Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/2ebeeb-95b1-4fea-8da0-b5af64568a33/1/QNcLjj4bSLhdS3JJr8m5hxJdID8.roa
File: QNcLjj4bSLhdS3JJr8m5hxJdID8.roa (raw, json)
Hash identifier: A1LkHTSbxBvPBljavb7GoVi5Kos7wvCnlJvnnk+3pzU=
Subject key identifier: 40:D7:0B:8E:3E:1B:48:B8:5D:4B:72:49:AF:C9:B9:87:12:5D:20:3F
Certificate issuer: /CN=55cd2c8dbf311287ebf7a45a9c17a8c71056bce8
Certificate serial: 018570FB978453D739D39DF0619438EA2701
Authority key identifier: 55:CD:2C:8D:BF:31:12:87:EB:F7:A4:5A:9C:17:A8:C7:10:56:BC:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Vc0sjb8xEofr96RanBeoxxBWvOg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/2ebeeb-95b1-4fea-8da0-b5af64568a33/1/QNcLjj4bSLhdS3JJr8m5hxJdID8.roa
Signing time: Mon 02 Jan 2023 05:36:54 +0000
ROA not before: Mon 02 Jan 2023 05:36:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48551
IP address blocks: 91.217.177.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:fb:97:84:53:d7:39:d3:9d:f0:61:94:38:ea:27:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=55cd2c8dbf311287ebf7a45a9c17a8c71056bce8
Validity
Not Before: Jan 2 05:36:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=40d70b8e3e1b48b85d4b7249afc9b987125d203f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:82:f9:d4:03:bf:5e:63:de:79:5f:31:82:ef:
46:86:31:65:40:62:a4:e2:5c:af:0f:8d:e1:d5:35:
ac:47:a0:f4:89:da:fc:c4:1b:1e:5a:7d:d8:53:4b:
be:c8:c8:cc:32:46:6b:67:95:fd:86:08:a5:e3:d1:
14:e1:fb:f6:c7:3a:62:7c:27:74:ca:d1:cf:32:df:
d4:46:c5:99:de:bb:6f:4c:2c:67:20:d8:18:24:e9:
10:92:3b:6a:85:53:42:f0:06:40:d7:f5:39:79:97:
dd:28:a0:a8:f5:6f:84:bb:e7:71:a7:41:2f:1e:80:
49:54:f2:91:3a:15:d9:97:a4:a1:57:33:09:fa:85:
fc:e7:71:40:34:99:f8:c3:cf:25:b3:87:0a:d5:51:
aa:df:eb:a5:ae:4d:1e:49:fd:30:66:2d:0b:2a:25:
fb:ca:4a:aa:1e:8b:a0:cf:7b:49:57:3a:01:dc:17:
f8:d3:d3:72:0f:d2:5f:91:9a:6a:ba:9d:7d:75:12:
9a:2e:bd:2a:cc:a4:8c:7b:40:51:7c:0c:d9:ee:88:
6d:10:ac:d9:ea:ac:e0:80:5e:77:f1:b7:65:48:aa:
2c:42:3b:9d:b0:d3:f5:8d:ba:2e:cc:55:c0:bc:40:
1e:7d:8b:db:dc:fa:26:71:cf:9b:25:d5:08:27:5f:
e5:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:D7:0B:8E:3E:1B:48:B8:5D:4B:72:49:AF:C9:B9:87:12:5D:20:3F
X509v3 Authority Key Identifier:
keyid:55:CD:2C:8D:BF:31:12:87:EB:F7:A4:5A:9C:17:A8:C7:10:56:BC:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vc0sjb8xEofr96RanBeoxxBWvOg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/2ebeeb-95b1-4fea-8da0-b5af64568a33/1/QNcLjj4bSLhdS3JJr8m5hxJdID8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/2ebeeb-95b1-4fea-8da0-b5af64568a33/1/Vc0sjb8xEofr96RanBeoxxBWvOg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.217.177.0/24
Signature Algorithm: sha256WithRSAEncryption
ba:8b:d1:a6:5e:ff:b4:99:cf:94:22:92:65:e3:c3:66:15:51:
18:36:3e:18:c7:95:56:1d:ed:ce:d6:1c:11:0e:84:91:ec:80:
d5:98:74:90:3c:b3:6c:1f:55:77:37:3b:b6:81:35:55:1f:55:
72:fd:d2:c0:27:f5:00:aa:56:a4:bf:a6:1c:18:a2:aa:85:2f:
23:81:f5:5b:49:a3:94:49:ae:19:fc:5f:8a:fa:c6:ac:f8:a8:
6a:e6:ce:06:92:66:ef:1c:f1:53:dc:34:5c:45:c0:16:22:4e:
81:d3:bf:95:c2:49:88:0f:c4:20:02:32:94:ae:57:8b:de:65:
0c:01:a6:8c:6e:61:85:c0:ec:92:3b:43:8b:eb:a1:ab:9d:63:
2a:a8:75:c7:ab:39:9d:54:66:c3:f9:12:ae:3a:99:a6:a7:59:
f9:20:d6:2a:4a:b0:45:0b:c5:98:77:f1:90:af:b1:5b:ea:91:
53:6e:92:e2:4b:19:1b:a0:1a:ec:57:8e:65:3e:21:aa:fa:ac:
68:30:31:9f:f3:80:db:be:54:51:e0:54:ff:64:f4:fa:3f:31:
80:54:cf:61:e5:5c:0d:66:03:dc:70:8b:4e:1f:36:ba:fd:15:
0f:82:a0:eb:cc:65:32:22:63:58:c8:8d:9f:a6:73:97:89:fd:
ea:99:7b:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:18 2024 by rpki-client on console-fra.rpki-client.org