Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/f0f5e3-6050-4e2d-a4ea-a4ea0a63f766/1/QyqzfQY8HvaqQsLveiXQQRLu9vE.roa
File: QyqzfQY8HvaqQsLveiXQQRLu9vE.roa (raw, json)
Hash identifier: NSgv6QEA53CBmfTnnnnunLk5np1vxmj2jd5vLRjwaxU=
Subject key identifier: 43:2A:B3:7D:06:3C:1E:F6:AA:42:C2:EF:7A:25:D0:41:12:EE:F6:F1
Certificate issuer: /CN=a5c6373eab19cf43dd2f43111398383ee2bad030
Certificate serial: 0189E4490740A195F000B921EB021B84A75F
Authority key identifier: A5:C6:37:3E:AB:19:CF:43:DD:2F:43:11:13:98:38:3E:E2:BA:D0:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pcY3PqsZz0PdL0MRE5g4PuK60DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/f0f5e3-6050-4e2d-a4ea-a4ea0a63f766/1/QyqzfQY8HvaqQsLveiXQQRLu9vE.roa
Signing time: Fri 11 Aug 2023 11:08:58 +0000
ROA not before: Fri 11 Aug 2023 11:08:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.228.1.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:e4:49:07:40:a1:95:f0:00:b9:21:eb:02:1b:84:a7:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a5c6373eab19cf43dd2f43111398383ee2bad030
Validity
Not Before: Aug 11 11:08:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=432ab37d063c1ef6aa42c2ef7a25d04112eef6f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:bd:e8:88:0b:b6:ea:86:ef:ea:7f:89:41:86:
6c:52:cc:68:94:1b:19:5c:bc:ae:bc:f5:ba:ed:af:
9d:45:ee:cb:bd:66:9d:86:31:f7:1e:93:8a:88:e3:
68:dd:c5:f1:b3:f6:95:5e:5b:5e:a4:0e:15:c4:5f:
74:e8:d2:22:57:63:d7:fd:ac:49:ca:d8:6c:22:85:
11:da:f6:04:3e:9e:88:03:2b:38:dd:a6:eb:fa:b9:
ce:8c:66:d8:ab:a1:97:8f:63:28:e2:c9:ac:7b:9a:
59:db:ec:e1:50:dc:60:11:d8:c6:4d:e7:09:77:61:
5e:f7:1c:c2:10:87:cf:50:7a:fb:ec:ea:88:e5:32:
5a:2f:ae:fc:41:49:fd:82:47:73:66:69:73:47:77:
e5:62:1a:1e:91:1a:a5:50:2c:a2:70:d2:3e:99:ef:
35:ca:a1:7b:bf:ff:34:a3:d6:19:e4:83:a1:80:78:
7f:3b:40:46:0d:a8:b1:64:e1:13:dd:d4:e2:e1:a6:
87:f8:b3:58:c2:59:34:b1:aa:b5:fa:06:af:75:f1:
5a:90:f1:b5:8a:35:85:54:a6:fc:d0:ad:61:a9:49:
2b:31:c4:9e:73:36:11:70:85:18:a5:2a:db:8e:64:
4f:88:2e:63:bd:ed:cf:88:58:cb:07:61:9c:ee:40:
34:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:2A:B3:7D:06:3C:1E:F6:AA:42:C2:EF:7A:25:D0:41:12:EE:F6:F1
X509v3 Authority Key Identifier:
keyid:A5:C6:37:3E:AB:19:CF:43:DD:2F:43:11:13:98:38:3E:E2:BA:D0:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pcY3PqsZz0PdL0MRE5g4PuK60DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/f0f5e3-6050-4e2d-a4ea-a4ea0a63f766/1/QyqzfQY8HvaqQsLveiXQQRLu9vE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/f0f5e3-6050-4e2d-a4ea-a4ea0a63f766/1/pcY3PqsZz0PdL0MRE5g4PuK60DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.228.1.0/24
Signature Algorithm: sha256WithRSAEncryption
36:ae:72:b0:7b:ea:a1:81:be:61:3f:4c:a7:6f:40:b5:9c:ff:
d3:34:8d:33:75:c0:a1:e3:27:87:6e:fc:bf:54:4d:8a:b3:d0:
8c:af:67:dc:ea:b4:b3:0c:17:c4:22:10:3a:dd:79:55:ed:b1:
47:4e:5c:b3:04:b5:67:da:6c:81:a1:c5:bf:7b:7a:9f:9b:23:
c0:f5:f8:10:37:8d:54:b9:b4:f5:5d:ce:dc:b5:05:4e:3e:6c:
01:34:c5:2a:6f:8d:a1:43:e3:57:ff:d4:71:11:39:da:c3:ca:
96:5d:1f:3e:82:ca:b1:6d:3e:50:64:33:63:98:4a:a9:2c:4d:
3c:37:0c:1d:c9:2c:e2:96:17:0d:a8:10:ac:72:ca:c0:a6:b2:
c4:6c:30:7e:07:e8:97:99:80:0a:d9:01:b3:51:f4:4a:c3:9f:
c6:8f:6c:0a:83:36:2a:a5:4c:c2:02:74:74:7f:63:de:44:10:
fc:14:2f:b9:22:a0:06:11:6b:20:b4:78:0d:19:8a:f5:51:1c:
46:e5:59:37:4e:f6:87:f5:a8:e9:31:85:a3:4e:eb:91:fb:73:
c8:48:33:7d:40:0e:d4:2d:ee:03:a7:e3:12:e3:4d:bc:e6:8e:
2d:f8:af:7f:57:e2:33:05:46:95:ef:a7:1d:54:1f:ea:56:02:
17:98:53:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 4 11:42:09 2023 by rpki-client on console-fra.rpki-client.org