Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/qcTdWBGcLdObu25POry0Oml17z0.roa
File: qcTdWBGcLdObu25POry0Oml17z0.roa (raw, json)
Hash identifier: Zrm0DY5Dn8C/t5c5eKq3tzLAeBKXh1G+/qLtDepyaeQ=
Subject key identifier: A9:C4:DD:58:11:9C:2D:D3:9B:BB:6E:4F:3A:BC:B4:3A:69:75:EF:3D
Certificate issuer: /CN=f04a58047f37bbc057944bbf8cad8742879592da
Certificate serial: 01910890AC06E84DB5BF138638D1016F6A55
Authority key identifier: F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/qcTdWBGcLdObu25POry0Oml17z0.roa
Signing time: Wed 31 Jul 2024 11:33:04 +0000
ROA not before: Wed 31 Jul 2024 11:33:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 262240
IP address blocks: 185.161.111.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 01 Aug 2024 07:02:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:08:90:ac:06:e8:4d:b5:bf:13:86:38:d1:01:6f:6a:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f04a58047f37bbc057944bbf8cad8742879592da
Validity
Not Before: Jul 31 11:33:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a9c4dd58119c2dd39bbb6e4f3abcb43a6975ef3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:1b:54:ac:c5:8b:55:a0:3b:e6:75:73:e8:b1:
fd:f4:7a:64:6e:81:a8:dc:74:9e:9a:36:87:c8:df:
3d:99:b4:dc:0f:bd:67:00:66:d5:78:b5:dd:2f:db:
5f:9a:52:26:8e:75:5c:17:db:5f:fd:73:4b:45:16:
0e:19:c2:66:c3:e3:35:93:33:a6:e2:e1:0f:d3:bf:
99:b7:81:f4:13:f8:56:e9:b2:6c:79:29:03:1e:95:
33:1c:fc:c7:8b:75:4e:43:16:c9:d8:32:fd:ca:d7:
e4:7b:88:85:32:6d:a4:4d:c3:b0:8b:de:4a:d1:cb:
49:70:05:25:1c:96:9f:43:6e:14:14:28:3d:94:a8:
fa:94:7f:9e:3a:19:90:ed:9c:c2:6e:d1:e7:7d:ef:
6f:11:86:12:41:75:a5:9b:9a:26:15:73:47:b5:df:
0d:0d:79:93:c9:48:27:1b:16:7a:b3:6c:8d:ec:cb:
2a:82:83:8b:be:c0:34:8b:2b:cd:24:7f:46:15:0e:
e6:92:89:6a:f1:5c:84:26:5b:cc:d5:f4:92:fa:81:
f2:87:82:79:ac:13:83:2a:ec:7d:a6:58:1d:18:2e:
c9:59:dc:31:37:00:a3:e5:f7:95:b5:e3:56:a6:7c:
1e:7f:57:3e:ec:ed:38:5e:03:5e:f5:85:82:ef:d5:
36:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:C4:DD:58:11:9C:2D:D3:9B:BB:6E:4F:3A:BC:B4:3A:69:75:EF:3D
X509v3 Authority Key Identifier:
keyid:F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/qcTdWBGcLdObu25POry0Oml17z0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.161.111.0/24
Signature Algorithm: sha256WithRSAEncryption
de:41:f7:93:9c:cf:a2:03:55:f3:4e:c3:29:a4:ca:a4:e2:4f:
cd:1c:41:4b:94:3d:bd:6d:ce:f2:5b:fb:33:ba:60:aa:b5:63:
a6:a5:9a:94:e9:ee:5a:21:c7:cb:40:41:cc:7c:b2:cc:79:84:
98:22:4a:89:67:3f:21:54:6b:99:aa:3c:ab:df:de:ed:ca:bd:
0e:0b:f7:40:d8:b1:ec:c5:b1:2d:dc:4a:8f:92:dd:d4:dc:09:
87:fe:ac:89:74:ba:ae:e7:30:92:8e:94:d2:63:10:73:ac:18:
13:5b:c3:45:d5:3c:01:88:6a:e2:c3:c7:7e:19:2f:a5:2b:16:
55:b7:1f:74:b0:65:e8:80:53:7d:ce:3b:f1:71:5b:b7:b0:cf:
27:92:e7:03:35:09:03:6a:69:5a:ec:86:fa:20:94:a9:4f:46:
7c:5a:3a:12:9b:1a:8a:16:f3:fe:7d:24:7d:82:1b:47:ed:67:
38:cd:94:46:9e:1b:7d:b2:09:dc:69:18:d8:d9:2c:51:de:48:
4d:a3:57:7d:ed:16:e1:12:d8:dd:5d:23:1e:69:5c:33:79:a2:
90:7f:90:54:a9:76:7f:9b:9f:2b:6d:85:13:91:2c:b6:eb:3f:
02:ec:39:92:81:4d:dc:05:30:15:df:c8:8c:f6:50:89:9a:f1:
f0:b2:ed:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 1 10:33:29 2024 by rpki-client on console-ams.rpki-client.org