Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/qygfkGp6VDVJcoaryljsV-b7EDA.roa
File: qygfkGp6VDVJcoaryljsV-b7EDA.roa (raw, json)
Hash identifier: iwVrLVAzoq+ekUEifHEvgCBjf8QkRDqeC3QDwu6JOcc=
Subject key identifier: AB:28:1F:90:6A:7A:54:35:49:72:86:AB:CA:58:EC:57:E6:FB:10:30
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 0188445E849FFB8211F7FC5C2E14EAAA006C
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/qygfkGp6VDVJcoaryljsV-b7EDA.roa
Signing time: Mon 22 May 2023 16:50:24 +0000
ROA not before: Mon 22 May 2023 16:50:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49217
IP address blocks: 185.112.249.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 23 Jun 2023 09:15:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:44:5e:84:9f:fb:82:11:f7:fc:5c:2e:14:ea:aa:00:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: May 22 16:50:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ab281f906a7a5435497286abca58ec57e6fb1030
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:41:4d:07:0b:9e:29:1c:52:02:38:60:59:20:
39:00:2f:7c:d4:cb:fc:95:48:17:b2:51:9d:cf:38:
9b:bc:2e:6e:c3:a5:fc:d3:31:20:66:29:9c:7c:3b:
35:02:6f:8e:27:6f:71:7f:e2:91:77:77:07:ba:c2:
20:21:3d:e7:e4:bf:0a:97:93:bb:b0:c1:9f:d2:f8:
2d:85:85:70:c7:cb:5e:39:83:09:f2:e0:40:ed:bf:
14:ca:7f:c7:4e:36:67:54:ab:6d:52:43:68:48:b7:
30:fd:d1:ba:d1:9d:db:fc:31:5e:2d:6a:4b:52:1d:
fb:95:ae:18:fa:ad:e3:5b:0b:7b:66:ad:d8:d5:be:
20:96:fc:df:c9:14:21:c8:5e:43:cc:6c:23:5b:ca:
7c:82:d6:7e:60:31:f8:d5:3f:9d:02:2a:46:8d:b9:
50:c4:ec:d7:54:8d:46:4a:8b:54:11:d9:be:ac:4b:
22:81:ac:c8:a2:27:2b:74:8e:68:86:49:0b:81:53:
6a:bc:b2:20:95:1a:a2:49:53:0f:68:a7:b5:21:79:
04:91:0c:29:52:f8:bc:02:a2:ae:63:4a:4e:c0:d1:
12:e1:a6:17:18:17:f1:48:81:ac:0b:2d:f3:fc:57:
ae:19:52:e3:ab:41:f6:2c:be:db:34:30:fd:40:22:
4d:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:28:1F:90:6A:7A:54:35:49:72:86:AB:CA:58:EC:57:E6:FB:10:30
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/qygfkGp6VDVJcoaryljsV-b7EDA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.112.249.0/24
Signature Algorithm: sha256WithRSAEncryption
07:fb:f5:7a:f2:0b:ed:c7:46:29:97:0f:61:25:90:8a:12:b6:
1e:1c:7d:84:23:de:e5:e7:f5:21:88:2f:cb:17:2c:f2:91:18:
1f:3a:9a:24:a2:57:6b:f8:66:2a:dc:84:ce:e2:e3:56:5b:96:
ab:c7:7b:ba:84:c9:27:d8:65:14:36:2a:76:66:42:6b:84:06:
b9:8e:9c:d9:40:30:7e:b6:68:87:a6:99:de:04:2a:de:a9:e1:
44:ad:88:9f:53:f2:67:06:46:b6:8d:e8:5e:9d:9f:3b:3f:4c:
d4:79:ed:18:50:39:e9:42:2b:66:59:c4:3b:6c:6f:a8:53:74:
43:cd:fa:d2:13:00:ca:e2:f7:f7:4b:d9:da:04:cd:a1:1a:28:
7e:66:6a:1c:13:94:a7:c0:58:3d:3f:59:da:34:38:69:5a:56:
6a:a9:98:4a:e2:c1:fd:9a:b7:3c:f3:46:f2:9f:0e:ba:58:c3:
30:d9:1b:bc:26:d9:62:88:01:5d:2b:18:89:70:9d:4d:0d:f6:
6d:54:23:a8:66:2f:27:df:77:76:45:5c:a4:fc:1a:a8:ca:04:
d1:e0:4d:75:89:ed:1c:84:b6:a1:3a:09:5c:14:32:c8:5d:3e:
9f:8a:e9:c7:26:6c:bb:51:0f:f6:e6:c2:55:22:a7:c3:ba:cf:
ac:a7:34:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:14 2024 by rpki-client on console-ams.rpki-client.org