Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/c17c5d-7543-440f-878f-1769fef6be96/1/QIHGzZRaQt9Q_a6w2PCVZZrX-Ec.roa
File: QIHGzZRaQt9Q_a6w2PCVZZrX-Ec.roa (raw, json)
Hash identifier: 7FFPvywtutwz8MYVaOaOjiwO4cdifkxvsny5cfUXXEM=
Subject key identifier: 40:81:C6:CD:94:5A:42:DF:50:FD:AE:B0:D8:F0:95:65:9A:D7:F8:47
Certificate issuer: /CN=42f8ab2ba24879e45c445486fceb21af46656d5a
Certificate serial: 01856BE5B33F5A3E3B7D11D3B491E3967996
Authority key identifier: 42:F8:AB:2B:A2:48:79:E4:5C:44:54:86:FC:EB:21:AF:46:65:6D:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QvirK6JIeeRcRFSG_Oshr0ZlbVo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/c17c5d-7543-440f-878f-1769fef6be96/1/QIHGzZRaQt9Q_a6w2PCVZZrX-Ec.roa
Signing time: Sun 01 Jan 2023 05:54:53 +0000
ROA not before: Sun 01 Jan 2023 05:54:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206638
IP address blocks: 217.147.172.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 19 Jul 2023 07:29:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:e5:b3:3f:5a:3e:3b:7d:11:d3:b4:91:e3:96:79:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42f8ab2ba24879e45c445486fceb21af46656d5a
Validity
Not Before: Jan 1 05:54:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4081c6cd945a42df50fdaeb0d8f095659ad7f847
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:1a:19:18:be:4d:68:f1:49:5a:f7:82:30:29:
3a:54:d4:b1:d3:58:5d:da:15:9d:d2:68:5e:9c:01:
13:40:70:11:0d:6a:97:47:b4:38:cd:08:3c:03:c4:
3f:e7:0d:f1:3f:20:b2:81:f1:de:23:02:2d:fa:ba:
af:b5:a8:fc:f1:d3:bb:8b:30:1a:24:70:ad:bd:64:
d8:7d:47:61:35:3b:f9:9b:8e:59:ca:06:35:ea:77:
21:07:27:13:f9:70:4d:a0:1f:80:7d:c8:f9:99:6d:
99:83:71:53:5c:ba:69:07:03:81:b5:20:3a:63:04:
00:64:5e:df:cc:53:5a:62:b4:fb:92:45:8b:65:c7:
c6:33:52:27:f4:01:31:80:0c:c0:a6:6a:f4:3c:43:
2d:b9:e5:a0:63:3b:54:f7:51:24:fd:44:02:51:96:
b4:56:44:35:ee:35:61:24:ff:b6:3d:af:cf:e9:54:
ec:7a:d9:38:0b:c5:ec:85:c0:85:52:09:20:bb:ac:
eb:0b:b1:cd:40:29:13:d7:1d:32:c8:a0:88:d8:29:
05:89:46:5e:44:71:cf:55:07:b9:8f:de:4b:8e:b2:
7e:f1:0e:81:f5:d7:ab:e7:3a:32:7e:f5:c4:26:2b:
eb:15:ed:94:fe:38:bc:6c:d8:0e:99:f8:26:ab:d3:
4b:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:81:C6:CD:94:5A:42:DF:50:FD:AE:B0:D8:F0:95:65:9A:D7:F8:47
X509v3 Authority Key Identifier:
keyid:42:F8:AB:2B:A2:48:79:E4:5C:44:54:86:FC:EB:21:AF:46:65:6D:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QvirK6JIeeRcRFSG_Oshr0ZlbVo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/c17c5d-7543-440f-878f-1769fef6be96/1/QIHGzZRaQt9Q_a6w2PCVZZrX-Ec.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/c17c5d-7543-440f-878f-1769fef6be96/1/QvirK6JIeeRcRFSG_Oshr0ZlbVo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.147.172.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:3b:af:13:f4:44:9f:de:1b:af:7b:9d:7d:73:dd:ab:af:f7:
b3:fe:74:37:9d:91:a4:68:f0:5b:1c:76:f1:40:d8:30:ba:80:
b9:15:56:5e:5e:93:8c:9c:f2:d6:53:a0:64:0d:aa:44:3a:a6:
fc:e3:9b:12:79:50:40:ad:f5:02:d6:22:33:13:dd:db:62:ba:
17:36:f9:02:ce:ed:e2:f2:1f:4c:20:d0:cb:66:56:f3:05:70:
d9:c4:eb:48:c8:0c:91:09:00:c7:e0:ee:e4:6e:c1:61:62:70:
63:0e:45:0e:f6:24:66:90:5a:91:3f:db:9e:10:72:f5:16:2f:
59:8e:7b:f9:39:50:d7:7d:1d:ab:aa:51:7f:4f:8e:7b:18:1d:
04:a3:1f:ec:d9:b6:69:d6:3c:f7:6f:fd:3a:c5:3d:f4:63:04:
4d:f5:14:44:4b:5a:96:57:34:df:56:da:74:c6:3b:fe:f3:b7:
1e:3c:f4:95:0a:5d:1a:26:19:fd:14:9b:53:1d:86:64:8c:bd:
8c:a0:9c:f4:c9:0e:80:6c:29:d0:c3:bb:e1:50:78:6a:1b:d7:
63:10:29:c0:3f:6f:9c:25:58:73:af:dc:e6:d5:da:e9:89:8e:
63:73:86:55:9b:41:89:58:33:79:50:0a:a4:d3:f5:c8:6c:3a:
d0:60:70:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:30 2024 by rpki-client on console-ams.rpki-client.org