Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/qrZjvBCy3ws5A_Eq-xHMuGK62bU.roa
File: qrZjvBCy3ws5A_Eq-xHMuGK62bU.roa (raw, json)
Hash identifier: F9FGI44Y/pKoHGpD4VjwlZL3jIkztoqEBRWEQHEjNVk=
Subject key identifier: AA:B6:63:BC:10:B2:DF:0B:39:03:F1:2A:FB:11:CC:B8:62:BA:D9:B5
Certificate issuer: /CN=b72945f57103153a07854e74e227f2aec1c5f430
Certificate serial: 0191091AEC50CB60ECA49BD9084ECC63694B
Authority key identifier: B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/qrZjvBCy3ws5A_Eq-xHMuGK62bU.roa
Signing time: Wed 31 Jul 2024 14:04:04 +0000
ROA not before: Wed 31 Jul 2024 14:04:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42337
IP address blocks: 109.94.165.0/24 maxlen: 24
185.29.223.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 09 Oct 2024 14:16:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:09:1a:ec:50:cb:60:ec:a4:9b:d9:08:4e:cc:63:69:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b72945f57103153a07854e74e227f2aec1c5f430
Validity
Not Before: Jul 31 14:04:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=aab663bc10b2df0b3903f12afb11ccb862bad9b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:63:b3:83:37:1a:97:b4:fd:51:a2:9b:3e:aa:
a7:c8:5f:f9:c4:64:09:6f:f0:6d:e7:1e:bb:31:28:
7b:f1:66:46:fb:fc:57:d1:e4:2f:6a:ed:b7:b3:bc:
4d:47:ce:a4:b9:a1:d5:d0:fa:0b:cd:79:02:70:44:
29:da:84:bf:72:4b:5d:a1:42:73:ae:5f:fa:c9:f0:
74:ac:41:3a:35:a6:2d:ee:be:4d:93:c4:90:34:d3:
56:c9:e9:35:87:70:8b:78:e0:d8:fb:7c:62:c0:d9:
45:4c:0d:37:08:ab:ab:30:97:bc:34:96:b8:0b:da:
3e:09:15:46:0a:1b:f0:b8:6c:23:d0:5b:79:88:34:
f3:c1:55:2e:3b:ba:79:cb:b4:be:66:b9:be:f1:82:
05:fd:fd:f9:bf:e6:b5:1d:91:d2:5a:05:51:a3:d6:
42:68:a0:d2:8f:cc:59:c7:70:b5:83:4e:55:3f:0f:
69:6a:9f:28:b1:6c:c0:f7:0c:37:fe:4a:05:87:1c:
86:e1:5b:14:f4:2c:72:a1:6e:56:be:d8:b3:c0:4f:
3f:a0:29:c8:2a:94:3f:2c:b2:1c:11:c2:ef:1a:8e:
99:24:68:d6:14:01:bb:5b:50:42:75:5d:df:cd:a3:
7e:2c:74:ed:ab:60:ee:36:b5:66:27:73:b1:ad:a2:
21:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:B6:63:BC:10:B2:DF:0B:39:03:F1:2A:FB:11:CC:B8:62:BA:D9:B5
X509v3 Authority Key Identifier:
keyid:B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/qrZjvBCy3ws5A_Eq-xHMuGK62bU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tylF9XEDFToHhU504ifyrsHF9DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.94.165.0/24
185.29.223.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:51:b9:5c:86:f2:e5:ab:e1:d8:22:f4:e8:e2:98:8f:f3:4e:
d0:30:1f:b2:79:2e:45:dc:fe:d2:3b:8b:ca:de:07:9b:39:02:
ef:dd:10:f9:9e:90:f9:6d:8c:37:f4:a0:b3:dc:3d:66:a7:c2:
09:b0:11:90:65:fc:dd:86:96:22:49:21:19:e9:38:16:9e:70:
77:8e:42:d6:b2:b9:f9:35:a3:be:4c:d9:3d:dc:3d:cf:2f:d9:
bf:8c:9c:3d:05:ce:d1:8c:10:ec:c9:28:71:7f:a5:63:3e:1d:
17:35:4b:2f:3e:30:a7:1b:87:f0:3a:9f:46:19:95:c3:a7:2e:
60:b9:a3:af:9e:87:19:54:51:1f:68:de:70:03:d7:e2:1a:0b:
5e:27:71:00:fe:d5:a4:18:e3:f5:ea:07:96:99:f1:36:5f:44:
ef:38:40:aa:70:f1:02:05:4f:95:c0:ee:3e:75:a3:90:6f:0d:
8c:07:ac:97:e8:fc:04:bc:38:1d:a3:5f:20:c6:3c:7d:42:ed:
b2:3d:47:2e:ea:91:fa:bc:92:83:2d:32:a0:bf:58:d2:74:05:
df:bb:ea:5d:36:e2:1d:1b:e0:91:8c:6f:bd:22:ce:37:ec:21:
6a:9a:7b:0a:20:39:c9:35:5e:e6:98:bf:4b:6c:33:40:5b:de:
1b:ea:70:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 9 19:11:14 2024 by rpki-client on console-ams.rpki-client.org