Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/944f2a-f673-42bf-9e3d-edcef7451ef4/1/qfD1Q1-tjaN0rCKppDL51ECOxzk.roa
File: qfD1Q1-tjaN0rCKppDL51ECOxzk.roa (raw, json)
Hash identifier: FBGUtwhaZJqe4sKgcZIx54TdxKkHk/u/GGYvtRFRR8U=
Subject key identifier: A9:F0:F5:43:5F:AD:8D:A3:74:AC:22:A9:A4:32:F9:D4:40:8E:C7:39
Certificate issuer: /CN=cd4065967dec092b5fc90152e4a95339ba1d2289
Certificate serial: 0185701514C43262FC5C4E7FB672B961A3E1
Authority key identifier: CD:40:65:96:7D:EC:09:2B:5F:C9:01:52:E4:A9:53:39:BA:1D:22:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zUBlln3sCStfyQFS5KlTObodIok.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/944f2a-f673-42bf-9e3d-edcef7451ef4/1/qfD1Q1-tjaN0rCKppDL51ECOxzk.roa
Signing time: Mon 02 Jan 2023 01:25:07 +0000
ROA not before: Mon 02 Jan 2023 01:25:07 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207633
IP address blocks: 185.144.12.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 13 Apr 2023 18:19:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:15:14:c4:32:62:fc:5c:4e:7f:b6:72:b9:61:a3:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd4065967dec092b5fc90152e4a95339ba1d2289
Validity
Not Before: Jan 2 01:25:07 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a9f0f5435fad8da374ac22a9a432f9d4408ec739
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:0e:bb:45:28:80:a5:60:de:da:db:21:1d:6e:
39:95:1e:d4:d7:2a:c2:1f:3e:0c:db:d6:48:9f:25:
52:e7:9d:53:0b:96:46:13:80:ce:a5:9c:50:8a:6e:
28:37:85:70:72:a5:18:8d:17:4b:f1:18:a5:bc:ee:
8b:e6:fb:79:ad:e1:31:74:21:be:c7:ac:10:0a:54:
1a:ec:a4:01:d3:f6:f3:7d:d1:d9:40:79:ed:f7:9b:
f9:43:82:9f:41:25:e9:c2:9c:bc:a0:33:33:b3:b6:
bb:51:cf:a8:53:06:33:95:5d:d6:8d:57:f3:9e:cf:
69:b9:12:9a:8e:0f:51:33:6c:c5:a8:41:66:6a:57:
b6:75:6e:b7:e2:87:08:c0:5e:18:01:79:ba:4e:a7:
c0:98:57:a0:de:a6:9e:20:a0:1e:f2:03:ee:31:c9:
16:ef:f3:27:64:5e:41:86:1e:6a:cf:8f:b7:1b:52:
c1:5f:9e:82:70:31:83:9e:59:17:41:f6:8d:cd:69:
0f:05:23:c5:f0:2a:60:a2:3a:3a:0b:4d:19:ee:68:
24:25:8a:51:89:07:6f:04:9b:5a:08:eb:0a:79:2c:
e2:64:05:38:fc:74:14:a5:06:a1:20:12:d3:0a:cb:
05:f8:4f:34:f4:05:b0:3f:f9:95:1a:55:40:75:e0:
7d:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:F0:F5:43:5F:AD:8D:A3:74:AC:22:A9:A4:32:F9:D4:40:8E:C7:39
X509v3 Authority Key Identifier:
keyid:CD:40:65:96:7D:EC:09:2B:5F:C9:01:52:E4:A9:53:39:BA:1D:22:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zUBlln3sCStfyQFS5KlTObodIok.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/944f2a-f673-42bf-9e3d-edcef7451ef4/1/qfD1Q1-tjaN0rCKppDL51ECOxzk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/944f2a-f673-42bf-9e3d-edcef7451ef4/1/zUBlln3sCStfyQFS5KlTObodIok.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.144.12.0/24
Signature Algorithm: sha256WithRSAEncryption
75:a0:c4:68:b8:95:17:c0:35:34:74:24:fe:eb:2c:ef:1e:b9:
da:9d:d5:f8:07:18:b9:f5:40:6c:49:8a:fc:de:0b:83:bc:3a:
e2:1c:08:a2:61:ad:36:31:19:de:d4:e5:22:af:f1:32:41:33:
3b:94:2a:59:14:6f:3d:71:ef:be:f2:a8:9b:5b:78:19:1e:4a:
46:3d:aa:76:e6:54:9e:0e:fb:af:e7:b1:43:fa:e3:59:3e:1f:
b2:b2:7d:1a:b9:d9:eb:a5:6d:31:d1:83:28:15:7f:c6:9a:c7:
72:34:16:43:2d:8f:00:bf:eb:04:0a:19:d2:ce:28:2f:d9:13:
48:92:42:f7:f6:6b:25:23:5e:b3:18:57:25:f4:f9:3f:93:22:
fe:22:44:dc:3e:40:70:85:24:fd:ad:1c:59:8e:ae:11:a9:bf:
01:ca:60:49:f8:22:10:d9:c0:b9:8e:1c:2f:a6:f3:d8:b2:7e:
eb:a7:44:76:cc:74:63:5f:3a:4d:77:3a:5a:ee:58:45:81:f6:
af:06:4a:93:10:28:cd:40:12:e1:0a:2b:6f:f7:d8:7e:1e:62:
cf:02:9f:54:e2:8e:8d:63:cb:d2:0d:00:7f:52:86:6a:13:f7:
e5:3d:7c:be:b4:2f:62:ca:79:54:2f:59:9f:1c:cf:f6:ac:9a:
c3:f1:e7:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:09 2024 by rpki-client on console-fra.rpki-client.org