Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/f92a0d-f74a-4768-96c5-4dc2e9361ff1/1/QxbqTd5GYNLCycrRgam1spkIcIE.roa
File: QxbqTd5GYNLCycrRgam1spkIcIE.roa (raw, json)
Hash identifier: 91N7JtXp2UySUaT82SmHTb4beGxzwsy2txO+ziG5jFY=
Subject key identifier: 43:16:EA:4D:DE:46:60:D2:C2:C9:CA:D1:81:A9:B5:B2:99:08:70:81
Certificate issuer: /CN=46ffa79440c517eddbaced3aa60e5fbcbdc6502e
Certificate serial: 01856D53CF2396CCCB765CBFF2DFE37FACE7
Authority key identifier: 46:FF:A7:94:40:C5:17:ED:DB:AC:ED:3A:A6:0E:5F:BC:BD:C6:50:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Rv-nlEDFF-3brO06pg5fvL3GUC4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/f92a0d-f74a-4768-96c5-4dc2e9361ff1/1/QxbqTd5GYNLCycrRgam1spkIcIE.roa
Signing time: Sun 01 Jan 2023 12:34:47 +0000
ROA not before: Sun 01 Jan 2023 12:34:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50304
IP address blocks: 185.73.135.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:53:cf:23:96:cc:cb:76:5c:bf:f2:df:e3:7f:ac:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=46ffa79440c517eddbaced3aa60e5fbcbdc6502e
Validity
Not Before: Jan 1 12:34:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4316ea4dde4660d2c2c9cad181a9b5b299087081
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:9b:10:a0:c9:45:fe:2e:ec:0f:d7:ab:77:6a:
ff:7e:a1:7e:4f:50:85:99:45:75:e5:6a:4b:e6:06:
ce:19:39:a8:46:ab:e7:91:f6:61:81:52:d9:b4:7c:
bc:e5:18:2c:8b:4e:fa:4b:ee:eb:a0:2d:f4:74:8f:
f4:b6:26:5c:24:e7:09:4f:56:56:5f:dc:6e:81:f0:
22:07:a3:25:e2:c7:ec:61:c4:af:d8:52:79:44:c8:
65:5f:79:3a:72:6f:5e:56:20:86:14:21:f3:51:dd:
a4:8b:d7:42:60:15:56:3a:4d:64:73:7e:02:ed:75:
14:8a:a0:e4:7f:ef:35:48:40:67:dd:6f:6f:fb:4b:
44:cf:e1:d7:e3:10:a8:c2:30:14:5b:a5:9a:90:ee:
85:c0:74:03:9b:e9:cb:c1:ed:ba:5a:78:c5:7b:86:
55:29:0c:b5:d0:4d:81:d6:3a:82:35:70:45:14:e7:
0a:da:62:91:e1:76:41:84:a0:5d:51:82:a8:a7:12:
75:f8:c2:56:d0:ab:6d:d6:1b:9a:8c:15:44:e6:90:
c3:b9:48:cd:ed:ac:45:6b:58:76:ff:af:e7:62:ab:
8e:da:21:56:e0:ba:df:5b:8d:71:3d:00:cb:21:af:
b2:7c:0a:64:be:c0:6a:7a:5f:7a:f8:65:ec:13:7e:
c8:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:16:EA:4D:DE:46:60:D2:C2:C9:CA:D1:81:A9:B5:B2:99:08:70:81
X509v3 Authority Key Identifier:
keyid:46:FF:A7:94:40:C5:17:ED:DB:AC:ED:3A:A6:0E:5F:BC:BD:C6:50:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Rv-nlEDFF-3brO06pg5fvL3GUC4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/f92a0d-f74a-4768-96c5-4dc2e9361ff1/1/QxbqTd5GYNLCycrRgam1spkIcIE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/f92a0d-f74a-4768-96c5-4dc2e9361ff1/1/Rv-nlEDFF-3brO06pg5fvL3GUC4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.73.135.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:f1:81:50:9b:42:9c:0b:08:c3:9f:70:35:61:b3:3f:4a:7d:
dd:ff:6b:97:d4:8e:34:a0:c0:02:c0:9f:c0:ae:2e:59:50:cf:
ec:10:0b:09:33:01:1d:2c:78:13:94:f9:f0:79:21:0e:30:df:
f6:15:62:82:e6:cf:66:ca:25:0a:06:c8:39:ce:57:00:af:8d:
bf:62:7e:5d:e4:3f:62:d9:bc:43:09:b0:9d:9c:50:19:8c:17:
e9:c5:16:ad:d9:96:bf:c9:da:e7:92:c8:8c:ec:97:ef:09:eb:
d5:5b:9f:47:dd:b5:65:79:96:e1:47:6b:a1:30:b8:26:f2:76:
2d:ef:08:2d:10:aa:23:d2:03:57:aa:22:c0:f1:a5:31:e7:6b:
e3:6a:c2:eb:f5:9e:fa:73:1d:5a:f1:6a:86:88:13:14:39:ab:
60:bb:7e:2f:ba:ad:74:af:a9:71:14:75:46:58:f2:36:ef:90:
79:21:20:f2:9d:b5:b6:8c:bd:39:fe:d2:d1:ec:3e:79:48:7d:
44:95:71:cd:28:e6:26:e4:76:ef:d3:57:52:5d:66:46:5a:ed:
1c:c0:d3:66:c1:70:b6:02:dc:e0:d7:31:07:0f:30:8f:d4:c8:
29:ca:68:f1:90:f0:53:d6:58:ea:03:d0:8d:d5:7f:88:a8:e3:
0d:54:25:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:41 2024 by rpki-client on console-ams.rpki-client.org