Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/fd8116-5e98-45ef-af74-073a5db0efb5/1/QJOAvHbUa7rZCncmOAeyTsCP3lA.roa
File: QJOAvHbUa7rZCncmOAeyTsCP3lA.roa (raw, json)
Hash identifier: 24aBqX7a7ez+nXImCYDvb1vSKPcxtGRyZuiifc3lG68=
Subject key identifier: 40:93:80:BC:76:D4:6B:BA:D9:0A:77:26:38:07:B2:4E:C0:8F:DE:50
Certificate issuer: /CN=63e24977993c15bcc134b174937f41b2129f56d1
Certificate serial: 01856CEF31018588FC4D4BDBC6CCACECC6D6
Authority key identifier: 63:E2:49:77:99:3C:15:BC:C1:34:B1:74:93:7F:41:B2:12:9F:56:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-JJd5k8FbzBNLF0k39BshKfVtE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/fd8116-5e98-45ef-af74-073a5db0efb5/1/QJOAvHbUa7rZCncmOAeyTsCP3lA.roa
Signing time: Sun 01 Jan 2023 10:44:53 +0000
ROA not before: Sun 01 Jan 2023 10:44:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210771
IP address blocks: 185.208.144.0/24 maxlen: 24
185.208.147.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:29:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:ef:31:01:85:88:fc:4d:4b:db:c6:cc:ac:ec:c6:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e24977993c15bcc134b174937f41b2129f56d1
Validity
Not Before: Jan 1 10:44:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=409380bc76d46bbad90a77263807b24ec08fde50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:40:f4:c7:2e:1c:79:99:e2:f1:ca:59:36:5e:
30:f6:1b:34:49:14:32:58:ee:43:95:f3:d7:c5:15:
d3:a3:a0:fe:6b:b2:60:de:c8:01:37:7f:11:99:ad:
96:23:bc:ad:7b:36:83:28:0d:a9:87:ce:99:ec:f9:
1f:8c:aa:aa:23:bd:71:c7:e4:ed:9b:21:1d:ea:10:
cc:70:62:e3:3d:49:72:a5:2d:2c:81:90:4c:b1:e9:
0d:fc:d4:6a:63:fe:c7:34:77:03:a6:fc:f7:74:1d:
e3:7f:04:04:86:7f:47:0b:98:2c:6f:a3:51:d6:79:
0f:f9:9f:7e:4e:fd:7d:f8:da:18:40:aa:37:d6:60:
1b:fd:7a:d4:4e:78:ae:20:63:be:4d:07:e2:c5:65:
7a:0c:6a:ac:66:da:6c:b2:2c:15:ea:7d:d0:a1:91:
25:28:65:57:f3:30:86:f2:54:f6:71:bb:59:01:cf:
43:c4:c6:0f:fe:1a:2a:34:15:1f:c3:66:d3:90:d0:
a8:d9:a6:ca:1f:ac:9e:2a:fa:b3:b2:44:e4:27:d3:
83:59:b3:be:e7:1c:2e:0c:2e:5f:90:11:d8:62:50:
6e:c5:eb:05:f4:5f:a5:03:a4:b7:7d:e3:f2:03:20:
5f:c9:1d:70:19:35:4a:3f:4a:bb:4f:58:7f:55:9e:
e2:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:93:80:BC:76:D4:6B:BA:D9:0A:77:26:38:07:B2:4E:C0:8F:DE:50
X509v3 Authority Key Identifier:
keyid:63:E2:49:77:99:3C:15:BC:C1:34:B1:74:93:7F:41:B2:12:9F:56:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-JJd5k8FbzBNLF0k39BshKfVtE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/fd8116-5e98-45ef-af74-073a5db0efb5/1/QJOAvHbUa7rZCncmOAeyTsCP3lA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/fd8116-5e98-45ef-af74-073a5db0efb5/1/Y-JJd5k8FbzBNLF0k39BshKfVtE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.208.144.0/24
185.208.147.0/24
Signature Algorithm: sha256WithRSAEncryption
11:c8:a4:4d:3d:2d:de:e6:18:ef:94:61:76:c4:c3:7f:76:3a:
fe:ec:e1:c0:20:22:cc:ce:1c:a5:61:a8:24:ef:98:06:80:3c:
d3:41:8e:a6:00:8e:75:6a:29:d3:83:7f:93:bf:ed:19:e8:17:
14:d6:8c:f3:c3:b3:65:ea:bf:39:8b:8a:4f:60:38:6e:9d:63:
2b:1c:a9:a5:7e:9b:d9:59:a6:f5:3e:16:5a:61:3e:d2:01:ed:
8a:82:ab:ca:13:6e:cf:64:11:85:15:a8:e0:6b:20:2f:35:5e:
08:b7:dc:8d:af:78:70:29:08:96:24:b7:08:69:5a:de:67:de:
12:35:ec:bf:22:f7:ed:43:99:34:37:0f:b7:2d:0c:ba:7f:46:
ea:a8:6c:40:a9:76:45:d7:f0:7e:e8:25:4a:e5:7f:4d:1a:31:
c9:86:b8:99:6a:22:c9:27:31:2e:26:67:7d:e5:38:e2:23:96:
05:35:ce:1e:68:ca:a9:c4:db:39:a0:06:bd:6e:a6:20:6a:b2:
9a:19:02:56:f0:93:b5:70:0e:26:a9:aa:57:ab:62:53:e5:a4:
b0:5b:da:e8:cd:6a:62:80:ca:36:19:c7:22:5b:36:0a:aa:c3:
90:80:8c:4a:24:15:b8:4c:49:60:1b:17:ba:7d:f1:8a:8e:6a:
68:72:20:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:13 2024 by rpki-client on console-fra.rpki-client.org