Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/e32a9a-83e0-4fb9-ac71-4d4b16144d68/1/Qrxd_duE-uCFZlncnQMczTtS2zU.roa
File: Qrxd_duE-uCFZlncnQMczTtS2zU.roa (raw, json)
Hash identifier: VRlzQJHlU169cErCELMRj6i9UnBf3fRHxcd9JIN1nnQ=
Subject key identifier: 42:BC:5D:FD:DB:84:FA:E0:85:66:59:DC:9D:03:1C:CD:3B:52:DB:35
Certificate issuer: /CN=dd97c7ca05bcc3d6a2ad1ba235bed8feab694550
Certificate serial: 0186850A5F06619525CC6774D6EDC3073D6E
Authority key identifier: DD:97:C7:CA:05:BC:C3:D6:A2:AD:1B:A2:35:BE:D8:FE:AB:69:45:50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3ZfHygW8w9airRuiNb7Y_qtpRVA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/e32a9a-83e0-4fb9-ac71-4d4b16144d68/1/Qrxd_duE-uCFZlncnQMczTtS2zU.roa
Signing time: Fri 24 Feb 2023 20:08:14 +0000
ROA not before: Fri 24 Feb 2023 20:08:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 52145
IP address blocks: 185.21.120.0/24 maxlen: 24
185.21.121.0/24 maxlen: 24
185.21.122.0/24 maxlen: 24
185.21.123.0/24 maxlen: 24
185.21.120.0/22 maxlen: 22
46.253.82.0/24 maxlen: 24
46.253.85.0/24 maxlen: 24
46.253.84.0/24 maxlen: 24
46.253.84.0/23 maxlen: 23
46.253.82.0/23 maxlen: 23
46.253.80.0/20 maxlen: 20
46.253.80.0/23 maxlen: 23
46.253.80.0/21 maxlen: 21
46.253.80.0/24 maxlen: 24
46.253.81.0/24 maxlen: 24
46.253.83.0/24 maxlen: 24
46.253.86.0/24 maxlen: 24
46.253.87.0/24 maxlen: 24
46.253.88.0/24 maxlen: 24
46.253.89.0/24 maxlen: 24
46.253.90.0/24 maxlen: 24
46.253.91.0/24 maxlen: 24
46.253.88.0/21 maxlen: 21
46.253.86.0/23 maxlen: 23
46.253.92.0/24 maxlen: 24
46.253.93.0/24 maxlen: 24
46.253.94.0/24 maxlen: 24
46.253.95.0/24 maxlen: 24
2a04:19c0::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:85:0a:5f:06:61:95:25:cc:67:74:d6:ed:c3:07:3d:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd97c7ca05bcc3d6a2ad1ba235bed8feab694550
Validity
Not Before: Feb 24 20:08:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=42bc5dfddb84fae0856659dc9d031ccd3b52db35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:89:28:77:5e:8c:2b:79:d8:1d:53:46:14:f4:
eb:b4:61:6e:d3:60:60:96:7b:79:bd:10:ad:94:7b:
8e:a5:6c:3c:c9:72:d2:71:2b:96:9c:a1:85:03:c0:
1d:d2:3d:9e:f4:0b:56:b3:d6:ec:72:c7:9f:1f:10:
b5:a7:0d:97:2c:48:d1:7f:30:f5:1e:9b:49:2a:1c:
a9:2d:ca:7b:6e:3f:8b:d9:cf:fc:3d:b5:df:a8:de:
0d:c0:9a:b4:75:92:89:81:fa:91:e8:41:84:62:bc:
09:fd:43:1e:c0:f1:e0:f4:8b:58:9d:4d:ba:94:ac:
50:a0:d8:f4:d3:5b:eb:ed:07:e3:29:b2:15:fd:a5:
59:31:88:d0:d2:20:d6:57:a1:26:65:80:ab:df:9f:
86:35:33:a6:fe:c0:aa:b6:d0:78:f9:bb:af:de:00:
42:9c:84:bf:3b:8a:df:62:e8:51:50:ef:e5:29:37:
16:2c:c4:fa:a9:d1:f4:0f:46:66:07:38:26:ca:56:
61:56:e9:9d:7f:19:59:3c:93:b8:28:18:05:2b:29:
0b:37:2a:26:a4:83:b9:0f:27:12:33:cc:bd:c2:45:
06:4e:91:bb:b6:2b:66:a8:0a:35:49:a7:8f:97:38:
02:b2:d2:fc:01:6d:04:ce:c3:c8:ec:c4:0c:39:37:
92:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:BC:5D:FD:DB:84:FA:E0:85:66:59:DC:9D:03:1C:CD:3B:52:DB:35
X509v3 Authority Key Identifier:
keyid:DD:97:C7:CA:05:BC:C3:D6:A2:AD:1B:A2:35:BE:D8:FE:AB:69:45:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3ZfHygW8w9airRuiNb7Y_qtpRVA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/e32a9a-83e0-4fb9-ac71-4d4b16144d68/1/Qrxd_duE-uCFZlncnQMczTtS2zU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/e32a9a-83e0-4fb9-ac71-4d4b16144d68/1/3ZfHygW8w9airRuiNb7Y_qtpRVA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.253.80.0/20
185.21.120.0/22
IPv6:
2a04:19c0::/29
Signature Algorithm: sha256WithRSAEncryption
e3:7e:5d:30:df:51:ce:35:cc:4f:94:3e:d2:2c:8d:20:12:4b:
e2:48:dd:e4:a7:76:35:07:13:1a:f8:ac:05:d1:ed:06:31:d9:
81:93:13:88:a2:b8:a9:77:c1:e9:89:21:2b:3b:b5:17:56:4a:
66:d7:ca:07:9b:85:96:47:2d:0f:c8:8d:b2:5f:58:c8:ee:bb:
f0:21:09:a0:c4:ed:15:ad:65:4c:a2:d8:5e:b3:dc:01:30:0d:
52:41:94:c1:e4:82:b3:0b:f1:b3:7f:5e:16:39:9a:6f:5e:c6:
09:70:4b:0d:18:d2:e4:83:2a:6b:c8:a5:11:20:3c:b7:80:3f:
8e:67:34:a7:a8:23:8e:5c:98:95:17:96:4f:dc:c7:7f:9b:84:
f8:cc:da:1f:5e:e1:00:9d:55:2a:fd:55:7e:d9:8c:2e:06:f2:
79:8d:26:50:96:bc:89:d8:17:a8:ed:85:9a:fa:ce:e0:72:d6:
eb:b8:fb:16:29:80:7e:fb:03:f1:da:21:8e:fa:2a:31:83:06:
76:8f:cf:d9:45:23:0b:38:c2:fd:bc:d1:04:d8:ec:60:d0:8e:
10:03:f0:e5:94:40:c1:70:89:db:5d:20:a1:97:5f:ea:9b:93:
1e:19:53:f7:20:8f:87:cf:f9:a6:d6:a0:22:5e:da:75:fc:ad:
a5:d9:29:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:40 2023 by rpki-client on console-ams.rpki-client.org