Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/QFPtN2UP_DpnVDEgEXihJ_iJ9sA.roa
File: QFPtN2UP_DpnVDEgEXihJ_iJ9sA.roa (raw, json)
Hash identifier: FNTlyRwDYKFrYkDKjehKY5MmoEySg/xu5dPsnKDJp4M=
Subject key identifier: 40:53:ED:37:65:0F:FC:3A:67:54:31:20:11:78:A1:27:F8:89:F6:C0
Certificate issuer: /CN=73c69d04583500c5ef81136831237593e0bb86ce
Certificate serial: 01856C416923CDD23A1D30A495E512A82E52
Authority key identifier: 73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/QFPtN2UP_DpnVDEgEXihJ_iJ9sA.roa
Signing time: Sun 01 Jan 2023 07:35:04 +0000
ROA not before: Sun 01 Jan 2023 07:35:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201814
IP address blocks: 185.244.30.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:41:69:23:cd:d2:3a:1d:30:a4:95:e5:12:a8:2e:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73c69d04583500c5ef81136831237593e0bb86ce
Validity
Not Before: Jan 1 07:35:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4053ed37650ffc3a675431201178a127f889f6c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:8a:e2:29:38:9d:42:45:76:b1:e4:22:30:3f:
f3:63:cd:da:57:03:47:e6:2f:17:83:2b:88:50:10:
f6:7d:a2:7b:f9:25:16:a0:da:22:b6:e4:17:24:c7:
b0:c0:b3:0a:51:a9:f4:2b:2c:ff:38:8d:5a:a1:87:
ef:c9:0b:5e:67:9f:a4:63:5b:b6:42:a0:f0:98:4a:
0c:df:18:e3:f9:18:42:b3:65:8a:f8:19:31:66:53:
93:65:e8:ff:25:b5:34:09:6f:51:5d:6d:83:a9:f0:
09:ac:ab:04:12:b0:56:f1:1b:b1:a3:ec:f3:3f:90:
08:34:52:d2:4f:5f:e7:c5:0c:4c:7b:e6:ff:3f:ac:
35:08:c7:72:f3:9f:2a:bd:5b:0b:4f:c2:80:b2:ef:
b7:e9:ca:36:f1:8e:54:de:70:8c:c1:4a:1e:aa:28:
ca:ae:75:a9:c1:2a:02:05:ce:5d:08:a5:61:69:45:
ea:ff:08:e3:17:da:77:05:e6:74:d1:49:ac:be:c7:
2b:ef:e5:ce:d4:04:ac:5e:54:1f:d0:7d:04:fd:38:
80:fe:e0:fa:28:cf:29:0a:fb:30:95:0c:56:2b:1c:
cb:a5:cc:ad:ae:7f:91:d2:84:b5:bd:64:7c:53:74:
ab:b9:6c:5c:34:ce:a5:27:fb:49:57:8b:11:95:54:
7d:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:53:ED:37:65:0F:FC:3A:67:54:31:20:11:78:A1:27:F8:89:F6:C0
X509v3 Authority Key Identifier:
keyid:73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/QFPtN2UP_DpnVDEgEXihJ_iJ9sA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/c8adBFg1AMXvgRNoMSN1k-C7hs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.244.30.0/24
Signature Algorithm: sha256WithRSAEncryption
69:eb:64:42:31:e9:01:7a:fe:26:de:5d:3b:2e:dd:48:81:d1:
9a:13:31:b2:63:4d:69:85:b8:f3:81:d8:6c:42:c9:68:bd:85:
59:a8:9f:39:53:b3:94:55:bf:65:65:44:b7:a1:58:25:78:3b:
37:78:73:52:23:c8:94:c7:e2:94:93:a7:62:55:26:47:12:e7:
a6:26:c8:73:8b:d0:a1:62:18:31:95:58:03:ff:55:07:e9:5e:
79:39:90:d8:04:92:08:64:1e:d7:49:26:7a:71:47:98:4f:c8:
b8:ce:1b:ee:06:ed:8b:e8:51:0e:32:6a:27:6c:99:7d:b8:f5:
61:94:a4:de:99:a6:f1:62:09:7a:92:40:81:bb:f4:b8:6d:78:
41:cd:3c:90:ae:4b:20:9f:9b:7f:dc:68:70:a5:86:8c:f4:3b:
07:57:85:2a:aa:31:06:ae:94:85:e1:c4:d0:b4:1e:17:d1:f8:
6e:c0:a0:c6:0a:c2:36:a7:d7:0a:c3:ff:2b:85:51:41:2b:8d:
c1:40:fc:79:fa:fc:be:ed:52:50:49:a5:13:47:d5:b4:e3:aa:
70:36:98:5c:7a:27:6e:4b:35:62:fd:1b:28:01:8d:c3:33:f1:
82:63:9b:87:46:fd:48:06:a2:76:54:21:0b:50:d6:17:4c:57:
4f:53:82:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Dec 19 12:51:34 2023 by rpki-client on console-fra.rpki-client.org