Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/ql_JsADFyZSJkoeJmj1h-tZrDmM.roa
File: ql_JsADFyZSJkoeJmj1h-tZrDmM.roa (raw, json)
Hash identifier: o4R15owGlaoMAxVroHqqdgcGwRHgGYJZTiREJTcyUN8=
Subject key identifier: AA:5F:C9:B0:00:C5:C9:94:89:92:87:89:9A:3D:61:FA:D6:6B:0E:63
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 01857067281AF3FC482C615381F02BA1D574
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/ql_JsADFyZSJkoeJmj1h-tZrDmM.roa
Signing time: Mon 02 Jan 2023 02:54:46 +0000
ROA not before: Mon 02 Jan 2023 02:54:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 46450
IP address blocks: 81.22.128.0/22 maxlen: 24
Validation: Failed, certificate revoked on Sun 05 Feb 2023 17:13:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:67:28:1a:f3:fc:48:2c:61:53:81:f0:2b:a1:d5:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: Jan 2 02:54:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=aa5fc9b000c5c994899287899a3d61fad66b0e63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:62:de:d2:9d:be:14:69:28:d1:ba:b5:80:dc:
8c:b1:8b:0c:c2:f2:a4:e4:94:0c:4f:ab:fa:32:a6:
d1:c7:94:17:6f:49:35:1a:8e:7f:16:c4:d2:69:a8:
a9:d6:63:fd:04:9a:1c:79:54:24:ec:ef:ff:50:51:
a2:6b:c5:4e:44:66:b3:4f:52:5e:d0:05:09:f2:63:
03:ad:32:30:a7:53:ee:bc:25:3c:64:6e:1c:a1:03:
c2:b7:20:57:fb:25:8a:0b:75:45:6f:7d:ea:e3:2b:
b1:bd:94:d7:a5:40:c8:de:c3:c2:53:cd:2c:a1:84:
53:02:75:17:ad:07:f9:47:49:08:79:e3:59:e0:95:
a1:f0:dd:76:b4:7e:43:cf:e6:4e:6f:16:51:6b:9f:
2d:37:e4:f5:85:b0:c4:ce:88:7d:04:bb:3c:6b:d8:
f2:d9:bc:d0:d3:3e:58:12:6d:31:46:0e:75:02:12:
92:76:ab:97:75:38:b3:f3:db:c3:53:95:35:ac:b3:
bc:fa:f8:02:b1:f2:18:e7:d5:4c:d6:7d:89:74:9e:
02:ac:2e:46:4f:7a:83:95:f0:69:91:79:a0:0a:91:
fb:83:db:8e:ee:a9:53:5a:17:28:f9:5c:4c:08:f7:
ac:d2:7e:5e:bb:b0:7e:70:26:a8:6b:f5:12:96:14:
e2:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:5F:C9:B0:00:C5:C9:94:89:92:87:89:9A:3D:61:FA:D6:6B:0E:63
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/ql_JsADFyZSJkoeJmj1h-tZrDmM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.22.128.0/22
Signature Algorithm: sha256WithRSAEncryption
28:1b:54:87:4e:42:b4:dd:c1:80:59:9e:2f:a2:06:7b:f6:4b:
dd:db:ea:2b:d4:ad:75:a8:ca:cd:68:a8:5d:51:66:de:96:72:
65:51:56:77:e6:0a:93:2f:f0:93:35:72:3f:e7:36:9c:e1:d7:
dc:a7:08:8f:39:04:0b:48:ce:2a:47:c7:db:31:5f:d2:01:b1:
44:86:08:c9:1c:09:c4:78:75:35:83:c4:4f:c8:ef:8c:3d:59:
b0:fb:95:5f:c5:71:a8:51:80:44:26:5a:18:28:ff:85:44:44:
4c:20:72:f0:8a:08:4e:6b:72:39:c5:a0:e9:26:85:4f:4e:32:
84:f0:eb:df:5b:3d:86:5b:57:81:fd:17:d2:c8:7a:07:f5:ec:
3a:c0:a0:39:12:b4:bb:75:cb:be:f7:bb:b8:e6:bd:ce:ee:1e:
99:5a:09:e3:ea:ee:fe:fc:b2:c3:34:01:63:02:6b:43:bf:08:
d7:89:e7:52:13:3f:d7:32:1c:8e:47:66:d5:eb:52:97:60:eb:
39:97:5b:f0:72:0b:b2:60:9e:a9:57:32:2d:f2:ab:ce:41:9c:
03:bc:1c:ee:b4:88:c2:2a:02:67:9a:e7:19:43:1f:ef:76:1a:
4e:b8:4c:7e:ac:21:59:64:08:d0:59:8a:2e:ed:f1:ca:05:1d:
eb:bc:5b:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:15 2024 by rpki-client on console-fra.rpki-client.org