Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/954ade-84b7-446d-a6e2-fd3b3002c0bb/1/QzQA0Ku0p8zMrWnq0iFtmskl-RE.roa
File: QzQA0Ku0p8zMrWnq0iFtmskl-RE.roa (raw, json)
Hash identifier: CIvJQLBGnr4RVSYYfJZnDlkZ2rFgBg6vMFt2qokjFis=
Subject key identifier: 43:34:00:D0:AB:B4:A7:CC:CC:AD:69:EA:D2:21:6D:9A:C9:25:F9:11
Certificate issuer: /CN=3517c9de927fa75beaef7885f0d88f6f4d2a0ed6
Certificate serial: 0185D3D39670D5D3CFABE17BBBB88C20878B
Authority key identifier: 35:17:C9:DE:92:7F:A7:5B:EA:EF:78:85:F0:D8:8F:6F:4D:2A:0E:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NRfJ3pJ_p1vq73iF8NiPb00qDtY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/954ade-84b7-446d-a6e2-fd3b3002c0bb/1/QzQA0Ku0p8zMrWnq0iFtmskl-RE.roa
Signing time: Sat 21 Jan 2023 10:15:37 +0000
ROA not before: Sat 21 Jan 2023 10:15:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209260
IP address blocks: 185.155.232.0/24 maxlen: 24
185.155.235.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 21 Apr 2023 11:16:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:d3:d3:96:70:d5:d3:cf:ab:e1:7b:bb:b8:8c:20:87:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3517c9de927fa75beaef7885f0d88f6f4d2a0ed6
Validity
Not Before: Jan 21 10:15:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=433400d0abb4a7ccccad69ead2216d9ac925f911
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:3a:54:cb:14:d4:de:d5:76:a3:3e:fa:1f:50:
23:38:66:c2:62:f8:6c:d7:5c:6d:2b:e3:68:b4:fa:
49:f6:ee:25:d7:c8:f5:52:3b:be:a0:02:f2:ff:4e:
53:09:10:05:3f:2b:3b:d7:85:18:43:b5:55:df:49:
94:bd:04:ac:95:a6:c7:4a:72:a9:64:8d:47:f1:46:
13:cf:0b:e1:f0:ef:5f:d4:41:c5:fe:00:e2:25:80:
39:43:5e:fe:d1:33:ac:be:c9:17:3f:47:1d:b6:93:
43:ab:14:bc:2b:3c:d7:5a:96:e7:99:ea:e2:89:09:
9c:ad:32:16:4d:c8:99:f3:6d:ae:9f:5e:c8:68:54:
69:07:f5:c9:db:a6:e0:74:b8:d5:60:64:51:b5:aa:
f7:68:9e:44:c9:e2:4c:e1:73:21:31:57:45:30:8b:
c2:cb:9e:e5:17:51:15:a4:55:b4:a9:1c:3a:17:5f:
fc:0e:fb:01:66:71:84:8b:97:fc:83:09:68:6f:fd:
ef:7a:a3:d6:9b:95:5b:e9:a8:8f:1a:44:fe:22:24:
92:5c:82:85:41:e9:45:bd:48:80:3a:6a:3a:1c:ab:
ba:91:8a:07:b0:4a:6c:a7:b5:45:62:f0:db:5e:03:
d1:48:77:2d:43:d8:9f:47:3e:01:21:4a:a8:b8:23:
a6:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:34:00:D0:AB:B4:A7:CC:CC:AD:69:EA:D2:21:6D:9A:C9:25:F9:11
X509v3 Authority Key Identifier:
keyid:35:17:C9:DE:92:7F:A7:5B:EA:EF:78:85:F0:D8:8F:6F:4D:2A:0E:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NRfJ3pJ_p1vq73iF8NiPb00qDtY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/954ade-84b7-446d-a6e2-fd3b3002c0bb/1/QzQA0Ku0p8zMrWnq0iFtmskl-RE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/954ade-84b7-446d-a6e2-fd3b3002c0bb/1/NRfJ3pJ_p1vq73iF8NiPb00qDtY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.155.232.0/24
185.155.235.0/24
Signature Algorithm: sha256WithRSAEncryption
bb:d0:8a:88:7c:e1:17:a3:3d:9e:eb:6c:68:92:58:be:07:91:
5c:17:f8:82:f0:41:5c:df:06:0d:4d:75:21:7f:2b:95:71:ef:
f4:23:e8:ab:f2:7f:7a:5c:0f:92:ff:72:99:7f:2b:d3:00:28:
81:7f:d8:68:df:fd:ba:4b:92:b4:13:20:82:73:24:78:c5:96:
fa:de:84:1c:8e:25:39:07:65:b7:64:6f:80:7d:83:a2:62:1d:
66:91:7c:4f:02:13:30:46:77:3e:c5:da:4f:2c:04:5e:1e:ab:
9f:3f:09:dc:1c:69:99:0d:58:e0:31:67:b5:6e:c1:3b:da:07:
ec:63:8d:fb:a5:d2:20:7e:87:da:c5:1a:96:58:f2:a0:20:eb:
a0:16:cd:d3:fc:d1:0d:3e:69:65:c9:28:01:fa:6b:3d:ed:e1:
3e:a3:61:a2:a7:5b:fe:cb:25:86:c8:c5:3f:3d:ff:c3:f5:b6:
7e:c2:5e:6b:40:bb:42:1a:2e:28:a5:57:e7:cc:9b:0c:01:07:
42:1f:9a:5d:a5:0a:dd:42:5a:fb:3d:c1:4d:cd:45:02:24:6d:
51:c8:f4:b1:ae:a4:8f:d5:e3:df:35:2d:fe:6a:37:fb:cd:bc:
3c:1d:71:05:97:fd:63:7b:60:c0:b7:26:14:c2:f0:f7:d2:67:
ba:de:67:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:51 2024 by rpki-client on console-fra.rpki-client.org