Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/a4ff33-b290-4307-afc8-f520a7d71ef5/1/qPE4-mcK7YoEVWMGOxpukG3pNM8.roa
File: qPE4-mcK7YoEVWMGOxpukG3pNM8.roa (raw, json)
Hash identifier: lXAUsDgq+B5n7obmBKm3z3LPEKLdxVSAGgB9RtDsnsQ=
Subject key identifier: A8:F1:38:FA:67:0A:ED:8A:04:55:63:06:3B:1A:6E:90:6D:E9:34:CF
Certificate issuer: /CN=9faf0bf93fc4381fff7e7aa86b4076c033242ffa
Certificate serial: 018F19F9697C2FE73307B4B72A2050139521
Authority key identifier: 9F:AF:0B:F9:3F:C4:38:1F:FF:7E:7A:A8:6B:40:76:C0:33:24:2F:FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/n68L-T_EOB__fnqoa0B2wDMkL_o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/a4ff33-b290-4307-afc8-f520a7d71ef5/1/qPE4-mcK7YoEVWMGOxpukG3pNM8.roa
Signing time: Fri 26 Apr 2024 10:35:26 +0000
ROA not before: Fri 26 Apr 2024 10:35:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 400866
IP address blocks: 185.91.205.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 27 May 2024 08:35:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:19:f9:69:7c:2f:e7:33:07:b4:b7:2a:20:50:13:95:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9faf0bf93fc4381fff7e7aa86b4076c033242ffa
Validity
Not Before: Apr 26 10:35:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a8f138fa670aed8a045563063b1a6e906de934cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:11:6b:c0:73:99:70:6a:1d:eb:d8:3b:3f:80:
60:be:9f:39:3e:50:91:eb:82:5a:49:aa:5c:22:ed:
30:60:c1:ac:6f:1a:7d:ac:b2:d9:be:b0:88:71:cd:
88:95:18:d0:d9:d8:9d:4a:d0:bc:2e:46:4f:13:32:
87:f8:78:29:36:a7:fb:e3:29:d1:8c:10:4e:a6:04:
cf:3a:bb:5e:7a:d4:33:a4:f6:6f:f7:f4:46:de:51:
12:2a:97:62:75:2b:fa:6e:b7:7f:ee:ec:d4:35:c6:
f5:26:a7:07:95:b8:3f:b4:10:b6:30:7d:ef:c8:20:
75:c4:13:63:d9:0b:0f:4d:2d:fb:d0:fb:a1:89:14:
23:dc:cc:1f:cc:74:06:7d:99:5c:6f:b6:dc:34:f3:
12:f1:10:2c:b3:8d:a0:80:ba:ef:b0:10:18:2e:07:
63:42:c8:cc:86:f3:8a:73:29:2d:ad:f5:97:1a:1a:
1d:57:bf:fb:88:9b:51:d0:0c:f2:ce:b8:26:1c:51:
b9:a9:06:b1:b1:f5:03:a1:ea:10:42:51:2d:a3:72:
d3:07:c3:b4:e6:29:67:df:25:d2:c5:b5:60:9e:dc:
9a:28:65:f5:e4:08:58:56:38:59:fc:ab:a9:f0:8c:
4e:95:11:4a:28:26:c5:7b:0e:66:5f:24:dd:e6:57:
a6:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:F1:38:FA:67:0A:ED:8A:04:55:63:06:3B:1A:6E:90:6D:E9:34:CF
X509v3 Authority Key Identifier:
keyid:9F:AF:0B:F9:3F:C4:38:1F:FF:7E:7A:A8:6B:40:76:C0:33:24:2F:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/n68L-T_EOB__fnqoa0B2wDMkL_o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/a4ff33-b290-4307-afc8-f520a7d71ef5/1/qPE4-mcK7YoEVWMGOxpukG3pNM8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/a4ff33-b290-4307-afc8-f520a7d71ef5/1/n68L-T_EOB__fnqoa0B2wDMkL_o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.91.205.0/24
Signature Algorithm: sha256WithRSAEncryption
21:0d:d0:24:e9:cf:b8:89:d4:8b:d6:f7:4b:0d:76:54:11:86:
41:99:6c:4b:93:79:ee:66:20:35:ad:98:9a:c5:0d:08:71:5d:
59:a3:dc:0e:ba:fa:bb:29:1c:4a:14:6f:ad:a4:ba:ba:fd:41:
da:48:ca:f2:aa:3c:f7:f1:ac:e8:e9:97:67:5d:15:e1:7e:89:
01:78:37:0b:9f:ed:87:02:bc:a7:db:d2:0d:77:50:18:bc:c5:
b7:6b:d8:68:2d:63:d5:ca:fd:97:ef:6e:3f:e4:d9:33:39:a7:
47:fe:7c:f9:58:49:aa:d5:61:0d:94:15:9b:99:b3:1f:40:d0:
e4:17:2e:f4:85:0e:87:a1:b6:d2:58:3e:07:10:23:f4:0b:93:
22:28:bb:cf:06:3b:ec:c2:d1:9d:83:77:ae:dc:66:61:7e:7f:
20:2b:d3:96:51:39:1e:43:57:29:c0:47:f8:03:e6:53:7c:ea:
bb:b1:8b:33:6a:7d:02:09:56:44:17:c8:a4:aa:10:e4:20:83:
a1:0e:d1:d6:ed:6b:81:d8:5d:c7:b6:ad:bd:46:0b:8d:83:b1:
a2:1f:4d:a1:7c:00:f1:74:1b:81:e6:e7:8c:20:41:83:49:89:
6b:b4:d5:2e:db:68:7e:1e:0b:3d:00:60:6a:d2:47:a8:3b:48:
bf:ec:2b:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:29 2024 by rpki-client on console-fra.rpki-client.org