Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/QQKDAcHSCtgaQPTr5C7-HpaLU8Q.roa
File: QQKDAcHSCtgaQPTr5C7-HpaLU8Q.roa (raw, json)
Hash identifier: hBLPko/upCXvn5XQzuMxQbTolhhakMqVvJGeyRR5Sqc=
Subject key identifier: 41:02:83:01:C1:D2:0A:D8:1A:40:F4:EB:E4:2E:FE:1E:96:8B:53:C4
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018ACD3A7E7E7F4ED77AF0E4E44476FE2E95
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/QQKDAcHSCtgaQPTr5C7-HpaLU8Q.roa
Signing time: Mon 25 Sep 2023 16:44:37 +0000
ROA not before: Mon 25 Sep 2023 16:44:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 174
IP address blocks: 195.133.92.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:cd:3a:7e:7e:7f:4e:d7:7a:f0:e4:e4:44:76:fe:2e:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Sep 25 16:44:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=41028301c1d20ad81a40f4ebe42efe1e968b53c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:f8:d4:2e:42:15:e2:2f:06:57:64:e0:ca:51:
83:86:af:ec:58:95:b0:3e:ad:7c:0d:21:17:ba:f3:
3c:8a:83:1c:4a:df:d7:79:fc:32:53:38:44:fc:c7:
28:ef:cc:8c:8c:3c:c7:c3:bd:8a:86:87:17:d7:39:
75:0f:12:f6:dd:6d:98:ed:27:99:88:36:17:ae:b5:
cb:5c:94:de:c1:d7:51:4b:e1:8c:94:3e:0c:47:54:
83:f3:a4:d9:05:66:93:a1:f2:8c:6e:27:4d:af:5c:
b8:43:f6:17:e2:09:82:cb:2b:42:31:0e:29:01:d5:
df:ac:a0:62:1d:19:99:67:1a:4a:0d:9c:a5:44:f5:
b3:ec:7f:42:e1:5a:9e:4b:6a:e7:0f:02:bb:65:36:
71:4e:1b:05:d7:6d:44:75:67:2f:53:21:bf:52:96:
03:82:6a:2b:61:1b:32:5e:80:f8:90:c2:da:12:31:
b3:26:fb:86:3c:90:91:a1:93:c7:ce:4a:8e:f6:01:
ad:74:21:58:52:c3:b3:90:8c:30:53:c4:a1:82:66:
b8:cb:0a:d2:84:3d:70:db:fc:25:2f:30:ff:1b:0d:
86:b5:c4:5f:bb:58:a7:b8:8b:3e:86:0d:eb:88:dc:
a7:dc:ad:44:a9:7d:3f:ee:29:ca:26:ec:b3:fb:71:
17:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:02:83:01:C1:D2:0A:D8:1A:40:F4:EB:E4:2E:FE:1E:96:8B:53:C4
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/QQKDAcHSCtgaQPTr5C7-HpaLU8Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.133.92.0/23
Signature Algorithm: sha256WithRSAEncryption
24:70:b9:37:e1:9f:ea:71:1f:6d:24:f9:e9:8f:74:66:52:95:
6b:a9:e8:4a:dd:da:d2:b3:e2:d3:e9:5e:49:67:4e:13:b9:58:
18:4d:37:54:97:3c:9a:0c:32:b3:e8:55:0c:b5:6b:6c:cf:90:
1a:37:4b:27:6c:6e:47:84:85:3c:dd:a6:3b:72:d7:f9:f3:58:
d9:68:7d:46:02:07:62:ab:0b:e2:c8:8d:aa:c7:9c:78:91:b5:
35:c5:cf:d4:13:7e:e8:69:20:63:ef:1c:4d:98:31:c7:d8:9f:
b0:9b:40:cf:3c:94:47:76:35:01:28:59:27:2e:65:cd:a5:4a:
92:bc:c0:62:89:4f:51:8e:5c:47:94:e3:3e:30:a4:25:18:5e:
3a:9e:0d:58:12:0b:58:39:8f:d2:25:c9:61:df:74:7f:5e:4c:
0b:a7:fd:2b:88:73:58:b7:7b:75:e4:40:c5:cb:65:24:90:5b:
79:c7:2f:46:47:3c:c2:e5:04:60:b9:90:c4:10:2b:66:ae:75:
b3:5e:76:14:df:5b:50:69:d6:ff:1e:a4:c4:b6:7e:8a:43:21:
90:c0:6d:35:77:f9:c3:7b:86:01:7e:91:8b:bb:91:bd:3e:1e:
fe:09:2b:bf:90:ae:31:7f:3d:51:30:db:b6:f3:81:41:46:cd:
2e:f1:3f:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:19:18 2024 by rpki-client on console-ams.rpki-client.org