Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/qlR_5owmWFdg25tNuS_0anf5cDc.roa
File: qlR_5owmWFdg25tNuS_0anf5cDc.roa (raw, json)
Hash identifier: dy56x/fTEdUDeNi5jrNOxxWyWQTxJfSy93nrbkCjZD4=
Subject key identifier: AA:54:7F:E6:8C:26:58:57:60:DB:9B:4D:B9:2F:F4:6A:77:F9:70:37
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 0191466ED0445B45DCCBA6094266A9CADE5D
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/qlR_5owmWFdg25tNuS_0anf5cDc.roa
Signing time: Mon 12 Aug 2024 11:52:33 +0000
ROA not before: Mon 12 Aug 2024 11:52:33 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211014
IP address blocks: 45.144.173.0/24 maxlen: 24
89.45.44.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 17 Sep 2024 11:01:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:46:6e:d0:44:5b:45:dc:cb:a6:09:42:66:a9:ca:de:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Aug 12 11:52:33 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=aa547fe68c26585760db9b4db92ff46a77f97037
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:de:f6:0a:b1:ab:e9:bc:93:9c:a4:60:d8:ac:
00:43:97:c0:bd:ea:89:d2:c2:c6:3f:a7:a6:b0:3b:
0b:f0:ce:5d:3a:e1:0c:25:64:77:5c:db:3e:cb:e7:
79:56:8c:21:05:40:70:99:6e:48:17:bd:06:f9:c0:
d0:04:60:93:c5:3a:a1:5a:86:e4:6b:d6:a1:78:d7:
7f:eb:8e:f9:23:89:0b:c1:20:09:5e:d6:52:4f:07:
c1:9f:e0:1c:db:0e:20:63:2d:e6:84:b8:76:41:91:
83:f6:d6:16:0e:02:79:83:a5:91:89:ef:7e:fd:9e:
50:8a:a6:a6:30:06:97:5d:05:08:0f:d5:e9:c6:a9:
46:eb:21:44:30:3d:65:1d:f3:90:1a:a7:5d:36:5c:
bd:c9:1c:6d:33:6f:ab:49:a0:5d:b2:a0:af:b3:f5:
ae:ed:19:22:61:b7:8c:26:3f:4c:4c:44:94:93:f3:
1c:bd:72:19:84:62:2a:a3:58:05:fc:57:d6:53:b8:
63:60:6f:59:17:52:1c:bc:65:f9:35:bc:cc:26:02:
0f:ce:2a:0f:30:dc:4f:2e:e8:3d:c8:58:cd:a8:b4:
5a:5b:af:46:46:e9:a4:a2:a9:ca:f8:06:86:7c:2f:
a4:dc:ea:bc:a6:c8:38:f6:e4:c1:ab:25:bf:b1:7f:
aa:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:54:7F:E6:8C:26:58:57:60:DB:9B:4D:B9:2F:F4:6A:77:F9:70:37
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/qlR_5owmWFdg25tNuS_0anf5cDc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.144.173.0/24
89.45.44.0/24
Signature Algorithm: sha256WithRSAEncryption
42:70:4b:ae:dc:32:db:5a:70:6b:aa:43:22:79:ee:87:1c:82:
b5:cf:9d:dc:e5:d2:22:9a:5f:da:ef:0a:c7:f8:ee:1a:8d:51:
07:27:d7:62:3f:c6:5a:4b:db:75:c2:9c:18:e5:4c:ff:17:50:
ed:e8:a4:fb:79:2b:9f:ad:f0:f2:71:2a:d0:d6:80:b4:f1:b2:
ef:16:78:16:7b:e2:49:ae:76:17:50:fe:bd:46:cd:25:fe:9b:
c9:f8:63:61:8e:b9:de:a6:0c:d2:45:d0:7b:09:36:cc:36:c7:
b8:ee:6f:55:42:8f:7a:95:7f:89:3b:61:86:eb:e1:26:8d:1b:
a1:68:f6:d4:76:bc:9a:6c:7a:9e:c5:62:95:84:4d:5b:a5:88:
81:9c:3a:62:23:2e:ab:76:39:77:05:41:df:83:f7:a8:15:fb:
e2:f6:95:1f:03:33:01:b1:bb:e5:22:d3:b0:a8:89:07:8a:43:
60:56:a8:0d:b3:a6:53:f9:78:de:da:82:c6:cd:16:02:72:6d:
d0:f1:57:10:a3:ea:71:87:53:57:3e:92:c6:78:ff:57:24:38:
10:12:3c:72:ab:fc:81:41:be:3b:37:08:81:f1:71:58:8c:3d:
da:28:5a:9e:69:8e:fe:3f:3a:8b:44:d6:2a:64:cc:5c:1a:3f:
20:18:06:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 17 15:54:04 2024 by rpki-client on console-fra.rpki-client.org