Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/844a25-a8df-4561-b3e7-9785a335542a/1/QXBP6cfVQKG4DYQqZL9yZhRqpzQ.roa
File: QXBP6cfVQKG4DYQqZL9yZhRqpzQ.roa (raw, json)
Hash identifier: QwlgQ7PViYOiCd3rfSwDAgNMdsktw8PshiPzMuAWao4=
Subject key identifier: 41:70:4F:E9:C7:D5:40:A1:B8:0D:84:2A:64:BF:72:66:14:6A:A7:34
Certificate issuer: /CN=30aff75209684a354669061d23da29f8ea2f1d5e
Certificate serial: 01857039779B6E6F56BE76AD7E53554D526D
Authority key identifier: 30:AF:F7:52:09:68:4A:35:46:69:06:1D:23:DA:29:F8:EA:2F:1D:5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MK_3UgloSjVGaQYdI9op-OovHV4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/844a25-a8df-4561-b3e7-9785a335542a/1/QXBP6cfVQKG4DYQqZL9yZhRqpzQ.roa
Signing time: Mon 02 Jan 2023 02:04:52 +0000
ROA not before: Mon 02 Jan 2023 02:04:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207185
IP address blocks: 185.90.208.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:39:77:9b:6e:6f:56:be:76:ad:7e:53:55:4d:52:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30aff75209684a354669061d23da29f8ea2f1d5e
Validity
Not Before: Jan 2 02:04:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=41704fe9c7d540a1b80d842a64bf7266146aa734
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:f5:92:2a:a3:d7:ac:40:d2:bb:5a:93:d7:93:
ca:89:57:8d:5e:2c:be:7b:63:86:4e:19:75:f8:7b:
44:21:3e:3b:25:10:0e:84:a3:17:37:66:9a:2d:7d:
a8:e6:58:66:ce:82:fb:fe:e5:cc:6c:ea:da:2b:cf:
fa:a2:50:e3:65:03:22:28:5f:10:6c:bc:88:3f:e7:
90:7e:d4:19:e7:98:3b:0c:df:33:56:c4:67:eb:1a:
9b:95:ef:04:d1:65:ea:41:51:ed:4d:e7:fe:6a:7a:
9f:2a:7a:2f:1c:a3:43:78:86:1f:3f:76:de:d3:3c:
b2:e2:54:a0:9b:f9:21:a2:62:9c:f5:d4:88:41:d3:
32:10:ff:74:e5:e5:f0:03:78:51:0b:68:68:5b:c2:
70:1f:12:93:3d:2b:ce:d6:ac:b3:be:4f:47:d3:f3:
ea:fe:b5:8f:4f:c0:86:a0:b5:1f:7a:03:7f:fb:77:
c6:f4:9f:28:11:22:fc:7a:3f:1d:92:e5:14:9e:67:
f5:af:c5:9b:42:65:76:97:09:db:0a:8f:10:bd:01:
9f:ff:b3:b1:a4:6a:f6:14:81:00:b3:45:24:4d:3d:
48:fa:e7:62:91:3f:63:2c:02:9e:c1:9b:7f:7f:f0:
5c:4b:2a:8b:40:d8:1a:de:42:13:88:29:fc:96:a8:
e4:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:70:4F:E9:C7:D5:40:A1:B8:0D:84:2A:64:BF:72:66:14:6A:A7:34
X509v3 Authority Key Identifier:
keyid:30:AF:F7:52:09:68:4A:35:46:69:06:1D:23:DA:29:F8:EA:2F:1D:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MK_3UgloSjVGaQYdI9op-OovHV4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/844a25-a8df-4561-b3e7-9785a335542a/1/QXBP6cfVQKG4DYQqZL9yZhRqpzQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/844a25-a8df-4561-b3e7-9785a335542a/1/MK_3UgloSjVGaQYdI9op-OovHV4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.90.208.0/22
Signature Algorithm: sha256WithRSAEncryption
7a:ad:c6:0d:86:54:02:3d:3a:c1:4a:d0:d1:10:71:4c:76:87:
ab:8d:ad:b3:73:32:9c:6b:45:c5:7c:04:ee:67:03:16:3d:aa:
b2:19:b5:28:80:a1:5d:62:56:77:1e:fd:ff:f6:d8:59:a2:93:
85:48:84:5f:bb:65:59:ae:ec:6f:36:87:03:12:ab:2c:a7:b9:
c9:07:61:77:4f:5e:62:e3:63:2d:35:f9:e5:38:d7:23:34:3c:
17:1f:bd:8e:59:60:74:3f:20:2a:7e:9b:b4:ea:bf:5b:04:6b:
ea:fd:be:56:f4:ad:18:7a:90:40:dc:9e:14:50:9e:52:b8:b0:
a1:d7:ee:86:76:49:fe:5d:88:6a:ed:14:34:11:08:54:01:bb:
d2:e7:91:de:c2:71:d4:6e:33:22:4a:fc:ed:75:9a:ba:06:78:
ab:12:73:c0:fd:94:9f:6f:11:9e:bb:ab:53:56:56:98:97:58:
10:70:f7:b4:96:d8:f3:24:de:59:76:fd:6a:d8:f0:52:8a:2b:
ab:8d:32:f2:64:ca:c4:ce:f8:f9:22:a1:c2:02:e6:8a:3b:a2:
4e:0b:91:59:59:e6:94:63:5f:2f:1d:31:e0:13:26:b1:26:9b:
78:e2:b7:be:ff:c3:9e:94:3c:58:95:3b:52:06:87:4a:68:e3:
c6:7f:7f:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 05:00:59 2024 by rpki-client on console.sobornost.net