Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/qo-hdmMvLk02_26wOLOdgu5LUuQ.roa
File: qo-hdmMvLk02_26wOLOdgu5LUuQ.roa (raw, json)
Hash identifier: k08PpCA1Tc23lcq4nGBwv2ews5c52mg6XserZ2e/iAU=
Subject key identifier: AA:8F:A1:76:63:2F:2E:4D:36:FF:6E:B0:38:B3:9D:82:EE:4B:52:E4
Certificate issuer: /CN=2fa16ab06020067740a4c1fb47a912622f1d0722
Certificate serial: 0191719F7B4D5EE69EE7F9722B89667870C9
Authority key identifier: 2F:A1:6A:B0:60:20:06:77:40:A4:C1:FB:47:A9:12:62:2F:1D:07:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L6FqsGAgBndApMH7R6kSYi8dByI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/qo-hdmMvLk02_26wOLOdgu5LUuQ.roa
Signing time: Tue 20 Aug 2024 21:09:22 +0000
ROA not before: Tue 20 Aug 2024 21:09:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212238
IP address blocks: 213.145.82.0/23 maxlen: 23
213.145.89.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 30 Aug 2024 05:19:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:71:9f:7b:4d:5e:e6:9e:e7:f9:72:2b:89:66:78:70:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2fa16ab06020067740a4c1fb47a912622f1d0722
Validity
Not Before: Aug 20 21:09:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=aa8fa176632f2e4d36ff6eb038b39d82ee4b52e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:90:f1:3a:73:8e:b2:fc:40:a2:db:3a:b6:4c:
05:94:e4:27:56:9a:4a:dc:2f:0b:b0:bb:97:5e:d5:
e5:2c:52:a6:d6:4a:0f:6b:8d:46:82:82:5a:03:45:
86:8e:7e:73:86:2b:0c:27:31:81:56:6b:24:74:dc:
fd:5f:be:ed:e6:20:94:18:3c:a8:67:fc:0d:22:ec:
33:2e:ce:be:40:96:25:c4:a1:5a:3e:32:c8:5d:49:
06:82:c6:7a:77:0c:d2:c0:68:0f:04:f1:c7:5b:53:
8d:bc:e5:31:cb:9d:81:9e:6c:82:be:9a:65:fc:12:
41:84:5e:3c:b6:e9:90:4d:ba:9c:b7:b7:21:af:ff:
6b:fa:a7:9c:df:1b:c8:7c:91:ad:35:5b:a8:cd:ac:
b1:86:67:ed:fb:35:59:dd:9d:e2:f5:33:b1:50:54:
30:ca:46:21:ac:ff:b7:7a:d5:6e:19:31:62:68:05:
e1:b8:02:03:98:87:51:a3:0e:d2:3a:6f:fa:8a:25:
a1:02:51:28:d9:7d:5f:b5:b8:d2:49:4e:39:1b:19:
eb:ac:91:b0:67:80:79:9f:fb:84:7b:f2:fb:7d:c2:
09:bd:8f:3b:7a:9c:01:26:e5:81:35:96:4a:13:4e:
9a:f6:97:66:2c:68:e3:df:2a:6c:79:d0:03:7e:41:
7c:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:8F:A1:76:63:2F:2E:4D:36:FF:6E:B0:38:B3:9D:82:EE:4B:52:E4
X509v3 Authority Key Identifier:
keyid:2F:A1:6A:B0:60:20:06:77:40:A4:C1:FB:47:A9:12:62:2F:1D:07:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L6FqsGAgBndApMH7R6kSYi8dByI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/qo-hdmMvLk02_26wOLOdgu5LUuQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/L6FqsGAgBndApMH7R6kSYi8dByI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.145.82.0/23
213.145.89.0/24
Signature Algorithm: sha256WithRSAEncryption
bc:51:9b:e7:1d:f5:41:03:ad:6d:21:a2:95:b7:97:6f:e6:8d:
3d:16:47:6b:70:ad:32:d2:1b:d1:9b:b8:84:92:2a:92:cb:2f:
a3:9b:4b:85:8d:0c:ac:1f:ce:10:6b:37:6e:e9:9e:be:12:ff:
d0:71:1d:aa:e8:c1:dd:a7:ec:83:63:aa:65:ae:d8:52:fa:19:
32:6c:82:a4:50:6a:7f:eb:0b:d4:47:ff:52:08:c8:b6:11:88:
e9:33:d9:b0:a6:0e:70:7b:00:21:41:44:68:53:e9:2e:c3:e5:
95:4d:62:74:fb:81:85:f0:bc:1b:63:a0:9e:5d:d5:d1:4e:63:
5c:0e:a8:00:78:c8:80:c1:9f:46:b0:7f:9e:9a:f3:6d:b3:72:
a6:81:e3:c5:ce:36:41:94:8a:c1:0b:e5:46:17:66:6e:9c:0c:
f3:36:52:90:c9:dd:1f:c3:57:71:57:a8:dc:11:d5:65:5d:9a:
0a:58:2a:d2:1a:da:8b:71:3f:8e:dd:61:0b:24:ca:34:88:b0:
00:6f:42:db:36:06:03:8f:0e:1d:a2:59:de:f2:04:66:32:15:
7f:47:de:6a:c0:03:53:af:8e:65:2e:85:d5:b3:80:3f:14:c5:
dd:da:6f:19:a5:46:a7:76:6c:59:df:ae:3d:e9:d1:0b:a9:5a:
07:1a:30:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 30 07:31:21 2024 by rpki-client on console-fra.rpki-client.org