Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/QKoaki2RrpxqOErb3a5DQL0Ke-0.roa
File: QKoaki2RrpxqOErb3a5DQL0Ke-0.roa (raw, json)
Hash identifier: dp45AvzcgKW29WkAZVoDXMpDUjHGRzndTqtOiaynq2I=
Subject key identifier: 40:AA:1A:92:2D:91:AE:9C:6A:38:4A:DB:DD:AE:43:40:BD:0A:7B:ED
Certificate issuer: /CN=67b5b02dc401666ee045ab90cc88817fe09d706a
Certificate serial: 01856E54297C6D49EA3C89304A413E7B4AE1
Authority key identifier: 67:B5:B0:2D:C4:01:66:6E:E0:45:AB:90:CC:88:81:7F:E0:9D:70:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z7WwLcQBZm7gRauQzIiBf-CdcGo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/QKoaki2RrpxqOErb3a5DQL0Ke-0.roa
Signing time: Sun 01 Jan 2023 17:14:47 +0000
ROA not before: Sun 01 Jan 2023 17:14:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7470
IP address blocks: 163.171.68.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:30:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:54:29:7c:6d:49:ea:3c:89:30:4a:41:3e:7b:4a:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67b5b02dc401666ee045ab90cc88817fe09d706a
Validity
Not Before: Jan 1 17:14:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=40aa1a922d91ae9c6a384adbddae4340bd0a7bed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:bd:2c:1f:9a:1f:ea:a6:5f:cc:cc:f8:84:23:
85:a2:4c:9e:d8:57:11:34:a0:73:09:92:af:0a:9c:
9f:8d:59:88:8a:6c:71:df:08:d8:54:6b:fd:f3:73:
5f:6a:6f:31:e7:be:d7:25:3b:55:84:3c:f6:97:d1:
c9:de:aa:a3:e6:d2:dd:2a:d9:ab:5c:1b:1b:a8:65:
fa:e5:23:f8:ac:d3:d8:1f:b3:02:99:db:16:1e:af:
33:ff:15:93:d7:b2:41:71:e6:07:bb:11:12:a5:ce:
cd:a0:ac:42:c4:44:9d:65:de:aa:c3:59:48:3d:a7:
1e:58:60:bc:f3:ec:c3:32:00:72:e5:e1:4e:0f:b7:
4c:80:44:a9:c0:84:7c:73:46:fc:7d:6b:10:dd:7d:
13:65:ef:c4:9a:ab:19:85:9d:08:06:2e:c5:d0:90:
20:99:bf:dd:5c:00:c8:77:64:11:a4:18:86:68:09:
4a:3b:38:2e:d5:f9:f5:cf:96:ed:2c:3a:10:ff:e1:
99:27:1f:92:40:0c:35:db:13:77:88:63:45:8d:a2:
96:89:0e:ae:d7:28:db:76:31:1d:14:90:9c:1c:99:
a2:df:91:bd:94:9f:00:b8:c7:1e:9d:0f:3a:94:5b:
a4:ba:c0:f9:d3:63:6c:3a:2e:ee:5e:ea:9e:22:25:
2d:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:AA:1A:92:2D:91:AE:9C:6A:38:4A:DB:DD:AE:43:40:BD:0A:7B:ED
X509v3 Authority Key Identifier:
keyid:67:B5:B0:2D:C4:01:66:6E:E0:45:AB:90:CC:88:81:7F:E0:9D:70:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z7WwLcQBZm7gRauQzIiBf-CdcGo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/QKoaki2RrpxqOErb3a5DQL0Ke-0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/Z7WwLcQBZm7gRauQzIiBf-CdcGo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.171.68.0/24
Signature Algorithm: sha256WithRSAEncryption
44:c8:25:5f:86:d8:ab:9b:46:3b:07:fd:6b:9b:0d:21:1e:32:
33:31:c3:55:71:cc:e5:e7:21:7a:e0:91:40:a9:a9:88:40:f0:
80:5f:17:b8:9a:d9:1a:6c:78:12:c6:a0:df:1c:11:c2:a3:9d:
4c:58:39:d5:7b:9d:64:cd:cf:c7:ae:55:15:9c:40:d1:04:7c:
00:36:ca:80:c9:af:5a:9f:40:61:6f:97:53:4f:6b:8d:2a:b7:
c3:97:0e:72:5f:60:50:48:ee:d1:14:ec:a6:6e:fc:31:35:da:
54:99:c8:fe:7d:88:74:ec:31:4f:46:da:c5:db:0c:20:7d:0a:
2f:70:58:eb:12:05:31:27:cb:09:b8:46:bb:af:f5:03:46:0f:
f3:bc:c4:16:9c:11:85:e5:b0:48:68:27:86:38:fa:c6:a4:82:
09:ae:7b:cd:93:01:41:0f:d4:2a:ae:98:85:7b:d4:5a:dd:26:
fa:8d:f0:05:42:b4:d1:34:c3:98:5c:c6:7d:1b:d1:de:ce:d9:
97:51:d4:50:eb:18:8f:ab:b1:70:c9:25:6a:eb:77:ab:5a:40:
b2:61:ed:6f:ef:ac:cf:16:d9:62:65:03:2b:11:db:ba:3e:60:
4a:90:1f:cd:a4:ee:a8:fa:96:97:0a:5b:59:79:3b:0b:49:c7:
c9:1c:e3:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:49 2024 by rpki-client on console-fra.rpki-client.org