Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/46ca25-7595-4e7f-a4b1-23386749fbdf/1/q_LgqCxkYhJXjP1Z5RTD248VyaY.roa
File: q_LgqCxkYhJXjP1Z5RTD248VyaY.roa (raw, json)
Hash identifier: Bja4Vhm5kjCEYeVogjHmrBg5oXGW1pgQIi8VLHWX0U0=
Subject key identifier: AB:F2:E0:A8:2C:64:62:12:57:8C:FD:59:E5:14:C3:DB:8F:15:C9:A6
Certificate issuer: /CN=0acf0a954639c83582974bd29c1992272b3683a3
Certificate serial: 018572DEF3F1A674B53136DFC23AB7D36E65
Authority key identifier: 0A:CF:0A:95:46:39:C8:35:82:97:4B:D2:9C:19:92:27:2B:36:83:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Cs8KlUY5yDWCl0vSnBmSJys2g6M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/46ca25-7595-4e7f-a4b1-23386749fbdf/1/q_LgqCxkYhJXjP1Z5RTD248VyaY.roa
Signing time: Mon 02 Jan 2023 14:24:52 +0000
ROA not before: Mon 02 Jan 2023 14:24:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20473
IP address blocks: 185.202.110.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:de:f3:f1:a6:74:b5:31:36:df:c2:3a:b7:d3:6e:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0acf0a954639c83582974bd29c1992272b3683a3
Validity
Not Before: Jan 2 14:24:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=abf2e0a82c646212578cfd59e514c3db8f15c9a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:c7:45:df:20:0d:d4:73:2c:77:15:3c:d5:b7:
67:b5:be:d4:d8:dc:b2:08:82:97:2a:85:66:a2:2e:
72:20:a8:04:93:80:1e:43:52:16:0d:f0:cf:3a:06:
f5:40:70:2b:7a:42:46:68:3e:7b:ed:40:89:e2:52:
90:ac:65:67:7d:b1:fb:4e:96:05:a7:13:b3:b5:6a:
41:65:a1:97:3d:44:b0:74:9d:2c:02:cf:ef:47:60:
7c:51:b9:38:f7:e9:6f:dc:34:f9:e2:b5:f4:a7:00:
2f:b5:46:46:21:9a:13:95:f6:09:ea:71:26:ab:92:
5d:93:c2:03:26:8f:1f:d8:81:52:ae:9c:44:8b:c5:
53:75:6d:27:f3:47:7f:84:d6:43:32:28:82:08:97:
03:dd:6a:ef:cf:5f:61:e5:17:f1:95:fb:09:99:09:
bb:11:05:de:53:d5:43:6f:35:d1:ec:b0:b6:ea:93:
1c:60:b6:33:d1:7d:1e:bf:21:df:bb:37:6f:ab:a1:
3b:3d:76:ab:45:0c:65:cc:f0:ae:2f:fc:6d:f8:d7:
37:6c:cf:96:24:ac:10:79:e0:c6:14:6e:74:d8:56:
21:04:db:d9:b9:67:9b:8a:fc:cd:d4:79:a9:ef:aa:
19:98:37:4a:23:85:e8:26:7e:fe:ef:bd:c8:5d:7a:
97:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:F2:E0:A8:2C:64:62:12:57:8C:FD:59:E5:14:C3:DB:8F:15:C9:A6
X509v3 Authority Key Identifier:
keyid:0A:CF:0A:95:46:39:C8:35:82:97:4B:D2:9C:19:92:27:2B:36:83:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Cs8KlUY5yDWCl0vSnBmSJys2g6M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/46ca25-7595-4e7f-a4b1-23386749fbdf/1/q_LgqCxkYhJXjP1Z5RTD248VyaY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/46ca25-7595-4e7f-a4b1-23386749fbdf/1/Cs8KlUY5yDWCl0vSnBmSJys2g6M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.202.110.0/24
Signature Algorithm: sha256WithRSAEncryption
83:d2:57:4a:47:b6:31:80:bd:d2:65:d0:6c:93:d1:e2:a7:b6:
eb:bf:4b:39:45:c5:9c:c0:b3:2d:6a:a3:0a:71:59:8b:11:90:
98:ee:7f:b3:37:cb:d1:62:95:64:f2:1b:72:d6:75:65:97:a3:
dd:4d:a5:83:ab:d5:5a:43:fc:94:83:d5:68:ad:23:b6:df:a5:
fe:31:68:6b:ff:a5:c8:6a:62:26:e3:6a:f7:99:62:43:e5:b2:
8f:bd:91:33:6f:9c:ee:c0:82:48:a1:14:b1:8c:72:05:bd:42:
d6:53:69:cb:58:f6:11:f9:51:ac:cb:dc:df:b1:51:60:ed:41:
7e:81:4e:54:56:76:54:97:94:d8:1e:d8:33:a6:24:90:e0:50:
88:05:8d:d0:0c:5e:25:d8:74:d4:d3:9b:66:a6:6e:d8:0c:e0:
65:e2:b4:0b:57:0d:8d:96:28:06:db:3b:14:11:dc:d7:e0:5f:
10:e5:79:23:a9:1c:fc:6c:b4:1a:8d:cd:0e:a6:f8:c4:e3:90:
01:2e:a6:56:d4:f2:a5:3b:18:69:06:14:d2:f6:64:f3:e8:5c:
53:83:03:94:82:dd:cf:21:cc:1c:b6:af:14:df:f3:c3:59:52:
f8:a8:ce:39:30:49:54:a6:19:c6:f6:a3:34:4c:8e:37:90:ea:
79:09:79:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:01 2023 by rpki-client on console-ams.rpki-client.org