Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/QZFoadNrtHaOQUC6zVIFgYQ2MUE.roa
File: QZFoadNrtHaOQUC6zVIFgYQ2MUE.roa (raw, json)
Hash identifier: mhzBEVB1wPgaVhw/bXTttAtLJdTQrHq5g4v5gfjOXKA=
Subject key identifier: 41:91:68:69:D3:6B:B4:76:8E:41:40:BA:CD:52:05:81:84:36:31:41
Certificate issuer: /CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Certificate serial: 0185737AC957136CC272ED27D15706853482
Authority key identifier: D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/QZFoadNrtHaOQUC6zVIFgYQ2MUE.roa
Signing time: Mon 02 Jan 2023 17:15:04 +0000
ROA not before: Mon 02 Jan 2023 17:15:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198411
IP address blocks: 5.226.16.0/20 maxlen: 24
45.157.56.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 21 Nov 2023 15:25:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:7a:c9:57:13:6c:c2:72:ed:27:d1:57:06:85:34:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Validity
Not Before: Jan 2 17:15:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=41916869d36bb4768e4140bacd52058184363141
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:e7:e0:44:53:a7:3d:ec:f4:89:e3:d9:11:bb:
ce:ca:a6:38:f1:72:45:3b:9b:a3:19:25:1e:3a:4f:
95:a4:81:14:93:2b:fd:5d:fb:5f:fb:60:08:47:da:
d3:84:39:0b:8c:df:7f:e1:20:95:07:65:55:c6:93:
c8:b2:a5:f9:08:d8:4b:3f:73:30:83:5c:6e:da:bb:
24:c3:6e:30:21:88:0c:36:69:6d:87:94:5a:7c:6d:
d0:ca:9a:44:3e:ff:6d:64:4a:28:cc:7a:11:bc:f0:
2b:9d:0d:c5:9c:08:92:71:c9:e2:c1:20:8a:2a:86:
1c:47:2d:87:4c:6a:53:5e:7f:34:81:08:14:c3:5e:
a4:51:0b:cc:d4:44:ec:10:95:14:3b:90:57:f6:e9:
77:59:dc:d7:d2:3c:81:be:a5:9f:c2:5f:dc:cd:fc:
f0:92:4a:55:3d:b4:a7:8a:a7:d8:2e:60:88:99:48:
91:5b:a8:7b:cd:2d:ec:71:17:68:4a:e1:20:21:45:
8c:1f:35:5c:a6:d4:89:d2:d5:2e:52:b0:77:a7:34:
86:36:af:37:58:5c:94:0b:37:5a:ae:a1:2a:9b:d7:
09:be:c8:2d:48:1b:eb:bc:0f:bd:88:3f:4c:ae:01:
29:48:65:1f:44:00:02:dd:40:00:da:47:f3:ad:50:
2a:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:91:68:69:D3:6B:B4:76:8E:41:40:BA:CD:52:05:81:84:36:31:41
X509v3 Authority Key Identifier:
keyid:D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/QZFoadNrtHaOQUC6zVIFgYQ2MUE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1HX7CTTPaljczvEQh12-Xj6La3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.226.16.0/20
45.157.56.0/22
Signature Algorithm: sha256WithRSAEncryption
1d:7c:3d:fd:97:38:95:d3:aa:84:28:c4:87:21:ff:f7:9d:36:
d9:bd:6e:f9:34:6d:59:c1:4a:d9:39:35:89:eb:68:2a:f6:77:
ce:c0:1f:6a:a6:d0:d9:37:23:bd:ee:9c:49:9f:dc:3f:29:ef:
6e:5a:ed:96:cf:68:68:d5:18:36:c8:75:84:ce:39:6c:3a:10:
01:a7:6e:41:40:a2:d7:14:92:ac:b2:e8:b8:ae:11:0d:be:ba:
cd:49:ca:38:a4:ff:18:ad:6f:9f:c4:33:76:9f:b5:7c:4d:39:
46:d8:30:5f:d7:76:f5:34:4d:e6:a7:34:ef:4a:63:e9:49:ab:
08:8d:f8:02:4c:72:82:54:b8:b8:d4:50:aa:76:45:99:3f:93:
0d:4b:d5:14:89:b9:09:e6:6f:81:83:dc:ce:6d:4e:25:3b:a3:
2e:d4:68:7d:09:72:fc:2d:ca:d0:9a:4a:d5:b8:9b:c4:c2:a0:
3b:4f:2a:98:49:07:e6:9c:86:64:57:bd:c5:e9:8c:75:18:3a:
b8:10:9e:96:5b:4d:a3:2d:29:95:1c:51:a4:c7:2b:a3:3d:fb:
0a:bf:25:b9:7d:52:67:85:ac:4a:63:06:54:5d:ce:4f:ba:c7:
19:f4:19:58:c4:5c:47:66:f7:a2:cf:50:c4:ca:aa:a0:c0:17:
c6:4a:20:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:50 2024 by rpki-client on console-ams.rpki-client.org