Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/92b548-fdba-4cd4-8361-3cd952ba005d/1/QL6T6B0DT3GTxvbOdAlWcd5F-4g.roa
File: QL6T6B0DT3GTxvbOdAlWcd5F-4g.roa (raw, json)
Hash identifier: 00jK01MDiZqEa81ceQPBO454i/9u6RvCar3CDEIhNQE=
Subject key identifier: 40:BE:93:E8:1D:03:4F:71:93:C6:F6:CE:74:09:56:71:DE:45:FB:88
Certificate issuer: /CN=0d12e0c7774191a55c3d1931fbf20004335fd21c
Certificate serial: 018CC500A2158ABB7E49757737B13E50CCEB
Authority key identifier: 0D:12:E0:C7:77:41:91:A5:5C:3D:19:31:FB:F2:00:04:33:5F:D2:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DRLgx3dBkaVcPRkx-_IABDNf0hw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/92b548-fdba-4cd4-8361-3cd952ba005d/1/QL6T6B0DT3GTxvbOdAlWcd5F-4g.roa
Signing time: Mon 01 Jan 2024 12:30:02 +0000
ROA not before: Mon 01 Jan 2024 12:30:02 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34121
IP address blocks: 91.201.184.0/22 maxlen: 24
2001:678:d8c::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 02 Jan 2025 03:49:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:a2:15:8a:bb:7e:49:75:77:37:b1:3e:50:cc:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d12e0c7774191a55c3d1931fbf20004335fd21c
Validity
Not Before: Jan 1 12:30:02 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=40be93e81d034f7193c6f6ce74095671de45fb88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:6e:be:4f:c2:5a:3e:b9:23:9f:3f:8a:32:97:
76:2a:6f:58:7a:a4:23:33:e0:cb:ce:d0:d4:6e:54:
29:82:56:34:da:4f:2d:e1:48:9a:e7:fa:f2:61:ca:
68:d0:c4:94:64:c8:a4:57:70:bc:15:33:ea:6f:0e:
27:3c:b4:ca:cc:09:bb:5c:6e:bc:72:9e:47:4e:97:
b7:b1:90:49:33:ac:16:36:54:e9:dd:74:d7:d7:ae:
5a:51:e8:6e:15:64:d0:1f:db:65:42:fc:7b:b3:87:
b6:13:56:e1:a2:3a:bf:8f:fb:53:86:e5:35:c4:30:
b5:c1:03:1f:89:b7:d6:a5:a4:e8:46:9f:80:62:1f:
f0:e3:6d:94:42:dd:43:3c:62:ea:0d:5c:51:65:a2:
43:3a:08:9b:8c:58:06:18:8c:10:f4:25:b3:00:76:
7e:34:8c:42:ed:16:32:19:28:ce:6e:e1:f7:9d:99:
90:50:da:8b:f9:8e:ae:af:83:ff:a0:91:3d:8c:a3:
cb:12:20:20:33:eb:e3:25:9f:5e:85:d1:04:47:81:
37:26:b8:50:b3:6c:58:67:72:2c:1f:34:ca:6c:ba:
35:5f:f9:ec:ee:65:05:fb:2c:ff:70:32:a4:f6:4d:
2d:c9:d2:37:19:01:62:1a:4b:8d:f7:7b:59:db:20:
52:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:BE:93:E8:1D:03:4F:71:93:C6:F6:CE:74:09:56:71:DE:45:FB:88
X509v3 Authority Key Identifier:
keyid:0D:12:E0:C7:77:41:91:A5:5C:3D:19:31:FB:F2:00:04:33:5F:D2:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DRLgx3dBkaVcPRkx-_IABDNf0hw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/92b548-fdba-4cd4-8361-3cd952ba005d/1/QL6T6B0DT3GTxvbOdAlWcd5F-4g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/92b548-fdba-4cd4-8361-3cd952ba005d/1/DRLgx3dBkaVcPRkx-_IABDNf0hw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.201.184.0/22
IPv6:
2001:678:d8c::/48
Signature Algorithm: sha256WithRSAEncryption
7b:be:a6:92:c2:c3:79:8f:0c:88:21:a4:fc:fd:56:25:76:fc:
f0:e9:75:72:65:5a:f6:2c:de:af:de:81:af:18:2e:01:c7:02:
30:24:92:1c:b5:af:d7:45:81:26:31:7c:ef:a4:71:1c:01:4b:
03:c1:3d:e6:75:a7:41:e1:4a:5f:8b:25:2f:d1:bb:88:0f:1a:
08:8d:38:21:6d:bf:14:69:16:a8:5c:83:44:20:46:24:6e:a8:
68:1b:f7:16:10:9b:9c:43:02:05:6b:d5:5e:4a:73:b4:8c:a9:
03:24:85:28:cb:36:f0:45:8e:b6:3b:c6:fa:b9:ad:21:18:94:
01:17:60:62:6d:e9:50:11:3a:3e:04:29:7c:b0:fe:d7:dc:45:
f9:21:95:8c:b3:75:c5:a1:4c:b9:7d:5c:3c:1c:e0:de:d5:90:
7a:c6:4f:d9:74:31:d7:ea:87:ef:39:95:8e:6f:7c:7a:21:06:
20:85:13:2c:c6:ae:4d:08:2e:3f:6a:b3:5a:e2:64:d8:d3:c4:
f9:a8:be:f5:42:4d:c3:ab:de:68:de:f8:6b:55:10:cd:f1:35:
38:ae:45:03:89:75:3a:ae:8d:85:35:84:b3:d3:6a:5e:02:ca:
2d:d1:59:eb:cc:fa:f5:12:8b:76:08:ed:de:cb:b5:b7:a6:10:
0f:b4:4a:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:08:24 2025 by rpki-client