Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/QzJvEqwqOIC9zKVliV0R_H7jCj0.roa
File: QzJvEqwqOIC9zKVliV0R_H7jCj0.roa (raw, json)
Hash identifier: OldalhI3ec/d5CDfu9RKtnMw53qlEaVxIgw+A8rWo1g=
Subject key identifier: 43:32:6F:12:AC:2A:38:80:BD:CC:A5:65:89:5D:11:FC:7E:E3:0A:3D
Certificate issuer: /CN=e8b3eed1c7aca636d6245852b802e0e73754df63
Certificate serial: 018F58B262FEF0E5FE52DDFE20C3119803C9
Authority key identifier: E8:B3:EE:D1:C7:AC:A6:36:D6:24:58:52:B8:02:E0:E7:37:54:DF:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6LPu0cespjbWJFhSuALg5zdU32M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/QzJvEqwqOIC9zKVliV0R_H7jCj0.roa
Signing time: Wed 08 May 2024 14:53:56 +0000
ROA not before: Wed 08 May 2024 14:53:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 37.148.218.0/23 maxlen: 24
Validation: Failed, certificate revoked on Thu 30 May 2024 12:02:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:58:b2:62:fe:f0:e5:fe:52:dd:fe:20:c3:11:98:03:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8b3eed1c7aca636d6245852b802e0e73754df63
Validity
Not Before: May 8 14:53:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=43326f12ac2a3880bdcca565895d11fc7ee30a3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:b6:ec:a5:73:a6:cf:51:f0:5c:e5:af:77:ab:
70:23:7f:ac:1b:ad:80:23:35:21:9c:b2:a0:1a:58:
b7:a9:2d:98:04:73:80:fb:1d:05:ba:53:74:b5:b5:
e4:d9:1c:f8:4a:8e:b3:4c:97:a2:ba:4c:e4:a0:94:
f0:5d:4f:1a:af:47:b8:06:fe:0e:30:c6:12:dc:78:
95:41:f3:3a:e7:1a:47:d3:2a:47:87:ad:67:e5:50:
57:c4:0d:d0:2f:b1:c9:6a:38:7e:6e:e6:ee:f6:8f:
6f:64:b8:41:f1:8a:25:b6:7f:30:b2:f1:3c:78:a0:
b1:23:db:b7:2d:a2:62:45:79:5c:28:c5:7e:f7:1d:
45:78:4b:aa:20:40:57:79:12:45:fc:8d:1f:77:56:
40:bb:70:7a:84:c4:86:6e:fd:71:55:9b:86:58:d2:
c4:86:e9:cc:36:0b:b5:c8:8e:8f:04:2e:b1:b8:d2:
6d:0b:64:67:c2:19:b0:e4:3b:70:76:da:62:bc:f8:
27:67:69:aa:57:3f:b6:73:c2:8d:a9:2d:5e:80:36:
c1:5f:7f:a2:fc:7a:f2:7b:17:64:89:ac:bc:9b:23:
5e:ad:4b:c7:fe:35:94:98:ed:c1:cf:64:30:b4:25:
c7:18:5d:3d:a9:3c:fa:49:37:c5:21:3f:66:05:a3:
a2:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:32:6F:12:AC:2A:38:80:BD:CC:A5:65:89:5D:11:FC:7E:E3:0A:3D
X509v3 Authority Key Identifier:
keyid:E8:B3:EE:D1:C7:AC:A6:36:D6:24:58:52:B8:02:E0:E7:37:54:DF:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6LPu0cespjbWJFhSuALg5zdU32M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/QzJvEqwqOIC9zKVliV0R_H7jCj0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/6LPu0cespjbWJFhSuALg5zdU32M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.148.218.0/23
Signature Algorithm: sha256WithRSAEncryption
6d:c2:ff:1e:ea:9a:45:ad:bb:e5:f2:0f:5b:27:02:6e:ef:d9:
75:5d:25:12:3f:bb:89:de:59:e5:f8:9f:99:10:eb:8a:7e:d0:
ac:95:4f:b9:8f:d0:34:37:d3:28:36:ff:d9:1a:92:e7:a1:b9:
c5:c5:13:ef:a6:81:1c:09:37:40:30:c9:22:b1:db:55:c9:29:
5d:03:f5:25:f5:83:f4:2b:3f:19:40:2e:34:be:02:dc:fd:33:
13:ed:54:64:ab:2f:7f:87:f1:f0:a5:b4:b0:de:a8:51:0b:97:
97:89:cd:5c:63:99:c9:54:31:8b:02:58:d3:50:36:26:b1:07:
b8:3f:98:32:cd:70:c5:4f:19:ae:14:a7:fc:eb:35:c4:dc:20:
51:8d:03:ae:87:3c:80:b1:66:67:ff:f6:4f:a2:6d:21:fb:2a:
34:d5:a5:89:c4:b9:0d:c8:2d:3e:3c:da:8a:81:9c:a1:1b:b4:
f6:01:a4:77:01:02:c5:72:94:35:49:92:49:c5:22:67:6f:88:
8e:bf:6c:bb:70:d6:12:ba:94:84:ca:85:70:b3:e7:f1:5c:4c:
ed:c4:52:b4:b5:38:fb:f9:fc:c3:c4:92:33:6f:af:00:97:4f:
59:19:c6:01:ac:1a:ee:ca:70:94:78:ed:9e:2d:a3:07:da:29:
fb:f2:26:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 30 15:25:25 2024 by rpki-client on console-fra.rpki-client.org