Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/f4319f-3dfb-42ea-ba95-492ab372689d/1/q-h3DqMlcRX6wbP-f-4IF0GD7N4.roa
File: q-h3DqMlcRX6wbP-f-4IF0GD7N4.roa (raw, json)
Hash identifier: fX11tuws2qEi1wzRxwT+bXEioAF9LYMbW96/XKhgZLU=
Subject key identifier: AB:E8:77:0E:A3:25:71:15:FA:C1:B3:FE:7F:EE:08:17:41:83:EC:DE
Certificate issuer: /CN=5fbe65ae23f207fa695255f55a907ac1608be094
Certificate serial: 0186EA8B0E63540105F94E526D493CD54322
Authority key identifier: 5F:BE:65:AE:23:F2:07:FA:69:52:55:F5:5A:90:7A:C1:60:8B:E0:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X75lriPyB_ppUlX1WpB6wWCL4JQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/f4319f-3dfb-42ea-ba95-492ab372689d/1/q-h3DqMlcRX6wbP-f-4IF0GD7N4.roa
Signing time: Thu 16 Mar 2023 13:10:27 +0000
ROA not before: Thu 16 Mar 2023 13:10:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205820
IP address blocks: 185.251.38.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 21 Sep 2023 10:15:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:ea:8b:0e:63:54:01:05:f9:4e:52:6d:49:3c:d5:43:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5fbe65ae23f207fa695255f55a907ac1608be094
Validity
Not Before: Mar 16 13:10:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=abe8770ea3257115fac1b3fe7fee08174183ecde
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:8e:36:9f:53:de:ab:03:67:74:b7:2d:23:cf:
fe:8b:97:18:5c:18:fa:55:91:52:3f:70:ed:54:08:
53:3a:7a:73:4d:77:57:90:74:f1:91:34:77:7d:e1:
0b:32:ee:53:b5:86:0a:50:f1:3d:3c:18:a0:88:79:
9a:3d:e0:f0:cc:69:a0:6b:43:45:68:44:4b:56:c7:
72:23:a6:f8:3c:6a:a8:92:a3:8b:50:a2:3a:20:31:
35:a3:d9:2d:03:42:b0:fd:8a:d5:2c:30:15:8b:d3:
55:73:28:bb:0e:e1:8a:a6:bd:82:67:8f:b8:b4:dc:
27:6f:33:2e:ba:6e:cd:2e:4e:ed:8d:1e:ca:ae:57:
40:fc:d9:76:ae:0a:20:3d:be:c1:5b:65:93:41:f8:
43:02:55:40:8f:61:18:ef:cf:45:a7:0c:72:7c:54:
df:b5:c9:3f:f9:5b:0f:38:6e:2d:fb:e4:a6:26:f5:
bd:e8:c7:7c:02:d7:60:f1:1a:73:7e:f8:09:cc:0f:
e7:d8:15:12:43:bd:26:f3:fb:d9:c0:74:01:54:6e:
71:72:3e:4e:c8:4a:52:2f:54:9a:53:07:f6:b1:65:
37:f7:a5:90:c5:c2:cc:84:c4:fe:00:b0:b7:51:9d:
11:b6:17:c1:36:5b:b2:58:16:73:d0:b5:f6:d3:7e:
c1:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:E8:77:0E:A3:25:71:15:FA:C1:B3:FE:7F:EE:08:17:41:83:EC:DE
X509v3 Authority Key Identifier:
keyid:5F:BE:65:AE:23:F2:07:FA:69:52:55:F5:5A:90:7A:C1:60:8B:E0:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X75lriPyB_ppUlX1WpB6wWCL4JQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/f4319f-3dfb-42ea-ba95-492ab372689d/1/q-h3DqMlcRX6wbP-f-4IF0GD7N4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/f4319f-3dfb-42ea-ba95-492ab372689d/1/X75lriPyB_ppUlX1WpB6wWCL4JQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.251.38.0/24
Signature Algorithm: sha256WithRSAEncryption
57:c2:39:4d:5a:2d:fc:bc:41:87:e0:5a:16:69:ea:24:1d:72:
e8:6d:88:82:07:8b:c1:81:9d:9d:d3:20:91:a4:b6:10:4f:70:
f8:bd:fd:84:7f:3a:9d:80:3e:49:a2:26:fc:54:0e:e8:0d:63:
93:a1:87:03:2a:e0:7f:38:6e:77:2b:3f:42:52:06:80:91:60:
d4:b4:84:b5:28:4e:f6:0f:46:34:33:3e:eb:00:4a:9e:09:59:
af:06:67:f2:08:de:a7:e2:36:76:13:e5:e6:4a:74:38:f2:07:
6c:01:c6:b5:fb:13:d4:9c:8e:ed:a1:75:4d:65:26:45:9e:b9:
ab:a7:b4:fc:ce:a8:d2:10:35:b1:20:0d:d2:ba:41:72:ee:9d:
63:94:7e:aa:5b:ce:3d:e8:6f:59:9e:63:25:d1:b1:6b:8e:44:
1d:a6:42:d0:2d:24:c7:4d:37:03:df:7e:b5:49:78:e6:b1:11:
00:6b:7a:75:13:19:fb:7b:f2:eb:35:18:b8:cd:63:a5:ea:03:
1d:06:ad:53:26:8c:6c:86:ef:d5:2a:9e:53:73:08:6e:f9:65:
75:da:f1:a8:a4:b1:21:9b:fe:b6:2a:92:a4:f4:45:ed:c2:79:
fb:49:9e:e2:ea:3d:f8:d9:82:65:44:20:8f:68:64:41:cb:50:
aa:a8:98:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:59 2024 by rpki-client on console-fra.rpki-client.org