Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/QWQWbGZI229O_4zOFCuwvU_wL3c.roa
File: QWQWbGZI229O_4zOFCuwvU_wL3c.roa (raw, json)
Hash identifier: IoD8HU2C1i9DjKoloQWR0kVdDBVKUvrT8Y3PbQ9ErCg=
Subject key identifier: 41:64:16:6C:66:48:DB:6F:4E:FF:8C:CE:14:2B:B0:BD:4F:F0:2F:77
Certificate issuer: /CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Certificate serial: 0185E92E257E7BCDF91D00EA83DB1101CBEF
Authority key identifier: 58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/QWQWbGZI229O_4zOFCuwvU_wL3c.roa
Signing time: Wed 25 Jan 2023 13:46:33 +0000
ROA not before: Wed 25 Jan 2023 13:46:33 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204720
IP address blocks: 37.18.15.0/24 maxlen: 24
46.243.232.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:e9:2e:25:7e:7b:cd:f9:1d:00:ea:83:db:11:01:cb:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Validity
Not Before: Jan 25 13:46:33 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4164166c6648db6f4eff8cce142bb0bd4ff02f77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:d4:4e:67:44:d4:b2:3a:f2:03:99:07:43:2c:
b3:35:42:ea:ab:6d:26:54:7d:81:0e:f6:e1:fa:a5:
17:52:97:62:22:fc:54:d1:01:ad:64:b3:22:45:4a:
b0:fa:da:eb:0a:d5:06:c6:ca:97:e4:ab:7d:0b:d3:
6e:07:c0:2e:0a:fc:b7:65:ce:02:dc:b7:34:3d:0f:
e0:e6:d4:76:4d:e5:19:a9:e6:52:5b:ed:97:e6:e9:
2d:9c:43:c2:2b:d2:99:a0:fe:6a:09:47:07:a1:c5:
52:42:ea:e5:14:9d:1c:b2:84:d4:c0:65:25:34:1c:
1e:38:29:0f:02:dc:82:4c:5e:90:e6:b1:11:17:fb:
d2:5f:47:71:82:d5:0b:96:5d:c2:d5:41:fb:85:21:
c7:3e:9d:14:29:17:4c:25:64:ee:da:f7:fb:bf:27:
73:ef:86:96:e8:fb:83:a2:76:29:19:89:5c:09:cc:
d7:bb:fd:75:c1:f5:d8:c6:45:1c:b8:ba:ae:b5:54:
0a:e3:2b:13:7b:8f:49:46:31:1c:61:53:0d:72:ec:
0c:9f:6a:63:99:c7:d6:30:72:e3:50:96:16:70:10:
87:56:1c:05:63:9d:01:f8:2e:38:95:67:d4:30:82:
0e:60:86:41:c8:c5:05:4d:8f:01:b0:a0:f6:40:74:
36:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:64:16:6C:66:48:DB:6F:4E:FF:8C:CE:14:2B:B0:BD:4F:F0:2F:77
X509v3 Authority Key Identifier:
keyid:58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/QWQWbGZI229O_4zOFCuwvU_wL3c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.18.15.0/24
46.243.232.0/22
Signature Algorithm: sha256WithRSAEncryption
78:e1:1b:26:a2:31:3b:fe:74:ba:e7:e6:1a:55:c2:a4:07:c8:
22:ff:b8:17:6e:35:a4:c1:1b:41:c7:8e:8a:91:2d:ad:b6:3a:
88:b3:27:96:c1:24:e5:1e:91:aa:7e:33:5d:bc:bc:0b:5e:64:
ad:12:c1:c5:35:b9:ba:6f:79:b8:88:4d:08:73:e7:77:03:7a:
13:c5:52:cd:8f:44:88:d4:32:3f:e3:83:79:91:d0:fc:c3:35:
5c:a4:ab:8a:35:58:72:3b:ad:e5:a3:db:20:be:29:21:90:d2:
0d:ee:03:84:b3:8e:eb:c8:8a:bd:9d:17:54:5c:e5:31:a9:05:
cd:dc:37:4c:93:b9:c6:42:08:c5:e5:e4:64:8a:c1:c8:d4:6d:
18:ea:a5:c1:e4:f5:27:81:a7:8c:3c:68:a8:fe:ff:a6:41:57:
f5:f8:21:af:a9:e9:7b:ad:da:53:c6:ba:b4:3e:c3:be:1d:06:
ec:25:ea:94:72:dd:d0:e0:d5:6f:41:d6:8f:81:70:98:e8:b1:
db:d0:34:a9:31:95:4a:8e:f6:fd:51:94:e5:8d:bf:40:55:e7:
9a:f6:8e:7f:dc:4d:c0:92:c1:33:c3:d0:da:bd:fa:58:18:ce:
d3:79:a4:78:a0:a0:38:74:ee:8c:b1:2d:98:14:aa:49:6d:18:
f0:03:19:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Dec 19 16:29:38 2023 by rpki-client on console-fra.rpki-client.org