Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/7bf8a8-e49c-406e-8eb7-c823cc8f3837/1/qWmZn8_3Jh56fa1VQsJmWrp4J3Y.roa
File: qWmZn8_3Jh56fa1VQsJmWrp4J3Y.roa (raw, json)
Hash identifier: iA7mF1NcjtA4Q0vfni2s05ZtMLM+z5Ai7CDb91sxkA4=
Subject key identifier: A9:69:99:9F:CF:F7:26:1E:7A:7D:AD:55:42:C2:66:5A:BA:78:27:76
Certificate issuer: /CN=3718b734349bf327d9453b96501e44b192e55142
Certificate serial: 01856FC287034684976035B9A282AFD703AE
Authority key identifier: 37:18:B7:34:34:9B:F3:27:D9:45:3B:96:50:1E:44:B1:92:E5:51:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nxi3NDSb8yfZRTuWUB5EsZLlUUI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/7bf8a8-e49c-406e-8eb7-c823cc8f3837/1/qWmZn8_3Jh56fa1VQsJmWrp4J3Y.roa
Signing time: Sun 01 Jan 2023 23:54:57 +0000
ROA not before: Sun 01 Jan 2023 23:54:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 185.155.54.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 09 Nov 2023 12:53:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:c2:87:03:46:84:97:60:35:b9:a2:82:af:d7:03:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3718b734349bf327d9453b96501e44b192e55142
Validity
Not Before: Jan 1 23:54:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a969999fcff7261e7a7dad5542c2665aba782776
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:02:6d:13:64:e8:4c:d6:c7:9b:14:92:e9:46:
c0:36:57:90:c3:a2:a1:1e:6d:b0:d7:70:b4:8a:93:
fc:f9:f8:8e:02:ec:7b:3d:5a:f2:0d:9a:1b:cf:4c:
10:b1:83:09:43:1b:89:b5:96:17:f9:aa:be:1a:5b:
bb:a9:ca:50:ac:65:a7:d5:89:48:f6:f5:fb:d5:e2:
4e:89:a4:f2:d3:6f:6b:d7:31:b2:e3:77:55:3c:3b:
8c:5d:1d:84:ba:9d:62:b7:b3:94:ab:90:a0:0e:75:
d1:5c:5b:64:de:65:eb:58:8d:da:df:32:12:4e:cc:
04:74:e2:27:e8:d2:c4:62:e0:34:60:09:77:8c:c2:
cc:97:74:ef:ed:ef:09:52:1f:89:d3:db:e4:b8:f5:
d1:91:6e:9e:cb:29:10:b6:3f:8a:1e:1c:da:41:cb:
50:04:f7:1f:9a:d1:04:ad:43:fb:7b:0e:3a:4c:14:
29:10:08:17:9d:57:33:83:f6:cc:c6:b4:16:e4:06:
92:7b:36:55:cc:d5:a9:c8:2c:41:fa:ca:ed:98:4e:
19:31:ff:22:98:a2:6b:f0:31:c7:f6:0a:6d:e4:5f:
88:10:ae:6d:ec:e1:2d:e9:be:56:95:28:3e:3a:ac:
c9:24:20:98:b8:57:b3:fa:d6:c4:cd:bd:ac:f1:4d:
18:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:69:99:9F:CF:F7:26:1E:7A:7D:AD:55:42:C2:66:5A:BA:78:27:76
X509v3 Authority Key Identifier:
keyid:37:18:B7:34:34:9B:F3:27:D9:45:3B:96:50:1E:44:B1:92:E5:51:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nxi3NDSb8yfZRTuWUB5EsZLlUUI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/7bf8a8-e49c-406e-8eb7-c823cc8f3837/1/qWmZn8_3Jh56fa1VQsJmWrp4J3Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/7bf8a8-e49c-406e-8eb7-c823cc8f3837/1/Nxi3NDSb8yfZRTuWUB5EsZLlUUI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.155.54.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:76:28:04:7e:31:60:c8:2a:e3:a8:f5:4e:25:22:82:32:71:
db:df:b5:0d:c1:29:c5:62:b7:27:ea:fb:02:77:91:a7:ed:f4:
72:b0:29:92:b1:d8:94:78:39:a2:70:a5:5e:20:3d:45:da:1f:
b9:f9:51:05:86:f1:8d:9d:77:77:2a:07:0f:ec:3b:38:b6:28:
32:96:ac:4b:c7:eb:9d:11:b1:da:c7:bd:40:90:ba:c4:24:16:
88:19:e1:e2:f9:80:33:f2:54:01:a7:72:68:15:29:37:c0:e8:
d8:0f:a6:93:93:fc:86:95:96:db:12:55:9c:6a:23:6b:6d:89:
14:bb:1e:4b:9c:be:5c:e3:69:5c:58:25:e8:c1:0f:ca:57:d5:
bb:be:b8:c1:e1:71:4c:55:f0:8c:b3:1e:40:d0:cf:08:07:cc:
b8:79:8b:c5:c3:3f:f7:86:3a:03:6e:85:3e:55:cb:5c:fc:19:
40:82:74:3c:45:96:64:f5:31:82:14:52:a1:59:d5:0a:15:03:
54:39:28:63:a1:78:07:70:50:d8:53:36:00:e8:a8:06:02:43:
5d:b7:7f:f4:25:33:4d:d9:e3:8f:ed:33:84:40:ae:15:b6:b7:
c4:76:05:db:f4:0c:3f:76:17:ba:2b:72:17:5c:09:5a:29:31:
b4:1e:a4:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:04 2024 by rpki-client on console-ams.rpki-client.org