Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/afa34c-f3f0-405c-b083-a35fc438d4ca/1/QLdLz_svSVBcxR_IY2crQ6yqa3s.roa
File: QLdLz_svSVBcxR_IY2crQ6yqa3s.roa (raw, json)
Hash identifier: IBHi47Xny5uB4YNcWZje3z99DaeIWnbJRdrZlYiCe4g=
Subject key identifier: 40:B7:4B:CF:FB:2F:49:50:5C:C5:1F:C8:63:67:2B:43:AC:AA:6B:7B
Certificate issuer: /CN=0bf543e23e29fb03748d0939726f30fe9affa19e
Certificate serial: 0185726B76B5C2C2452D2A74F82BE196BA6F
Authority key identifier: 0B:F5:43:E2:3E:29:FB:03:74:8D:09:39:72:6F:30:FE:9A:FF:A1:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C_VD4j4p-wN0jQk5cm8w_pr_oZ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/afa34c-f3f0-405c-b083-a35fc438d4ca/1/QLdLz_svSVBcxR_IY2crQ6yqa3s.roa
Signing time: Mon 02 Jan 2023 12:18:43 +0000
ROA not before: Mon 02 Jan 2023 12:18:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210117
IP address blocks: 188.95.150.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:6b:76:b5:c2:c2:45:2d:2a:74:f8:2b:e1:96:ba:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0bf543e23e29fb03748d0939726f30fe9affa19e
Validity
Not Before: Jan 2 12:18:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=40b74bcffb2f49505cc51fc863672b43acaa6b7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:70:43:60:7c:56:b3:2c:4f:63:eb:ed:b0:dd:
5a:9f:e1:e9:e5:4c:1c:2f:55:f3:f9:f9:29:27:3f:
94:b5:f7:58:dd:5b:9f:f5:82:08:54:2f:7a:9a:f4:
74:a6:c0:59:fb:76:4a:4e:68:f0:e5:c1:89:64:49:
4b:15:60:bc:53:32:35:ce:6d:17:64:ac:c3:b9:b5:
f3:74:7d:18:35:a4:8c:3f:4f:21:59:a4:06:45:dd:
16:12:16:52:15:e3:47:50:fc:46:33:47:46:ae:24:
d0:e1:f5:6b:a5:67:fc:ad:0e:3a:3f:59:08:fe:54:
3b:44:3d:63:dd:c5:9a:63:54:64:f0:21:c8:5f:8e:
97:05:b5:fc:5a:41:2e:36:12:47:65:7b:cf:13:5f:
10:c1:65:fb:7f:ae:dc:1c:b7:47:47:2c:11:1a:a5:
4a:0b:cb:1a:03:3c:51:61:a4:bc:b3:69:e4:88:d5:
de:7e:06:ca:32:78:aa:a3:34:59:67:e2:94:3c:c6:
5a:03:a1:e6:c0:28:0c:51:a2:a2:cc:3a:1e:61:4c:
05:31:3d:d0:c0:72:f8:c6:1a:63:76:93:85:69:05:
a2:04:1a:e0:bc:8f:62:53:94:01:36:f5:59:a6:90:
e1:d3:21:4a:38:26:b3:7b:8e:df:e1:c2:2a:54:4d:
02:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:B7:4B:CF:FB:2F:49:50:5C:C5:1F:C8:63:67:2B:43:AC:AA:6B:7B
X509v3 Authority Key Identifier:
keyid:0B:F5:43:E2:3E:29:FB:03:74:8D:09:39:72:6F:30:FE:9A:FF:A1:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C_VD4j4p-wN0jQk5cm8w_pr_oZ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/afa34c-f3f0-405c-b083-a35fc438d4ca/1/QLdLz_svSVBcxR_IY2crQ6yqa3s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/afa34c-f3f0-405c-b083-a35fc438d4ca/1/C_VD4j4p-wN0jQk5cm8w_pr_oZ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.95.150.0/24
Signature Algorithm: sha256WithRSAEncryption
43:f2:9f:14:d2:27:be:d7:d6:09:71:b1:8b:1c:34:27:a1:e6:
69:8a:17:0f:0b:84:b1:e0:49:38:03:0d:aa:98:c8:f0:2e:2f:
07:a0:59:e3:6f:ab:ff:d5:b4:8a:bf:e1:75:c4:cb:e7:bf:f4:
13:d1:3c:b9:89:56:4f:9f:ac:e8:4d:1c:57:99:76:c8:8e:8b:
51:53:cb:ed:ef:2d:16:72:3a:29:06:23:a5:13:1c:7c:bc:1e:
69:b3:31:03:d3:ef:61:55:95:3c:95:40:42:41:65:5e:47:52:
4a:52:25:b0:ff:06:a0:4c:bb:5a:b3:d8:5e:0e:d6:79:34:dd:
f9:af:47:a1:ed:61:ec:da:fe:af:81:33:88:e9:10:78:e1:48:
62:a0:69:22:45:16:cc:7e:e8:98:5d:9a:2d:39:01:2d:bd:4a:
f4:2f:f8:37:2c:51:7d:ea:cd:4f:ea:5e:ac:4c:0b:c2:61:06:
30:11:fe:7c:c3:ef:58:ba:4c:40:4e:97:f7:cb:19:b2:ed:b5:
9c:88:bf:d1:a4:22:ec:2e:f0:94:17:82:a4:aa:bd:12:bb:8a:
ae:b3:23:7b:36:e3:16:18:11:7e:d1:56:41:f8:18:c0:80:db:
fa:44:cf:8a:62:85:15:7d:17:f7:90:5f:69:b4:96:e0:c8:40:
96:fc:67:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 04:09:18 2024 by rpki-client on console-ams.rpki-client.org