Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/8d7c57-ba65-47fc-bcc4-c33018633d33/1/qTbdsVCsXKhlztbeetifh8dppzM.roa
File: qTbdsVCsXKhlztbeetifh8dppzM.roa (raw, json)
Hash identifier: qryRwLwiOBUSlF3YsHzMRh5rx8N7EJfRC6fHZZKsDr4=
Subject key identifier: A9:36:DD:B1:50:AC:5C:A8:65:CE:D6:DE:7A:D8:9F:87:C7:69:A7:33
Certificate issuer: /CN=30f1ba6111c8f1d3f37c1b7c1a5ed737402192f2
Certificate serial: 0185711E48AE285E05731FD480ADFBF37915
Authority key identifier: 30:F1:BA:61:11:C8:F1:D3:F3:7C:1B:7C:1A:5E:D7:37:40:21:92:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MPG6YRHI8dPzfBt8Gl7XN0AhkvI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/8d7c57-ba65-47fc-bcc4-c33018633d33/1/qTbdsVCsXKhlztbeetifh8dppzM.roa
Signing time: Mon 02 Jan 2023 06:14:48 +0000
ROA not before: Mon 02 Jan 2023 06:14:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209163
IP address blocks: 185.204.162.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:48:ae:28:5e:05:73:1f:d4:80:ad:fb:f3:79:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30f1ba6111c8f1d3f37c1b7c1a5ed737402192f2
Validity
Not Before: Jan 2 06:14:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a936ddb150ac5ca865ced6de7ad89f87c769a733
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:0c:cd:08:30:05:64:f7:ca:e5:d6:bc:2e:03:
77:c7:9a:62:4d:cd:cf:05:f9:6e:28:1b:8e:16:a3:
25:aa:5a:15:a8:81:71:cc:20:67:0e:21:e1:55:23:
11:15:66:22:d5:04:3d:2f:1e:90:ac:e3:19:9b:99:
c2:ee:10:9f:91:f9:59:39:dd:c7:97:ba:23:b3:28:
bb:f6:71:f0:f1:a1:5a:0b:83:1a:08:c8:52:ec:49:
ea:9e:77:24:f9:cb:0f:7b:28:79:6d:07:ab:11:d9:
b8:2e:47:6b:83:fc:d7:e2:52:b1:ed:de:81:c1:4e:
f9:96:a7:83:a5:d2:be:a2:f2:d9:29:a0:12:60:1b:
dc:e9:26:4d:06:fd:0b:84:a2:f7:48:32:e2:fa:45:
87:5f:a8:61:23:4f:1e:f5:20:39:97:fb:f6:5d:6c:
3b:ce:4a:f2:1d:d7:ca:86:a9:1f:6d:3f:4c:e1:a3:
7f:82:d9:9a:8e:1d:9d:a0:79:55:9c:04:14:f9:90:
e8:cc:5d:1f:ce:70:ce:65:2f:b0:8b:b2:df:46:d9:
a9:bd:89:e4:d1:d6:a9:11:a8:07:09:b8:bf:f9:c4:
fb:5a:d9:42:4c:88:c9:4b:26:00:4d:b3:5b:9b:31:
ae:dd:ee:68:ee:4f:43:b3:83:4e:73:10:e1:95:74:
be:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:36:DD:B1:50:AC:5C:A8:65:CE:D6:DE:7A:D8:9F:87:C7:69:A7:33
X509v3 Authority Key Identifier:
keyid:30:F1:BA:61:11:C8:F1:D3:F3:7C:1B:7C:1A:5E:D7:37:40:21:92:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MPG6YRHI8dPzfBt8Gl7XN0AhkvI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/8d7c57-ba65-47fc-bcc4-c33018633d33/1/qTbdsVCsXKhlztbeetifh8dppzM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/8d7c57-ba65-47fc-bcc4-c33018633d33/1/MPG6YRHI8dPzfBt8Gl7XN0AhkvI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.204.162.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:47:5a:67:9c:e1:c3:09:65:f8:88:ba:09:d8:a1:c9:bd:62:
fb:b4:00:42:5f:b1:bb:32:c9:ad:00:29:0e:9f:92:92:cb:2e:
a9:a6:a2:a6:91:b3:10:d8:ee:8a:d9:9c:1e:05:6b:e3:79:65:
dd:32:b8:9c:61:5e:38:c5:28:6f:4e:4c:3c:6f:2b:88:a9:9a:
d9:a1:fe:10:eb:f7:80:39:61:3b:cf:7f:86:22:ac:f9:b5:9c:
72:52:1b:19:73:be:eb:f1:f3:36:32:7f:8a:39:e3:31:77:35:
f1:d2:f4:4f:58:92:65:b0:7b:d8:83:a0:a2:0f:b8:e7:d8:64:
7d:60:21:df:fc:e2:a4:6d:e6:74:08:5a:fd:59:e3:dc:dc:cd:
41:05:7b:91:e9:9e:90:c7:e4:fd:56:8b:bc:17:b0:83:48:6c:
a5:fc:ad:fa:f2:da:69:0a:da:91:96:49:4b:eb:2e:24:a3:8d:
ec:b9:05:b1:e7:56:69:f4:9b:bf:3c:27:98:64:a1:c1:f6:eb:
7c:1a:24:e8:41:1f:a5:ce:e5:a7:c2:24:bd:c2:99:f1:7a:6e:
ce:ea:e8:0c:46:e7:86:f8:72:66:36:84:6d:6c:75:93:81:f2:
3c:5a:d6:13:bb:e8:00:1f:a9:52:11:81:d4:96:3b:81:d7:c4:
55:06:10:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:31 2024 by rpki-client on console-ams.rpki-client.org