Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/qVmRJhBkmv57RamAWiNvKWidf_8.roa
File: qVmRJhBkmv57RamAWiNvKWidf_8.roa (raw, json)
Hash identifier: sFC6u3dojLSm0mEaGJC0SVJoCbVctTrKfVCEuYDexXo=
Subject key identifier: A9:59:91:26:10:64:9A:FE:7B:45:A9:80:5A:23:6F:29:68:9D:7F:FF
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018C68584B8583E2E1CAB025A3D9C5089941
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/qVmRJhBkmv57RamAWiNvKWidf_8.roa
Signing time: Thu 14 Dec 2023 12:41:06 +0000
ROA not before: Thu 14 Dec 2023 12:41:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211138
IP address blocks: 185.112.249.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:68:58:4b:85:83:e2:e1:ca:b0:25:a3:d9:c5:08:99:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Dec 14 12:41:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a959912610649afe7b45a9805a236f29689d7fff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:56:0a:71:48:00:23:22:7d:0f:77:60:f7:50:
88:4c:22:4d:ad:f7:53:c0:14:ff:d4:ee:09:f1:38:
86:fd:99:d6:aa:3c:03:29:41:bd:40:e3:7c:4c:1c:
9c:4d:d3:10:f3:0f:38:31:66:39:7d:b8:84:46:79:
4e:d6:84:d7:4c:b0:72:5c:4a:6a:f6:71:e9:e3:d9:
70:01:a4:b9:74:49:03:5f:de:11:d7:6c:da:b3:0a:
11:63:22:7a:2a:45:0c:8b:d9:ea:32:ac:f9:29:db:
ce:6e:9f:cc:9f:fc:70:55:63:a9:8a:70:db:04:04:
39:44:5a:73:b4:7e:ac:f3:92:dc:58:9d:ae:b5:2a:
b9:ab:28:f1:cc:bf:11:86:96:c9:9b:12:6e:41:7c:
c1:5d:93:18:fd:22:e9:14:e1:d3:c4:69:1e:de:e0:
a3:af:d1:c8:c2:04:a9:49:e4:60:2c:a2:34:0c:7d:
66:66:81:9f:5b:51:2d:7a:61:5e:8c:00:d2:bf:ef:
5a:7c:9e:2a:ce:2d:da:41:ed:22:25:9e:f5:c8:da:
80:81:1a:3d:6d:c4:93:51:15:f6:40:b0:ca:9f:55:
e0:a1:8a:26:b3:f8:5b:1d:8d:73:b1:36:b6:1a:4d:
d7:80:20:a2:7e:d6:e2:b7:32:35:7e:12:f7:9f:35:
66:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:59:91:26:10:64:9A:FE:7B:45:A9:80:5A:23:6F:29:68:9D:7F:FF
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/qVmRJhBkmv57RamAWiNvKWidf_8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.112.249.0/24
Signature Algorithm: sha256WithRSAEncryption
01:29:43:f2:90:1e:f8:f1:9c:22:16:42:c9:93:b4:bb:22:b3:
98:2e:9e:18:3a:8c:44:c7:fb:aa:fd:f7:06:1d:54:8a:45:6a:
4f:25:04:81:39:0d:8e:23:7d:0d:c4:35:db:16:5f:3a:f6:9c:
0a:d6:d9:34:e0:bb:f3:c5:d1:ea:c0:04:22:22:a5:ab:62:ea:
f2:25:41:4d:f3:6a:ee:8e:67:65:72:8e:cf:21:49:08:e2:a4:
d3:ad:cb:e2:68:67:1c:3d:c0:6c:91:ab:91:30:31:54:4f:27:
af:ea:f9:c1:be:e3:08:21:5c:70:55:27:13:e5:b0:39:cb:b1:
f6:5e:88:05:2b:2c:fb:fc:9f:42:02:4e:d7:73:b2:82:18:e2:
8d:ac:2b:66:8a:75:6d:2d:4b:0c:ad:6c:7e:04:88:21:f9:cc:
9c:b4:b4:54:0b:ec:f8:c7:bb:2d:2d:75:8f:1e:bf:16:b3:5a:
01:d1:a9:f9:49:ee:45:35:dd:f8:49:58:44:28:69:63:a2:f4:
d3:70:0f:83:41:62:40:e2:d3:37:1b:45:30:9e:8d:53:57:67:
e9:f7:14:88:e9:58:be:5a:61:bc:b1:5a:b3:52:8d:2f:aa:6a:
7c:11:57:3d:95:d1:7b:b9:e2:3d:9b:2b:ba:46:38:36:c3:fe:
86:d5:b5:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:14 2024 by rpki-client on console-ams.rpki-client.org