Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/qeCvDZTY_tclabVWFfTpj86Elkk.roa
File: qeCvDZTY_tclabVWFfTpj86Elkk.roa (raw, json)
Hash identifier: vTHiT6DZEKLC5FFGszwrjG1lnwP8oMg7BmWajLAUBHA=
Subject key identifier: A9:E0:AF:0D:94:D8:FE:D7:25:69:B5:56:15:F4:E9:8F:CE:84:96:49
Certificate issuer: /CN=4f8aea2f025f495beacee7ce5a8820519dda1370
Certificate serial: 018CCFDEB549DACEB5417DD4E352AEC78A4A
Authority key identifier: 4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/qeCvDZTY_tclabVWFfTpj86Elkk.roa
Signing time: Wed 03 Jan 2024 15:08:48 +0000
ROA not before: Wed 03 Jan 2024 15:08:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215787
IP address blocks: 185.236.9.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:cf:de:b5:49:da:ce:b5:41:7d:d4:e3:52:ae:c7:8a:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f8aea2f025f495beacee7ce5a8820519dda1370
Validity
Not Before: Jan 3 15:08:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a9e0af0d94d8fed72569b55615f4e98fce849649
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:e4:eb:bb:cf:bc:30:81:22:4b:1d:d6:bd:bb:
fa:19:d8:7b:99:78:2c:32:71:d0:dd:af:83:54:95:
0f:22:13:ec:a7:f7:7a:e8:51:3d:ea:cb:17:1f:12:
5a:ea:b4:e6:ee:71:16:d9:07:9a:b3:8b:dd:12:75:
1c:b9:b6:3d:88:81:58:f1:c1:de:30:ae:5e:01:e7:
c7:da:43:37:51:27:25:81:6f:18:07:0f:cc:3a:e6:
8f:32:42:74:d4:5c:7c:84:bb:ee:9e:cf:e9:7a:d9:
9f:1f:1c:34:42:c6:ac:bd:59:b0:ed:99:7d:af:08:
65:59:66:cc:3b:8e:35:7f:a2:f0:3b:ca:57:e2:ff:
1c:ec:2d:f0:58:0f:43:70:4e:3d:19:c1:fa:2c:35:
70:0f:63:73:3f:78:75:bb:06:96:56:26:2c:4c:56:
db:c7:5b:63:ac:c2:5c:80:65:d1:ca:74:6a:94:99:
a3:3c:09:4a:c9:2f:f2:fa:59:e2:42:e9:81:ee:8e:
30:9f:a5:d6:22:6f:11:e3:ce:92:1e:fe:dd:42:39:
57:4b:b3:da:4f:61:1b:8e:04:74:03:d2:67:8a:19:
f6:9e:20:1f:0e:9d:d8:8a:55:56:8c:9c:d8:6e:30:
cf:7e:7d:84:58:c9:7d:5c:3b:bc:bd:d2:f0:84:bd:
50:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:E0:AF:0D:94:D8:FE:D7:25:69:B5:56:15:F4:E9:8F:CE:84:96:49
X509v3 Authority Key Identifier:
keyid:4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/qeCvDZTY_tclabVWFfTpj86Elkk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/T4rqLwJfSVvqzufOWoggUZ3aE3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.236.9.0/24
Signature Algorithm: sha256WithRSAEncryption
40:e5:16:e0:df:76:a7:e7:3e:4e:9b:db:83:e8:c1:fd:d4:c7:
f8:b1:f0:82:61:ba:cf:df:c0:ef:e9:b6:5e:b9:29:75:e2:bb:
ba:00:96:0d:20:73:42:4d:c7:33:ff:ad:a1:f0:3b:56:e7:66:
0f:ca:49:fe:38:2c:f0:d0:fb:b3:89:f6:a6:17:a0:8e:2a:36:
24:8e:1b:b7:aa:df:9d:c3:dd:39:3e:74:dd:4c:05:a2:44:0e:
2d:e9:ae:af:35:98:36:ec:56:18:75:b7:16:fa:f3:0d:77:16:
17:f3:2d:4e:f1:ca:b9:14:24:3c:d2:ac:34:38:90:76:c3:00:
6a:42:8a:9f:43:00:0a:ab:6a:63:47:72:70:85:f7:30:f2:07:
fb:ab:1b:fd:9c:e0:d3:a1:bf:a9:f4:a1:01:a5:90:5d:5d:e9:
06:8a:d5:d8:83:10:35:61:2f:29:2e:a0:74:f8:6f:9c:05:90:
23:40:35:67:51:dc:4b:23:40:85:be:31:18:70:d8:43:a2:cb:
dd:b1:c1:26:1b:91:d1:42:db:41:e5:7c:16:eb:67:ee:ee:fb:
84:dd:d5:d4:95:fe:4f:4a:8f:9b:3c:75:83:6f:8a:e8:fb:ad:
65:f2:b3:1e:24:a0:bc:66:e8:e4:7c:25:23:e0:7f:7c:59:19:
30:a5:fc:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 5 00:22:33 2024 by rpki-client on console-ams.rpki-client.org