Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/0c6f47-4713-4471-b08f-a4213c93f1f7/1/QRILu_MRP9-IXS3IPTWnEW4MD6M.roa
File: QRILu_MRP9-IXS3IPTWnEW4MD6M.roa (raw, json)
Hash identifier: /ZZylUtUNHIp7hoyDCVBok9LW0ew6KyK1wqR4TMzaf4=
Subject key identifier: 41:12:0B:BB:F3:11:3F:DF:88:5D:2D:C8:3D:35:A7:11:6E:0C:0F:A3
Certificate issuer: /CN=706d3abbb478b74ef2adef9bb7c4336e34111d51
Certificate serial: 018BF1D1368BD1ACFE9073FDC5B79E733177
Authority key identifier: 70:6D:3A:BB:B4:78:B7:4E:F2:AD:EF:9B:B7:C4:33:6E:34:11:1D:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cG06u7R4t07yre-bt8QzbjQRHVE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/0c6f47-4713-4471-b08f-a4213c93f1f7/1/QRILu_MRP9-IXS3IPTWnEW4MD6M.roa
Signing time: Tue 21 Nov 2023 12:18:21 +0000
ROA not before: Tue 21 Nov 2023 12:18:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212477
IP address blocks: 217.119.132.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:29:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:f1:d1:36:8b:d1:ac:fe:90:73:fd:c5:b7:9e:73:31:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=706d3abbb478b74ef2adef9bb7c4336e34111d51
Validity
Not Before: Nov 21 12:18:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=41120bbbf3113fdf885d2dc83d35a7116e0c0fa3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:c0:1c:4d:0f:64:9d:b9:b3:a4:cb:29:58:d7:
c1:a8:fb:4a:c0:33:10:c7:8b:49:d1:ff:8c:9d:ef:
a5:a4:4f:d8:2d:10:43:55:fe:21:26:db:4f:78:ea:
00:00:56:de:1a:19:7f:57:f7:33:d5:e8:09:4a:71:
dd:aa:9d:a3:2e:8d:c3:f2:7a:a1:66:be:a2:91:aa:
25:3e:04:c5:e5:43:51:a7:1c:a6:96:82:2a:3d:e1:
7d:e2:5f:7c:b5:c3:e3:fd:be:42:bd:dc:36:3d:18:
1e:9c:91:7a:6d:cb:99:f2:9a:74:dd:8c:81:1d:82:
91:ce:2a:a3:82:95:bb:e2:fa:f9:71:bb:6f:e9:ed:
89:ca:61:5f:70:4d:71:4a:35:17:f8:72:0a:e2:4e:
d5:a4:97:49:c6:11:c4:e4:2a:66:d2:54:41:e4:37:
b1:33:84:2d:1a:e2:4a:dd:98:02:52:72:1f:77:b4:
d9:e5:a0:30:23:5b:28:1e:ce:a9:e8:e7:1c:a5:91:
51:fc:d5:f0:41:da:b9:ed:7b:35:4b:10:4a:3b:5a:
58:1e:7b:61:1b:ef:90:70:ea:67:2f:af:ea:64:35:
2d:a6:e7:31:01:62:43:39:e1:21:10:37:75:9a:6b:
cd:59:37:e2:ff:ac:30:9c:c4:94:d4:8b:84:50:1c:
23:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:12:0B:BB:F3:11:3F:DF:88:5D:2D:C8:3D:35:A7:11:6E:0C:0F:A3
X509v3 Authority Key Identifier:
keyid:70:6D:3A:BB:B4:78:B7:4E:F2:AD:EF:9B:B7:C4:33:6E:34:11:1D:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cG06u7R4t07yre-bt8QzbjQRHVE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/0c6f47-4713-4471-b08f-a4213c93f1f7/1/QRILu_MRP9-IXS3IPTWnEW4MD6M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/0c6f47-4713-4471-b08f-a4213c93f1f7/1/cG06u7R4t07yre-bt8QzbjQRHVE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.119.132.0/24
Signature Algorithm: sha256WithRSAEncryption
e2:31:d0:e3:24:cc:50:7d:aa:1f:b6:50:f1:0e:9a:2e:b2:cb:
7e:e3:69:8c:61:1b:cb:db:81:7b:7f:9a:93:99:7d:92:d7:d6:
f2:b8:fa:0a:af:0c:86:11:81:e4:70:30:48:c4:8c:6c:02:c4:
69:71:a6:f9:28:66:f9:5d:60:61:05:74:7d:83:be:ee:56:db:
aa:79:e8:d5:bf:7b:45:ee:81:f8:35:d0:a1:dc:86:78:f0:38:
73:2b:35:17:92:a9:67:40:3b:7a:5c:d2:11:51:9d:69:40:0b:
24:35:16:fd:e8:cb:1e:c7:2b:df:6a:01:b1:c3:76:10:bb:f0:
30:8a:18:fe:c1:b7:5e:7c:a0:37:f6:d3:da:91:76:f7:e4:5e:
89:7e:65:9a:54:0d:dc:20:24:28:0c:46:94:1f:85:03:b1:97:
18:d3:10:cb:4d:b0:ad:dd:c1:34:05:1a:82:82:da:72:69:08:
ce:31:d2:31:f0:8d:69:e4:07:0f:c3:3a:99:82:d1:d5:15:f4:
8a:87:43:71:0b:27:2d:66:be:81:1f:68:a3:7c:2a:60:d9:79:
49:4f:de:05:55:92:12:2d:6a:44:35:31:94:d6:ea:ba:fa:f7:
85:d7:54:ee:c2:87:3a:4e:0c:f2:db:a7:ba:14:e3:8e:a7:f5:
70:03:8e:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:26 2024 by rpki-client on console-ams.rpki-client.org