Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/3ef042-eab6-4462-b03b-7f89b168d9d7/1/qrp0VDAwWCKMNcgW8O2o-bJbXQQ.roa
File: qrp0VDAwWCKMNcgW8O2o-bJbXQQ.roa (raw, json)
Hash identifier: IQ4NYnHSvwdY7S1FzsNc2RTSzuAoMVgoeIVKqq6WvTk=
Subject key identifier: AA:BA:74:54:30:30:58:22:8C:35:C8:16:F0:ED:A8:F9:B2:5B:5D:04
Certificate issuer: /CN=2ae4a8cf94403c7f9dad27f3c9ffe731e86b7787
Certificate serial: 01857139C665F5ACE2D7EE27E667435F63FE
Authority key identifier: 2A:E4:A8:CF:94:40:3C:7F:9D:AD:27:F3:C9:FF:E7:31:E8:6B:77:87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KuSoz5RAPH-drSfzyf_nMehrd4c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/3ef042-eab6-4462-b03b-7f89b168d9d7/1/qrp0VDAwWCKMNcgW8O2o-bJbXQQ.roa
Signing time: Mon 02 Jan 2023 06:44:49 +0000
ROA not before: Mon 02 Jan 2023 06:44:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48348
IP address blocks: 185.86.248.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:39:c6:65:f5:ac:e2:d7:ee:27:e6:67:43:5f:63:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ae4a8cf94403c7f9dad27f3c9ffe731e86b7787
Validity
Not Before: Jan 2 06:44:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=aaba7454303058228c35c816f0eda8f9b25b5d04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:05:a8:f4:12:db:f0:e9:de:a2:8f:9f:c8:d5:
de:20:ee:20:65:7a:f5:87:62:fe:5b:bd:39:0d:34:
cc:2e:0e:fd:5c:e8:2b:fb:f5:4e:a7:26:70:b5:a2:
94:62:9f:89:c9:fd:39:69:1e:54:ed:ee:6b:c3:26:
8d:4d:62:54:53:c7:f7:b1:74:5d:5b:db:52:66:8c:
d3:7f:48:78:b8:db:5e:12:bf:5b:8c:e8:e1:b0:69:
55:08:1d:6e:38:e7:b2:3c:fa:32:37:7a:0d:cc:3b:
e0:45:81:57:70:14:2f:c6:d5:91:c3:b9:78:54:62:
3a:99:b8:f4:86:74:40:c6:a7:b3:9d:83:dc:24:16:
da:38:27:b3:a1:fb:e9:61:8c:e7:85:b7:a9:3b:69:
08:9d:65:e6:f7:3d:3a:f7:dc:3b:bb:1d:6e:7e:7e:
c0:79:42:74:92:18:8e:b9:bf:0b:67:2b:21:9a:8e:
10:06:5a:e9:48:7d:95:bc:82:f7:05:ea:2b:44:c5:
3f:ab:3e:57:8e:54:7e:1d:60:a1:75:2f:be:db:6b:
64:ea:83:60:c2:7c:58:76:6a:12:31:6c:b4:fc:9b:
4a:e2:a3:01:9b:44:5d:80:13:7b:6a:ae:cf:8a:a9:
a9:8d:a0:d8:cf:42:7d:90:b5:98:73:44:6f:3f:4c:
d5:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:BA:74:54:30:30:58:22:8C:35:C8:16:F0:ED:A8:F9:B2:5B:5D:04
X509v3 Authority Key Identifier:
keyid:2A:E4:A8:CF:94:40:3C:7F:9D:AD:27:F3:C9:FF:E7:31:E8:6B:77:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KuSoz5RAPH-drSfzyf_nMehrd4c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/3ef042-eab6-4462-b03b-7f89b168d9d7/1/qrp0VDAwWCKMNcgW8O2o-bJbXQQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/3ef042-eab6-4462-b03b-7f89b168d9d7/1/KuSoz5RAPH-drSfzyf_nMehrd4c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.86.248.0/22
Signature Algorithm: sha256WithRSAEncryption
91:ca:f1:bb:ce:12:e1:b0:51:56:54:08:b8:13:02:04:7f:ea:
9a:41:e0:eb:73:9b:d6:64:84:a4:ff:c5:d9:42:67:ea:22:af:
98:cd:49:f8:bc:4f:53:e2:2f:01:af:02:f3:a5:e6:ab:37:24:
4e:85:71:d6:d5:7d:15:7a:89:df:b2:66:f8:a5:d6:e9:58:fd:
88:1d:a6:09:8a:e5:0e:99:fb:73:dd:6a:37:79:0e:fe:7d:7e:
e8:54:c6:f8:68:a5:b7:9f:ae:53:96:4a:6e:fb:52:7b:36:f4:
3a:b5:75:1b:0f:1a:e8:96:5b:e2:bb:26:24:28:54:47:9f:58:
59:00:ef:bb:39:89:5d:f3:59:3d:fd:00:b1:65:7c:0d:28:a6:
8b:c7:7e:93:c8:9d:99:44:36:94:5f:8f:dd:d7:e1:ce:3d:f6:
5c:68:2c:84:0a:18:bd:30:ca:7e:a9:55:5e:2c:1d:2f:49:ce:
5b:26:e8:91:d6:e2:56:8f:80:f7:21:34:e8:3c:93:3b:26:24:
b8:bc:02:23:63:5b:af:f3:e3:86:74:9b:8c:44:28:2c:16:d9:
7b:28:b5:99:ef:62:6c:43:e9:84:86:b2:7c:44:07:69:76:79:
17:5f:2b:3f:14:c3:ba:64:37:ac:0a:a0:83:fd:b1:ab:d4:14:
01:71:88:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:35 2024 by rpki-client on console-fra.rpki-client.org