Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/f8a9eb-7f8d-4bf7-83d9-9096e1674e22/1/QFAArZbTJC-9ztSP74eiBJNFAOM.roa
File: QFAArZbTJC-9ztSP74eiBJNFAOM.roa (raw, json)
Hash identifier: ikgKKf5U8yqRLYN+jJilQo8x/eT2aCxvHzLTiEhuPn8=
Subject key identifier: 40:50:00:AD:96:D3:24:2F:BD:CE:D4:8F:EF:87:A2:04:93:45:00:E3
Certificate issuer: /CN=92e720465c5cd0da9c6a13b44fa0d86f649e5055
Certificate serial: 0185C967D773F50196FD2814FB5CB9964404
Authority key identifier: 92:E7:20:46:5C:5C:D0:DA:9C:6A:13:B4:4F:A0:D8:6F:64:9E:50:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kucgRlxc0NqcahO0T6DYb2SeUFU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/f8a9eb-7f8d-4bf7-83d9-9096e1674e22/1/QFAArZbTJC-9ztSP74eiBJNFAOM.roa
Signing time: Thu 19 Jan 2023 09:41:43 +0000
ROA not before: Thu 19 Jan 2023 09:41:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 147.161.3.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 30 Jan 2023 12:16:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:c9:67:d7:73:f5:01:96:fd:28:14:fb:5c:b9:96:44:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92e720465c5cd0da9c6a13b44fa0d86f649e5055
Validity
Not Before: Jan 19 09:41:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=405000ad96d3242fbdced48fef87a204934500e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:d1:08:e2:30:05:43:6f:58:43:e5:82:fe:63:
5f:7c:dd:cb:88:f9:3d:f1:3c:52:45:4e:90:19:2f:
67:31:ab:9e:89:8c:92:ad:21:a5:ee:cd:25:25:0d:
06:79:51:ff:5f:4b:2c:b1:a6:2b:c3:39:f7:32:82:
55:fa:77:74:52:c6:1a:0e:fd:cd:14:14:83:29:49:
eb:f2:51:2e:31:05:00:9a:f0:83:40:37:65:89:1c:
b5:9e:76:18:2d:b4:fb:ab:82:de:45:10:4a:95:40:
1f:b0:3a:78:33:03:f9:09:37:82:1a:ea:97:61:bf:
1e:67:46:a6:53:f2:98:71:b8:92:3e:a7:77:01:23:
f2:48:89:c3:b1:63:6d:04:66:59:70:99:1b:1e:f2:
6e:c9:fb:fe:1e:36:e7:1c:c8:24:be:86:e0:af:8b:
8a:ee:65:c6:18:72:95:09:c4:e5:90:b1:3a:00:16:
e4:98:1c:f3:3a:3d:f1:01:68:33:00:e9:24:05:f4:
d7:53:bd:83:4b:f1:db:78:55:5f:4e:4c:5d:ba:8b:
39:28:ce:ec:01:12:d1:05:15:2f:e8:ef:e3:1c:b2:
67:73:23:ca:62:c8:e4:35:75:54:8d:ef:9e:d0:3c:
90:1d:8b:89:cc:27:d8:58:82:a3:42:51:d9:42:10:
9d:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:50:00:AD:96:D3:24:2F:BD:CE:D4:8F:EF:87:A2:04:93:45:00:E3
X509v3 Authority Key Identifier:
keyid:92:E7:20:46:5C:5C:D0:DA:9C:6A:13:B4:4F:A0:D8:6F:64:9E:50:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kucgRlxc0NqcahO0T6DYb2SeUFU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/f8a9eb-7f8d-4bf7-83d9-9096e1674e22/1/QFAArZbTJC-9ztSP74eiBJNFAOM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/f8a9eb-7f8d-4bf7-83d9-9096e1674e22/1/kucgRlxc0NqcahO0T6DYb2SeUFU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.161.3.0/24
Signature Algorithm: sha256WithRSAEncryption
cb:39:3d:94:55:3b:d7:3c:af:51:2b:86:89:13:ea:61:4c:6c:
8b:54:4d:cb:67:6f:5a:ff:22:d4:ea:67:b1:c1:0a:7b:23:ec:
c3:69:0a:e0:58:84:fd:f4:a9:83:16:6d:a1:a4:ef:f2:d4:d2:
b5:a6:fd:eb:25:4b:e2:e6:c8:ff:b5:46:b1:da:6b:79:85:26:
82:a5:cb:76:47:c4:00:c4:5e:db:35:08:af:e3:2a:79:21:1f:
3e:c3:f4:2e:4a:02:fe:f7:89:00:13:0c:2f:ce:78:ad:26:97:
db:9a:f8:f3:85:6a:a0:bc:08:9c:7e:4b:c3:0c:51:c9:eb:1d:
fb:cf:6b:52:ba:fb:68:e5:69:be:5b:b2:b8:3a:e8:0a:f6:fd:
40:67:97:98:1e:e7:33:6f:92:f5:3a:0b:96:0c:26:98:79:a3:
24:ed:6b:30:3a:34:d4:47:02:58:b5:5f:de:3f:a6:cf:66:60:
dc:92:ff:1f:3e:19:41:7f:f1:5c:7a:3f:66:6a:da:5f:ac:0c:
06:88:49:39:46:8b:c5:c9:7d:f6:37:2a:88:1b:6f:e9:62:b1:
78:cc:3b:03:f1:ec:20:17:0e:6b:1a:85:3e:0b:fd:20:2a:49:
74:74:9a:5e:a9:c5:87:9c:6f:51:92:b4:2e:bb:9b:20:4e:f0:
3c:12:6f:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:20 2024 by rpki-client on console-fra.rpki-client.org