Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/44f5df-2cdc-4f18-be30-d7c4158e9db4/1/QB-5zDaqt3LeHqOCsY-zFCcLQHU.roa
File: QB-5zDaqt3LeHqOCsY-zFCcLQHU.roa (raw, json)
Hash identifier: +SnoYTRQvnHkM9/4QNM8k4YhgI0qiehik9QVaQvUvPE=
Subject key identifier: 40:1F:B9:CC:36:AA:B7:72:DE:1E:A3:82:B1:8F:B3:14:27:0B:40:75
Certificate issuer: /CN=5a2a022fed81cba608817d2a9589a5098e0a708e
Certificate serial: 01856F8B992855EA899C68D87CF900AB9EE9
Authority key identifier: 5A:2A:02:2F:ED:81:CB:A6:08:81:7D:2A:95:89:A5:09:8E:0A:70:8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WioCL-2By6YIgX0qlYmlCY4KcI4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/44f5df-2cdc-4f18-be30-d7c4158e9db4/1/QB-5zDaqt3LeHqOCsY-zFCcLQHU.roa
Signing time: Sun 01 Jan 2023 22:54:57 +0000
ROA not before: Sun 01 Jan 2023 22:54:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48918
IP address blocks: 95.215.212.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 04 Aug 2023 10:12:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:8b:99:28:55:ea:89:9c:68:d8:7c:f9:00:ab:9e:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5a2a022fed81cba608817d2a9589a5098e0a708e
Validity
Not Before: Jan 1 22:54:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=401fb9cc36aab772de1ea382b18fb314270b4075
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:00:75:9c:38:61:ae:e8:4f:b8:e2:c9:4f:a7:
25:fe:2d:2c:60:82:ed:4b:c7:f2:43:c4:70:30:61:
ba:e2:7d:36:f1:d7:cb:9c:02:02:77:bf:15:75:16:
1d:3f:0d:d8:77:16:b7:9b:98:7c:44:7f:95:6c:e0:
81:a6:31:4d:8e:07:24:14:30:7e:ca:33:a5:7c:79:
59:93:28:f2:88:d0:cd:0f:d9:be:be:ba:da:d5:82:
f9:1e:03:c4:96:9a:56:30:d2:c1:9e:da:04:e7:5a:
6f:2b:3d:02:15:81:94:3c:4d:eb:64:65:37:4f:c1:
00:96:1f:fb:b6:49:e1:2a:08:e4:01:c0:74:f9:cd:
ce:91:83:3a:a1:ef:55:47:88:e0:56:76:d5:8c:71:
ce:db:74:19:96:40:f1:cf:17:a0:31:3c:75:1b:07:
43:87:36:57:2d:50:e6:61:29:92:e4:7f:05:86:8b:
3a:49:48:46:aa:8f:f5:2b:ab:a0:35:1d:1b:84:76:
7c:98:f8:13:6c:0c:fb:11:11:6d:2d:19:a8:06:16:
b6:e8:0a:07:12:64:15:1b:c2:d7:79:c5:bf:5e:bd:
8e:d1:b0:80:be:ae:21:c7:d6:6e:44:e3:40:6b:08:
58:0b:e2:75:6e:45:9c:3a:7d:e9:47:e0:bc:6a:e0:
40:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:1F:B9:CC:36:AA:B7:72:DE:1E:A3:82:B1:8F:B3:14:27:0B:40:75
X509v3 Authority Key Identifier:
keyid:5A:2A:02:2F:ED:81:CB:A6:08:81:7D:2A:95:89:A5:09:8E:0A:70:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WioCL-2By6YIgX0qlYmlCY4KcI4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/44f5df-2cdc-4f18-be30-d7c4158e9db4/1/QB-5zDaqt3LeHqOCsY-zFCcLQHU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/44f5df-2cdc-4f18-be30-d7c4158e9db4/1/WioCL-2By6YIgX0qlYmlCY4KcI4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.215.212.0/24
Signature Algorithm: sha256WithRSAEncryption
52:ba:0c:c2:2a:90:43:ba:ad:1b:16:13:ff:99:8d:40:0c:23:
4a:e2:6b:44:fe:0f:c2:93:2b:9c:7c:5d:b4:77:b8:54:ca:58:
c5:0f:96:6f:c7:ff:f8:96:65:e2:cd:21:25:75:68:59:f8:bb:
6a:97:92:cc:bf:4c:cb:d4:28:e0:0d:ec:47:d9:85:cb:d2:5e:
0e:3a:a6:13:ca:3f:77:46:2a:a9:c7:12:09:43:ce:90:cc:be:
5f:d9:c0:f0:f1:db:7a:49:53:80:f5:ed:df:ee:46:7b:ab:76:
c5:60:30:7f:3d:0e:91:bc:aa:a0:5f:6b:cb:f6:de:ca:46:7d:
21:8d:dd:aa:ab:28:3e:59:98:57:bb:89:f8:68:22:6d:be:9a:
d2:28:c5:22:08:04:c6:28:f0:7e:11:0f:76:39:e4:31:85:9e:
2e:c5:4d:db:eb:2c:9e:54:e2:ae:a1:bc:79:4f:ea:a7:7d:1b:
09:c2:72:43:f8:76:5f:2f:87:fa:4b:bc:77:45:1c:48:09:29:
e2:ef:c4:d7:cf:9f:ea:02:b7:ae:13:9b:79:2e:9a:b9:48:df:
29:95:25:aa:4d:0c:f0:78:eb:26:c4:63:ed:be:b3:c8:6d:98:
46:07:b8:0e:5d:f8:61:a1:b1:ff:ec:65:82:ec:6b:50:09:c8:
7f:c6:53:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:11 2024 by rpki-client on console-ams.rpki-client.org