Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/a4ff33-b290-4307-afc8-f520a7d71ef5/1/Qavrmw5dzh0u6nDbZkcPKZS1Cxg.roa
File: Qavrmw5dzh0u6nDbZkcPKZS1Cxg.roa (raw, json)
Hash identifier: Gb8XwlGg3WbEa12ySsuOceX08+2QgXmHuf8CZjKKBgc=
Subject key identifier: 41:AB:EB:9B:0E:5D:CE:1D:2E:EA:70:DB:66:47:0F:29:94:B5:0B:18
Certificate issuer: /CN=9faf0bf93fc4381fff7e7aa86b4076c033242ffa
Certificate serial: 018FC4779614DAEDF609B90CBF84D0770978
Authority key identifier: 9F:AF:0B:F9:3F:C4:38:1F:FF:7E:7A:A8:6B:40:76:C0:33:24:2F:FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/n68L-T_EOB__fnqoa0B2wDMkL_o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/a4ff33-b290-4307-afc8-f520a7d71ef5/1/Qavrmw5dzh0u6nDbZkcPKZS1Cxg.roa
Signing time: Wed 29 May 2024 13:08:42 +0000
ROA not before: Wed 29 May 2024 13:08:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 201670
IP address blocks: 185.91.205.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 29 Jul 2024 07:43:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:c4:77:96:14:da:ed:f6:09:b9:0c:bf:84:d0:77:09:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9faf0bf93fc4381fff7e7aa86b4076c033242ffa
Validity
Not Before: May 29 13:08:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=41abeb9b0e5dce1d2eea70db66470f2994b50b18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:79:39:d3:c1:0d:7a:1e:5a:1e:61:15:82:fb:
fb:32:d5:f7:e8:75:1c:d6:94:05:1b:42:23:32:b0:
9f:42:15:2f:c8:d5:21:f6:2b:b1:36:03:7b:3a:ad:
30:6e:89:55:c2:4c:d1:3f:cf:ad:86:9d:f2:f6:a5:
aa:13:db:69:a0:3d:88:15:e3:ef:d5:05:84:01:40:
95:1c:14:41:86:c1:51:5a:b3:c0:8d:04:50:24:68:
76:56:29:04:04:56:1f:c9:27:02:89:5c:42:55:d1:
fc:72:43:af:d1:30:67:c2:f6:64:07:c3:70:16:a4:
49:dd:10:eb:8a:ab:b7:00:8b:71:9d:28:db:c1:78:
2b:78:9e:aa:de:b8:0b:67:a3:8d:c5:09:55:f5:53:
96:e9:bd:97:0c:92:47:dc:bd:4e:a9:0a:77:63:ae:
43:72:1c:ef:8c:6e:d1:c3:ab:7d:90:39:ce:da:70:
b9:27:e5:82:88:73:7a:65:df:94:e6:5e:df:de:c8:
16:bb:fd:0f:51:b0:52:7a:2b:17:6e:09:9e:35:09:
40:46:ea:b3:f5:58:e3:69:2a:bd:09:b9:c0:c2:a8:
75:52:ac:25:20:f1:ad:19:a0:e4:07:8e:78:12:4d:
44:6a:5d:a7:b0:d4:1d:10:7b:66:d9:70:1b:3e:37:
6f:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:AB:EB:9B:0E:5D:CE:1D:2E:EA:70:DB:66:47:0F:29:94:B5:0B:18
X509v3 Authority Key Identifier:
keyid:9F:AF:0B:F9:3F:C4:38:1F:FF:7E:7A:A8:6B:40:76:C0:33:24:2F:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/n68L-T_EOB__fnqoa0B2wDMkL_o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/a4ff33-b290-4307-afc8-f520a7d71ef5/1/Qavrmw5dzh0u6nDbZkcPKZS1Cxg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/a4ff33-b290-4307-afc8-f520a7d71ef5/1/n68L-T_EOB__fnqoa0B2wDMkL_o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.91.205.0/24
Signature Algorithm: sha256WithRSAEncryption
22:bc:0a:bb:73:25:0b:0a:69:63:d4:f6:8b:97:9e:67:00:2a:
db:35:b7:60:66:55:38:7c:e4:0d:a3:ca:48:91:5a:c7:d3:3d:
dc:26:89:c4:9f:08:c1:c9:68:f8:13:fb:f3:ec:71:53:98:ae:
32:f4:07:24:7e:08:6f:b4:dc:c0:8e:5f:e9:eb:74:91:b7:f2:
2f:c7:2b:f6:69:c8:12:46:06:73:9b:84:a8:c2:7b:36:aa:90:
52:96:eb:3a:3f:0b:57:06:63:53:17:4b:c2:ac:55:d4:fe:64:
6a:ab:c0:08:18:3a:90:23:ef:38:6f:67:75:38:9d:36:06:0d:
e2:f1:7c:72:0e:5b:c7:40:b9:d9:3c:2b:b6:44:bb:6d:4c:a1:
05:11:b5:8a:28:38:6f:5e:2c:f5:52:1c:d3:1a:ff:ca:34:eb:
5a:80:39:13:bc:72:07:27:ef:8f:71:88:cf:eb:1e:19:e1:41:
e1:0d:a4:3a:7d:07:da:77:29:52:4a:52:74:3f:66:59:d5:2a:
6a:b0:01:32:e5:71:76:b8:f7:51:78:80:17:1b:71:e8:90:6a:
86:bd:e5:1f:85:d5:1d:23:4a:19:ae:3d:99:2e:92:5f:c8:58:
5f:31:be:5a:17:82:25:11:1b:52:6b:31:62:45:d8:b1:a3:f3:
26:d2:60:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 29 10:02:42 2024 by rpki-client on console-fra.rpki-client.org