Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/9571da-efca-41d6-85f3-d6a99934c493/1/QuTWKh8I7Y3IqQp6xFu2WM4EVtw.roa
File: QuTWKh8I7Y3IqQp6xFu2WM4EVtw.roa (raw, json)
Hash identifier: qLJnqNStj8w1jnT8TCXJ+ZMgwKFjoEJ/q4jeEANz3lE=
Subject key identifier: 42:E4:D6:2A:1F:08:ED:8D:C8:A9:0A:7A:C4:5B:B6:58:CE:04:56:DC
Certificate issuer: /CN=574cec4760eda2f09feb6f77f72142be699bb8c3
Certificate serial: 018CCA2B3DCE949E48D6F515393A20CCA0FD
Authority key identifier: 57:4C:EC:47:60:ED:A2:F0:9F:EB:6F:77:F7:21:42:BE:69:9B:B8:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V0zsR2DtovCf62939yFCvmmbuMM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/9571da-efca-41d6-85f3-d6a99934c493/1/QuTWKh8I7Y3IqQp6xFu2WM4EVtw.roa
Signing time: Tue 02 Jan 2024 12:34:40 +0000
ROA not before: Tue 02 Jan 2024 12:34:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49981
IP address blocks: 194.76.46.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 30 Apr 2024 23:08:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2b:3d:ce:94:9e:48:d6:f5:15:39:3a:20:cc:a0:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=574cec4760eda2f09feb6f77f72142be699bb8c3
Validity
Not Before: Jan 2 12:34:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=42e4d62a1f08ed8dc8a90a7ac45bb658ce0456dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:0f:7b:d5:54:f9:99:1b:66:8d:3b:6b:63:4f:
ad:2f:c9:5c:cd:10:40:df:48:73:0d:33:aa:b0:2f:
e9:7c:13:b6:93:5d:9f:8a:b1:cc:72:d0:e1:bd:db:
57:f4:99:7c:6a:22:e2:90:98:8b:82:56:25:61:38:
52:79:e8:70:19:7b:bb:78:6b:9a:d5:e3:a2:9a:46:
d0:59:55:bb:45:c4:80:2f:11:b6:e7:1a:5e:f8:bd:
7f:c5:6b:80:c3:f7:43:7b:77:30:d6:c5:7e:fc:a3:
0b:2f:1f:84:f0:47:b0:8d:f1:47:5b:cf:8c:f4:36:
c1:a5:63:3a:34:7c:47:9a:24:42:1f:aa:d3:fc:df:
ee:03:41:6b:d0:3a:29:de:ac:97:5a:f2:6e:cb:e5:
8b:1f:1b:9a:c2:8a:45:9a:21:72:d6:e4:c4:96:14:
41:ba:99:f0:e4:32:ae:c8:20:4a:e8:c6:56:af:5b:
3c:82:eb:59:93:5a:09:3f:3e:eb:74:1b:f9:36:1b:
9a:5d:1f:7c:80:2b:18:21:8c:54:38:ed:ee:26:23:
a2:ec:b0:ca:8c:54:92:16:e0:d3:31:54:ab:e5:41:
db:65:8e:a6:fc:6e:c5:b8:1e:94:47:46:65:35:10:
36:5a:3f:81:72:50:e4:c2:19:83:e0:47:94:8f:c1:
da:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:E4:D6:2A:1F:08:ED:8D:C8:A9:0A:7A:C4:5B:B6:58:CE:04:56:DC
X509v3 Authority Key Identifier:
keyid:57:4C:EC:47:60:ED:A2:F0:9F:EB:6F:77:F7:21:42:BE:69:9B:B8:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V0zsR2DtovCf62939yFCvmmbuMM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/9571da-efca-41d6-85f3-d6a99934c493/1/QuTWKh8I7Y3IqQp6xFu2WM4EVtw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/9571da-efca-41d6-85f3-d6a99934c493/1/V0zsR2DtovCf62939yFCvmmbuMM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.76.46.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:9c:33:0f:1e:72:2c:0c:01:ed:59:ff:8f:13:07:41:09:c7:
05:47:df:a0:cc:58:62:43:53:21:71:72:67:ce:3e:03:b9:a1:
94:1b:cf:66:c9:e8:8f:d1:10:02:3b:98:ac:07:7e:8f:59:9e:
2a:a4:e9:1b:01:b2:0e:e3:12:f3:fd:d0:ba:40:e1:00:5a:0a:
63:d3:a4:92:c6:5e:d0:ec:30:2b:63:23:19:ee:4a:9d:79:be:
70:af:b4:ae:9c:d7:f2:2c:35:3a:61:31:73:55:a5:6d:ae:16:
5a:22:78:9e:b4:0d:18:bc:b4:83:9b:d7:af:4e:cf:77:26:99:
82:8b:a2:5c:a0:0c:e8:39:b3:35:61:1b:50:db:34:b4:c3:42:
72:b6:6e:8e:48:40:2b:ed:03:f2:93:c0:e4:c4:de:c7:7f:51:
fd:74:6f:30:13:64:f2:27:76:a4:d8:55:c2:93:a0:22:4b:b2:
c5:4f:24:2a:6f:b5:d8:fa:3b:bd:93:18:51:f9:1c:2e:7a:81:
0a:7f:c5:f4:d4:37:ad:82:14:f8:fd:28:69:6a:2c:97:0a:13:
6b:15:18:6d:f3:7c:e6:3c:22:a9:da:f5:a5:0f:f8:06:2c:2e:
0e:78:9f:6a:8d:2f:5d:8c:7d:89:27:0e:78:34:9b:0a:c1:1f:
64:54:1a:d7
-----BEGIN CERTIFICATE-----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Generated at Tue Apr 30 23:47:39 2024 by rpki-client on console-fra.rpki-client.org