Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/qy_g_xORw5HJ68Q-sh3tiUIvhgo.roa
File: qy_g_xORw5HJ68Q-sh3tiUIvhgo.roa (raw, json)
Hash identifier: OIqCCXpwWPY//ULSh15i/2X5R3pZUyCgQk2wcp7/RE0=
Subject key identifier: AB:2F:E0:FF:13:91:C3:91:C9:EB:C4:3E:B2:1D:ED:89:42:2F:86:0A
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 01872CCDFB55D31270B386DC6B94EA9EC5B9
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/qy_g_xORw5HJ68Q-sh3tiUIvhgo.roa
Signing time: Wed 29 Mar 2023 09:58:29 +0000
ROA not before: Wed 29 Mar 2023 09:58:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199191
IP address blocks: 62.176.68.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 16 Oct 2023 08:10:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:2c:cd:fb:55:d3:12:70:b3:86:dc:6b:94:ea:9e:c5:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Mar 29 09:58:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ab2fe0ff1391c391c9ebc43eb21ded89422f860a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:74:cb:8f:19:f1:63:4d:7c:a7:62:ea:26:fd:
42:6b:52:46:27:c4:95:84:a3:e3:a4:c5:50:43:5d:
3b:76:cd:d3:42:cd:84:3d:6d:34:0b:1c:01:ff:04:
4e:cf:01:4f:6e:17:66:ae:eb:e8:31:10:e7:f7:71:
5b:c7:56:48:b5:aa:e5:eb:a7:21:59:70:90:c7:d7:
76:5f:fc:36:07:4d:43:db:eb:10:8f:e5:d8:11:a3:
be:4b:cb:99:2b:21:92:e3:cc:95:b7:d6:3b:1f:be:
c2:f5:a1:e7:18:50:c7:a7:04:a3:7a:7b:7f:de:b4:
6d:80:7a:0a:92:e6:76:72:fa:64:4e:4b:0a:df:fb:
61:fd:3b:0a:ab:2a:56:89:7c:79:82:bc:52:6e:71:
16:03:32:cc:5d:28:46:f4:21:8e:17:e7:09:c1:58:
9b:35:b5:cf:0c:62:4a:3c:90:b6:e5:b2:b8:63:06:
1b:2e:dc:5d:d9:7e:00:46:61:12:37:ed:21:d9:31:
64:bf:f0:ce:5d:74:5f:32:c6:19:70:31:5f:d8:00:
97:c6:b3:a9:42:15:f4:b2:b9:9d:36:fa:6d:80:c8:
fd:16:59:0b:26:33:49:ab:c0:ec:0f:aa:80:6f:d2:
63:04:4c:33:c7:45:1d:10:b4:4d:cb:c6:b7:a1:34:
0a:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:2F:E0:FF:13:91:C3:91:C9:EB:C4:3E:B2:1D:ED:89:42:2F:86:0A
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/qy_g_xORw5HJ68Q-sh3tiUIvhgo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.176.68.0/23
Signature Algorithm: sha256WithRSAEncryption
9d:eb:06:14:61:64:de:10:d7:30:dc:11:a9:e4:da:66:04:3c:
cc:cf:51:32:ab:7a:6c:bf:44:79:b0:ae:2e:79:dc:94:f2:83:
16:51:a0:56:a9:fe:88:c0:15:17:3c:20:ae:00:35:28:4f:74:
28:db:f4:39:7e:28:86:71:0d:03:eb:38:8f:fe:9e:24:df:d8:
9a:1d:4e:d9:fe:54:21:60:ee:0d:2e:e9:c7:f5:70:4d:06:6c:
98:45:f8:a7:a6:fa:c7:e6:32:42:81:3c:62:b9:b0:b2:77:69:
f6:93:63:7f:23:9b:35:68:8f:08:4d:9a:f8:2b:d0:61:0d:fe:
6a:21:75:2b:02:59:10:69:d6:fe:46:ba:a4:54:b5:a9:80:fc:
89:24:62:bb:39:6b:b9:98:a5:14:52:f0:da:95:3c:be:63:1f:
c9:01:4a:5c:cd:a9:2d:f8:44:40:48:d4:41:53:5d:02:09:b1:
b1:17:e3:c8:70:5a:41:2b:bd:40:35:68:5f:15:d9:eb:a8:4b:
54:4b:84:02:e0:9f:63:eb:2b:91:64:e9:81:97:97:b6:72:59:
2e:00:a4:a8:59:70:9b:61:71:90:c2:6d:f7:a2:8b:95:6e:e0:
83:6c:99:29:74:1b:30:2d:61:e3:5d:3b:fb:54:8f:c4:1c:4a:
bb:39:67:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:05 2024 by rpki-client on console-fra.rpki-client.org