Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/0924fa-54fb-4254-b64e-0ac9b3bae6f5/1/QA0mxtEiPILLpAWi90Z8KBkok2k.roa
File: QA0mxtEiPILLpAWi90Z8KBkok2k.roa (raw, json)
Hash identifier: f1xdjr+0Hd+HRmXiLlRhqtI1XZsoddplPwPGsGDxmaQ=
Subject key identifier: 40:0D:26:C6:D1:22:3C:82:CB:A4:05:A2:F7:46:7C:28:19:28:93:69
Certificate issuer: /CN=8402924861cbc088c655a872535a903108a07bf1
Certificate serial: 01856F6FFC09D4C9652BEE71F579E7BFA985
Authority key identifier: 84:02:92:48:61:CB:C0:88:C6:55:A8:72:53:5A:90:31:08:A0:7B:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hAKSSGHLwIjGVahyU1qQMQige_E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/0924fa-54fb-4254-b64e-0ac9b3bae6f5/1/QA0mxtEiPILLpAWi90Z8KBkok2k.roa
Signing time: Sun 01 Jan 2023 22:24:47 +0000
ROA not before: Sun 01 Jan 2023 22:24:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50673
IP address blocks: 217.65.131.0/24 maxlen: 24
185.233.66.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:33:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:6f:fc:09:d4:c9:65:2b:ee:71:f5:79:e7:bf:a9:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8402924861cbc088c655a872535a903108a07bf1
Validity
Not Before: Jan 1 22:24:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=400d26c6d1223c82cba405a2f7467c2819289369
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:1a:f6:20:d2:07:6e:14:82:0d:c8:fe:31:9d:
a0:d1:a7:9f:e0:67:c5:bf:47:16:94:42:63:de:5f:
7d:bb:1f:13:0a:de:8b:98:0d:49:b0:fe:90:93:9c:
42:cd:a0:4b:b6:f7:5b:26:56:7f:2a:55:ad:04:d8:
58:04:d4:e5:a2:8e:79:8b:5b:95:b8:49:5e:55:8d:
9a:3a:af:63:10:56:6f:85:df:64:f0:d8:2f:91:cf:
70:0e:3f:8d:48:e6:6b:2a:8c:15:8d:62:1b:5f:54:
b1:fa:70:07:e1:d1:cf:8a:c2:a4:cb:6c:23:d8:4f:
2b:ec:a6:98:16:6a:6e:f3:0c:bb:bc:c4:8e:0e:8c:
33:5b:1b:9a:4d:64:ec:0e:ab:cc:af:06:a0:f0:b7:
0e:5a:60:f1:4a:9c:d7:61:6a:ef:74:20:3d:03:a5:
95:98:88:c3:11:a6:da:62:f8:78:84:e1:d7:ae:ae:
ca:62:20:cb:09:31:b6:ee:52:b6:43:d7:a2:39:0a:
0f:c0:18:68:a5:44:d8:ea:c7:e3:1f:7e:a5:8c:d5:
61:f0:71:e7:cf:f8:c5:51:10:36:36:45:b6:4a:b9:
98:1c:a2:a8:ad:e8:41:71:47:0c:90:04:4d:f9:37:
c6:1d:e0:3e:75:41:6d:bf:33:c5:b5:df:0b:ee:74:
af:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:0D:26:C6:D1:22:3C:82:CB:A4:05:A2:F7:46:7C:28:19:28:93:69
X509v3 Authority Key Identifier:
keyid:84:02:92:48:61:CB:C0:88:C6:55:A8:72:53:5A:90:31:08:A0:7B:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hAKSSGHLwIjGVahyU1qQMQige_E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/0924fa-54fb-4254-b64e-0ac9b3bae6f5/1/QA0mxtEiPILLpAWi90Z8KBkok2k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/0924fa-54fb-4254-b64e-0ac9b3bae6f5/1/hAKSSGHLwIjGVahyU1qQMQige_E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.233.66.0/24
217.65.131.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:e0:72:d6:fa:04:8d:76:9b:1f:ab:f7:ed:d3:77:62:9b:fc:
57:4a:ee:bc:19:e7:bb:4c:7d:66:4b:56:94:ff:45:9b:55:9b:
5f:23:ef:84:7a:c3:02:64:29:56:40:f1:bd:9d:6d:bd:29:be:
7f:0b:14:6c:9c:e0:80:93:d9:a5:ce:d2:89:bb:90:44:29:bb:
61:fa:2b:21:f8:61:52:b8:8c:c0:eb:e9:90:36:fe:7c:51:4a:
a6:e6:a4:13:b1:87:ad:f2:56:bb:7b:6d:ea:e2:27:91:eb:29:
f1:e0:d1:51:19:6d:a0:c1:7b:83:f5:5d:2d:f2:b6:10:38:95:
72:cb:52:49:f7:02:1f:79:a3:9b:c2:67:5e:6d:b0:4f:a3:74:
ff:c0:6f:8f:72:cc:6a:26:f0:34:0d:34:ac:89:6f:89:8f:69:
8c:93:ff:f2:fb:e0:34:03:2c:5b:3b:77:49:da:1e:2e:97:71:
24:f9:b4:17:30:8b:7a:35:90:c1:3c:16:24:13:a9:84:3d:9a:
f5:b2:b1:0a:0c:d5:8b:f1:1f:89:2c:f9:ae:db:3f:3b:d6:fc:
d5:28:b9:50:2d:ab:51:22:f9:e5:2a:49:f1:9c:6c:4a:d8:67:
37:79:61:06:91:5e:ff:85:dc:46:2f:ff:f0:35:09:57:39:9b:
36:16:ca:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:26:30 2024 by rpki-client on console-ams.rpki-client.org