Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/0cee19-af0f-4e93-8010-d953f4854757/1/QM9d4DkJKG6G9amZFiQo6Csw0GE.roa
File: QM9d4DkJKG6G9amZFiQo6Csw0GE.roa (raw, json)
Hash identifier: onCLRM1JoTKmNC+2R1dyOs0kWns50Kk6Hdo5hH5UKnI=
Subject key identifier: 40:CF:5D:E0:39:09:28:6E:86:F5:A9:99:16:24:28:E8:2B:30:D0:61
Certificate issuer: /CN=d188a88d595dc2ed8c2f9239645c4e8c5e737d31
Certificate serial: 01857246C34DEF90F1B2172222404651B435
Authority key identifier: D1:88:A8:8D:59:5D:C2:ED:8C:2F:92:39:64:5C:4E:8C:5E:73:7D:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0YiojVldwu2ML5I5ZFxOjF5zfTE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/0cee19-af0f-4e93-8010-d953f4854757/1/QM9d4DkJKG6G9amZFiQo6Csw0GE.roa
Signing time: Mon 02 Jan 2023 11:38:38 +0000
ROA not before: Mon 02 Jan 2023 11:38:38 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206238
IP address blocks: 185.232.98.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:46:c3:4d:ef:90:f1:b2:17:22:22:40:46:51:b4:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d188a88d595dc2ed8c2f9239645c4e8c5e737d31
Validity
Not Before: Jan 2 11:38:38 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=40cf5de03909286e86f5a999162428e82b30d061
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:2d:53:01:49:de:63:5c:6e:77:45:4a:ab:e3:
f4:8c:49:af:ec:43:9b:74:9a:34:ed:72:93:e5:24:
1c:32:ec:06:8a:33:8a:d7:ab:bd:f5:74:89:2a:25:
fd:ef:51:1b:8e:75:7b:29:33:ff:c9:13:c9:f2:c8:
93:fa:44:59:a3:66:69:d0:ca:aa:ee:cc:f2:92:0c:
9a:2a:69:45:8c:5c:e8:f8:23:54:d7:e2:08:bd:91:
da:e2:34:b7:3d:31:86:24:00:9b:90:34:21:a7:78:
1f:47:a1:0c:51:f8:b6:4c:93:04:16:2e:e6:8c:91:
ed:b3:38:94:92:cb:b3:10:9c:9c:2b:e9:30:27:f1:
a5:bf:f1:3b:85:7e:e5:34:00:60:6c:5f:b3:52:ef:
49:13:83:89:5b:f7:bd:83:1e:13:2a:32:53:d6:b0:
ae:42:cf:c0:7b:eb:03:1a:fb:11:a5:a3:33:a3:47:
f5:9f:da:a0:0c:6d:2c:76:8f:71:c0:4d:c9:08:92:
87:d7:7f:f6:84:f3:50:85:2d:fc:2a:c2:54:ac:04:
9e:1f:4a:6c:25:59:c3:3b:05:91:02:10:dc:8d:3f:
23:b9:cb:80:10:83:b8:a5:f9:b1:11:2d:52:39:68:
f7:ec:96:ed:8b:41:30:fd:e7:64:31:46:c2:69:bb:
8e:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:CF:5D:E0:39:09:28:6E:86:F5:A9:99:16:24:28:E8:2B:30:D0:61
X509v3 Authority Key Identifier:
keyid:D1:88:A8:8D:59:5D:C2:ED:8C:2F:92:39:64:5C:4E:8C:5E:73:7D:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0YiojVldwu2ML5I5ZFxOjF5zfTE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/0cee19-af0f-4e93-8010-d953f4854757/1/QM9d4DkJKG6G9amZFiQo6Csw0GE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/0cee19-af0f-4e93-8010-d953f4854757/1/0YiojVldwu2ML5I5ZFxOjF5zfTE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.232.98.0/24
Signature Algorithm: sha256WithRSAEncryption
ba:a6:07:54:d6:ae:94:83:a9:f0:8a:08:44:6b:b6:5d:e5:38:
89:7f:81:6c:93:85:e2:ee:fe:ae:84:17:db:84:e1:ed:a9:9b:
b4:b7:79:76:eb:14:ef:b6:61:81:9f:3a:1f:7d:4c:f6:88:1f:
d6:f8:5f:e6:8c:07:a2:d8:8b:30:64:9c:f6:4b:d1:9f:e7:fc:
15:76:e8:a7:03:47:ea:33:9b:33:31:ba:f8:a8:fe:18:de:5e:
65:53:6a:f2:58:d3:4b:df:fe:20:00:90:2a:9a:fa:e3:b9:26:
36:08:de:ab:71:19:92:5c:c1:10:e3:1e:0c:99:5a:7f:41:f8:
f7:77:e0:b5:c6:8b:d7:66:50:1e:58:dc:ac:89:ad:c2:65:83:
db:4d:1f:cf:c0:b0:d2:77:f7:f2:2f:31:9f:7f:f0:48:d4:9d:
7c:2b:e4:05:bb:bc:83:3c:5c:9d:cd:f7:f4:e1:38:71:77:b9:
61:03:d9:29:29:90:ea:b0:32:87:9c:25:1e:b4:70:42:e7:8b:
11:51:aa:67:83:91:b7:d1:72:67:c0:26:26:6c:95:73:99:5a:
81:80:a2:20:04:90:21:8f:75:fa:9e:99:1f:61:9f:d3:bc:61:
92:f9:d0:2a:81:26:48:e7:10:65:a4:d4:4b:a8:72:06:11:25:
80:0a:bf:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 17:25:43 2024 by rpki-client on console-fra.rpki-client.org