Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/703fc5-406c-4121-ab9e-ef46ddeeabf4/1/Q6QoeOnGjJzswvhewawopF3R-o4.roa
File: Q6QoeOnGjJzswvhewawopF3R-o4.roa (raw, json)
Hash identifier: ALtyNizyco6sPScvfuZo2JzsKXnG1bzspW18SXtDm3c=
Subject key identifier: 43:A4:28:78:E9:C6:8C:9C:EC:C2:F8:5E:C1:AC:28:A4:5D:D1:FA:8E
Certificate issuer: /CN=08d278bbe5fc2df732032cdb235962dbabe0f641
Certificate serial: 0185715531F4BA613DD30AB4E786B84BDA09
Authority key identifier: 08:D2:78:BB:E5:FC:2D:F7:32:03:2C:DB:23:59:62:DB:AB:E0:F6:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CNJ4u-X8LfcyAyzbI1li26vg9kE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/703fc5-406c-4121-ab9e-ef46ddeeabf4/1/Q6QoeOnGjJzswvhewawopF3R-o4.roa
Signing time: Mon 02 Jan 2023 07:14:46 +0000
ROA not before: Mon 02 Jan 2023 07:14:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198558
IP address blocks: 37.0.112.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:30:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:55:31:f4:ba:61:3d:d3:0a:b4:e7:86:b8:4b:da:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08d278bbe5fc2df732032cdb235962dbabe0f641
Validity
Not Before: Jan 2 07:14:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=43a42878e9c68c9cecc2f85ec1ac28a45dd1fa8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:3d:29:70:18:80:1b:c0:bc:23:1f:d1:13:13:
2c:ad:3a:af:d9:3c:aa:fe:94:7d:8c:4f:bd:a6:36:
30:22:82:5a:be:5c:44:09:2d:78:84:92:53:2a:e0:
b7:67:b3:dd:69:8d:a5:f8:86:c6:a7:28:60:25:b3:
df:e1:95:85:b6:2a:85:ec:d2:c1:f5:47:82:f4:7d:
96:b0:d8:de:72:fb:d9:e1:fa:4a:e3:87:60:b5:a4:
9c:d8:33:74:02:46:e6:ca:05:7b:52:bd:d9:1a:2a:
e8:09:8d:42:b3:f1:2a:9d:d3:d7:6f:91:d0:a8:23:
49:bd:c5:75:5b:4c:30:4b:0e:00:98:5c:d8:8e:d4:
97:02:2b:56:31:65:59:1d:eb:cf:82:57:e5:51:48:
59:85:83:4a:a1:09:fa:31:bc:17:07:2f:7c:1f:ea:
30:cb:01:3f:9e:2e:d0:48:aa:e7:33:87:50:cf:ad:
dc:be:c9:43:09:d8:52:6c:d7:c0:a2:c8:61:75:d1:
dc:0a:f9:1d:c7:1a:fb:f8:9c:ce:f4:f8:81:98:71:
6e:a6:af:26:da:3a:b0:56:47:16:44:ef:16:6a:1e:
fc:7c:28:6b:5a:4e:d9:1a:b4:ef:ea:8c:45:45:4e:
3a:9a:58:59:8f:74:57:46:7f:97:48:d1:50:74:af:
2a:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:A4:28:78:E9:C6:8C:9C:EC:C2:F8:5E:C1:AC:28:A4:5D:D1:FA:8E
X509v3 Authority Key Identifier:
keyid:08:D2:78:BB:E5:FC:2D:F7:32:03:2C:DB:23:59:62:DB:AB:E0:F6:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CNJ4u-X8LfcyAyzbI1li26vg9kE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/703fc5-406c-4121-ab9e-ef46ddeeabf4/1/Q6QoeOnGjJzswvhewawopF3R-o4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/703fc5-406c-4121-ab9e-ef46ddeeabf4/1/CNJ4u-X8LfcyAyzbI1li26vg9kE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.0.112.0/24
Signature Algorithm: sha256WithRSAEncryption
93:f9:a7:7c:58:34:9a:bf:13:2e:42:5c:95:d2:09:9c:33:ea:
b8:90:aa:fe:58:79:b4:70:8b:56:ff:2b:c0:69:34:02:d2:88:
34:17:89:a2:4b:25:28:39:d3:11:1a:2d:6e:cb:fd:af:1a:93:
ef:f0:b7:78:c0:97:e0:bd:35:a4:c6:db:eb:4e:65:eb:19:ae:
1b:89:47:b5:83:3a:a7:e3:4a:10:c8:19:d5:3f:7a:32:e9:c0:
0a:dc:11:4e:84:a0:ee:40:a1:ba:d4:43:5c:a5:70:a3:df:d3:
03:5f:73:30:e6:69:ba:e1:87:70:80:37:61:dc:e1:7d:04:39:
e6:02:35:f8:81:42:3c:7d:0c:ae:75:bd:d4:0a:24:47:f3:4b:
f1:84:7b:b8:c1:ea:55:03:53:c7:ef:bd:e7:6b:6e:12:74:d3:
94:43:7e:ac:c6:cc:3b:15:28:84:22:30:64:6b:b5:62:3f:af:
3a:66:1f:51:07:f8:b3:e8:69:ce:c8:9c:de:2d:b0:9d:51:27:
a4:74:97:e7:93:40:7d:fd:2c:7a:d6:90:74:74:35:d5:2d:c4:
7a:b2:f8:a9:d5:9d:13:34:e9:7f:f3:15:ca:1b:59:5d:1f:7c:
f9:0b:36:09:f9:d8:25:e4:7f:ba:28:43:cf:c7:cf:44:52:e3:
c6:3f:ae:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:15 2024 by rpki-client on console-fra.rpki-client.org