Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/20c187-00fd-459e-aae4-467f4f7f5ded/1/Qmd036v6iPAoLAZ1ENBPWQDyB38.roa
File: Qmd036v6iPAoLAZ1ENBPWQDyB38.roa (raw, json)
Hash identifier: 1xJVMhAg51dRt6VbmQjvfdUYdcnN14LUaRAY3gtALEI=
Subject key identifier: 42:67:74:DF:AB:FA:88:F0:28:2C:06:75:10:D0:4F:59:00:F2:07:7F
Certificate issuer: /CN=dfd524a05d477b82fbca93e7a504aa31a3ad6863
Certificate serial: 01856F5DDC207786ACCC44259DE6AD3F83D6
Authority key identifier: DF:D5:24:A0:5D:47:7B:82:FB:CA:93:E7:A5:04:AA:31:A3:AD:68:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/39UkoF1He4L7ypPnpQSqMaOtaGM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/20c187-00fd-459e-aae4-467f4f7f5ded/1/Qmd036v6iPAoLAZ1ENBPWQDyB38.roa
Signing time: Sun 01 Jan 2023 22:05:00 +0000
ROA not before: Sun 01 Jan 2023 22:05:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48678
IP address blocks: 185.103.199.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:5d:dc:20:77:86:ac:cc:44:25:9d:e6:ad:3f:83:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dfd524a05d477b82fbca93e7a504aa31a3ad6863
Validity
Not Before: Jan 1 22:05:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=426774dfabfa88f0282c067510d04f5900f2077f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:c5:04:16:95:e2:8c:62:43:e5:3e:2a:38:2a:
6a:da:4e:87:53:46:7a:67:1c:e2:6a:01:3a:cd:5e:
eb:13:59:5b:ed:97:b1:6a:95:a1:94:31:03:01:f7:
fa:c3:3f:70:a1:12:97:3e:7f:26:f4:67:a7:88:8f:
37:42:14:db:7f:48:83:82:41:f4:1c:e6:d9:7e:07:
ec:5a:ee:56:b8:64:98:ab:3b:7f:d5:4f:9f:91:14:
1c:f0:51:2d:f4:fd:8d:23:75:d1:68:b9:34:fa:65:
c8:cb:36:8c:67:f8:15:18:88:b1:e5:74:2b:cf:a3:
5c:ae:78:68:8b:d0:26:bf:0c:7b:9d:56:0f:d1:cb:
81:6b:3c:f9:80:0c:68:f9:d3:33:75:58:3c:fa:30:
88:8b:e6:05:f7:fd:f1:a2:17:88:31:d4:08:53:df:
30:61:10:1a:19:75:2c:5e:ce:79:6b:92:13:d3:7f:
1e:ef:db:01:61:03:33:6d:14:0c:73:6d:ff:e8:ae:
76:27:ea:fb:3d:45:97:e4:44:bb:ec:fe:a7:35:4a:
bb:b4:1a:d0:68:88:bf:99:0a:40:86:5d:5f:1f:72:
f1:54:4c:f3:cb:cc:16:89:29:02:d5:7a:05:08:66:
e8:56:12:3d:b5:27:0c:40:78:be:05:86:0e:81:e1:
8e:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:67:74:DF:AB:FA:88:F0:28:2C:06:75:10:D0:4F:59:00:F2:07:7F
X509v3 Authority Key Identifier:
keyid:DF:D5:24:A0:5D:47:7B:82:FB:CA:93:E7:A5:04:AA:31:A3:AD:68:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/39UkoF1He4L7ypPnpQSqMaOtaGM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/20c187-00fd-459e-aae4-467f4f7f5ded/1/Qmd036v6iPAoLAZ1ENBPWQDyB38.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/20c187-00fd-459e-aae4-467f4f7f5ded/1/39UkoF1He4L7ypPnpQSqMaOtaGM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.103.199.0/24
Signature Algorithm: sha256WithRSAEncryption
b8:3d:79:86:e0:24:04:0a:39:55:8d:05:54:64:83:d4:7e:56:
7c:37:cf:ea:f5:70:6b:d3:c2:bc:db:a8:3d:4f:ed:3d:c8:d1:
c2:2e:c3:83:70:e0:c6:1a:4f:6e:b0:4f:05:26:2a:52:98:95:
48:c6:d0:06:82:bf:c2:d8:57:c4:c9:1c:a6:c8:f3:0f:44:62:
b2:15:37:62:7e:1d:37:66:ab:07:9f:94:b2:05:45:af:d0:c8:
d9:fb:aa:d9:da:fc:29:0b:d9:a4:77:b1:63:0e:6f:dc:26:a4:
af:f9:11:6b:ca:85:a8:b8:3d:e2:fe:5a:42:01:4a:9d:86:9b:
0e:72:3b:a5:a3:dc:9b:00:d0:76:59:7a:50:19:a6:b3:ac:2e:
ec:6d:99:59:89:b7:70:e3:e5:76:22:91:e0:07:a0:27:bf:d0:
8d:25:f1:f7:7d:15:9b:8e:c6:29:f2:a2:2c:1e:bc:66:28:4b:
52:5f:a7:5b:bd:4c:ec:20:6c:76:60:65:8e:a5:bb:01:22:b6:
ae:29:97:2a:fa:a6:44:e0:74:94:94:62:2d:f8:07:90:7a:8d:
7d:55:65:ab:18:0c:a1:9d:72:65:39:cf:a2:aa:5a:64:4b:13:
6e:5f:70:94:76:e5:fb:03:40:4e:7c:ac:54:cb:3f:9f:e3:24:
7d:73:08:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:19 2023 by rpki-client on console-ams.rpki-client.org