Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/80c568-bd15-4f32-8dd4-066866f2ded0/1/QlJ-mu5ocOFbx5-4iId_w2eklxI.roa
File: QlJ-mu5ocOFbx5-4iId_w2eklxI.roa (raw, json)
Hash identifier: r/w+f+w/KQhx/RNLnC84uQGWAWhulp4hEi/Th3LpnNw=
Subject key identifier: 42:52:7E:9A:EE:68:70:E1:5B:C7:9F:B8:88:87:7F:C3:67:A4:97:12
Certificate issuer: /CN=c67e2a46e34f491433c8b62f319b902bddfde831
Certificate serial: 018CAE6008833EC21FEB11EF39D40DDDCF53
Authority key identifier: C6:7E:2A:46:E3:4F:49:14:33:C8:B6:2F:31:9B:90:2B:DD:FD:E8:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xn4qRuNPSRQzyLYvMZuQK9396DE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/80c568-bd15-4f32-8dd4-066866f2ded0/1/QlJ-mu5ocOFbx5-4iId_w2eklxI.roa
Signing time: Thu 28 Dec 2023 03:02:58 +0000
ROA not before: Thu 28 Dec 2023 03:02:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60528
IP address blocks: 77.247.110.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:29:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ae:60:08:83:3e:c2:1f:eb:11:ef:39:d4:0d:dd:cf:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c67e2a46e34f491433c8b62f319b902bddfde831
Validity
Not Before: Dec 28 03:02:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=42527e9aee6870e15bc79fb888877fc367a49712
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:93:0c:f8:2a:1c:e4:56:e6:df:ef:41:ae:7b:
ce:00:e3:94:2b:c0:74:a0:ca:c5:66:a1:3d:ec:00:
3e:6f:bd:d3:88:1d:5e:2b:71:cc:cb:12:99:41:06:
17:0a:12:fd:db:8c:c1:44:96:04:35:b5:7c:e5:5d:
48:94:8a:ea:f1:60:00:01:b8:90:3f:4b:a9:11:92:
bb:29:56:3d:17:14:98:8e:9c:d8:bf:01:a8:3b:4c:
b9:a7:c2:82:4d:a9:6c:55:37:40:61:91:93:c7:8d:
a2:75:1e:03:69:4b:91:f0:57:5a:1a:aa:91:79:6a:
77:4d:e1:c2:1f:9f:76:f5:df:f7:1a:65:2e:e2:88:
8f:65:78:97:89:7c:49:51:26:a4:28:01:bc:1e:7e:
7d:20:e2:1f:c9:d8:cf:3b:fa:9f:f3:ec:79:a2:3e:
6a:6c:65:7b:0d:e1:59:df:07:3d:f1:ee:cb:8b:c1:
eb:01:2d:c3:55:0c:47:10:a7:e4:25:56:b8:82:58:
33:f7:fc:ec:92:1e:c0:1f:89:17:02:1e:cf:13:cc:
00:a7:b0:f6:fa:07:f2:e1:d1:9c:30:5b:9e:73:a2:
3c:3d:af:a0:04:27:38:0a:ae:fb:f4:42:8f:42:7d:
19:46:c1:9c:a6:70:34:bf:82:d6:07:2e:17:f9:66:
ee:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:52:7E:9A:EE:68:70:E1:5B:C7:9F:B8:88:87:7F:C3:67:A4:97:12
X509v3 Authority Key Identifier:
keyid:C6:7E:2A:46:E3:4F:49:14:33:C8:B6:2F:31:9B:90:2B:DD:FD:E8:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xn4qRuNPSRQzyLYvMZuQK9396DE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/80c568-bd15-4f32-8dd4-066866f2ded0/1/QlJ-mu5ocOFbx5-4iId_w2eklxI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/80c568-bd15-4f32-8dd4-066866f2ded0/1/xn4qRuNPSRQzyLYvMZuQK9396DE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.247.110.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:0c:17:92:ea:65:77:5c:f9:c0:d0:15:f8:ad:b6:d8:2c:0c:
d6:0b:47:e6:2f:f5:bd:ea:31:c9:3f:8d:e7:8d:b6:9c:83:e8:
83:af:6b:6a:d0:c5:a6:64:4e:bb:95:cf:8e:a0:21:72:07:cf:
93:0f:1b:93:4f:f1:1f:38:be:6e:9f:e6:a9:3c:80:88:d7:2b:
52:6e:b1:39:c4:2c:00:6e:ff:ab:83:7c:e4:75:98:63:a3:6a:
8c:27:4f:a3:df:16:c5:53:5d:ba:52:43:4f:ca:45:24:86:ad:
c2:0d:35:e4:75:ee:5e:3b:1a:53:d0:76:c3:5c:1c:1f:d6:29:
ce:b5:3b:65:69:e4:67:b5:57:1d:57:84:ee:fb:19:04:df:45:
74:a8:28:23:4d:84:24:91:2f:9f:33:55:cb:75:39:5d:07:a0:
09:e8:a9:0c:ff:d6:9c:54:ea:2b:c4:61:fb:11:90:5f:5d:25:
c2:1c:a2:99:9b:ec:ce:b6:3a:8f:f3:9d:a4:b1:03:02:7a:b5:
28:ab:80:cf:5e:a7:eb:7a:84:41:25:4b:fc:71:e6:dc:79:ef:
22:39:f4:ca:67:30:63:df:01:f4:85:61:41:fa:f6:9b:8d:7f:
7c:0e:a2:42:3d:9c:fe:f3:1c:8d:37:5b:1d:14:7e:40:f2:8c:
d9:da:43:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:39 2024 by rpki-client on console-fra.rpki-client.org