce:58:ce:be:6a:a6:23:eb:d4:64:18:de:7f:
a4:d0:8c:b6:a2:fd:cd:bb:00:4a:7c:8c:7b:80:2f:ed:a4:f5:
19:ad:d1:5c:5f:80:a3:b6:ba:5c:d4:a7:f1:ed:22:d1:8c:9f:
77:84:fc:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 03:31:19 2025 by rpki-client