Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/QGncjhd9Q6fgTr7QncPcp0F158s.roa
File: QGncjhd9Q6fgTr7QncPcp0F158s.roa (raw, json)
Hash identifier: QW+9JKct9vO1LuhepHcSOLByuUk67xSwpVdVrJY32Qg=
Subject key identifier: 40:69:DC:8E:17:7D:43:A7:E0:4E:BE:D0:9D:C3:DC:A7:41:75:E7:CB
Certificate issuer: /CN=568fe35cc962633a2757af10a0e6e8ab6d01f4c9
Certificate serial: 018570027764EB8F9D309440F0233F2AAFC5
Authority key identifier: 56:8F:E3:5C:C9:62:63:3A:27:57:AF:10:A0:E6:E8:AB:6D:01:F4:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Vo_jXMliYzonV68QoOboq20B9Mk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/QGncjhd9Q6fgTr7QncPcp0F158s.roa
Signing time: Mon 02 Jan 2023 01:04:47 +0000
ROA not before: Mon 02 Jan 2023 01:04:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8947
IP address blocks: 62.244.223.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:31:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:02:77:64:eb:8f:9d:30:94:40:f0:23:3f:2a:af:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=568fe35cc962633a2757af10a0e6e8ab6d01f4c9
Validity
Not Before: Jan 2 01:04:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4069dc8e177d43a7e04ebed09dc3dca74175e7cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:47:8d:e1:f1:68:91:63:d5:32:e4:33:c4:5d:
4d:e7:5b:46:56:6d:6e:4a:bd:fa:fc:67:43:88:98:
af:63:f2:0f:ba:4e:7d:7f:72:df:07:ce:81:a9:07:
bd:98:ba:54:bb:ae:f4:57:1f:2e:27:65:c7:ae:81:
ff:d9:d7:d4:66:e7:a4:b4:04:33:ea:16:3d:81:11:
7c:14:e6:6e:0a:57:0b:09:df:d3:33:7f:06:e5:07:
cd:18:5d:1e:60:8b:d6:0b:d2:e6:21:2d:68:6f:be:
50:68:3a:ea:98:0f:83:ea:44:4f:71:bd:e9:2f:b7:
2a:85:af:ab:7a:97:a3:e2:ad:51:b8:03:73:d7:f9:
d7:25:73:d5:65:7a:ce:72:c6:85:fa:c9:07:ff:98:
a1:01:4c:81:cc:2e:18:a7:e6:c8:e6:a2:9b:bd:da:
91:bc:fa:b4:04:6d:00:ed:5b:2c:d4:ec:bc:27:d1:
42:92:f0:02:6c:e4:25:f8:65:aa:1c:a1:95:19:b1:
1a:42:49:f5:21:69:65:44:af:51:c9:61:72:d3:57:
b3:81:ec:a9:f1:bc:f4:c0:75:5e:d5:94:b5:81:13:
42:81:51:6b:36:b9:d6:04:53:37:fc:09:fa:1b:bd:
3c:e6:7f:57:ae:15:88:65:70:de:29:0a:39:1b:93:
17:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:69:DC:8E:17:7D:43:A7:E0:4E:BE:D0:9D:C3:DC:A7:41:75:E7:CB
X509v3 Authority Key Identifier:
keyid:56:8F:E3:5C:C9:62:63:3A:27:57:AF:10:A0:E6:E8:AB:6D:01:F4:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vo_jXMliYzonV68QoOboq20B9Mk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/QGncjhd9Q6fgTr7QncPcp0F158s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/Vo_jXMliYzonV68QoOboq20B9Mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.244.223.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:a6:23:ef:ae:a9:9c:e8:55:8f:63:d3:65:04:88:57:1a:07:
3f:b4:bc:a0:74:e2:3b:37:55:ff:23:97:af:51:85:91:34:80:
a5:16:6d:a1:66:95:77:d8:fd:95:c6:5f:f7:01:f5:b6:87:a3:
32:b5:cb:34:8f:60:7a:e4:a2:57:e1:a2:6f:d2:f3:27:a4:8f:
ff:d0:37:b6:e9:8d:00:30:6d:83:b6:17:e2:86:d3:44:e5:cd:
0d:27:96:49:0e:37:1a:3b:85:96:3c:ba:4d:29:98:9e:d7:ec:
47:95:a3:09:fc:d3:f3:58:da:0b:78:d1:2a:19:b7:22:3c:30:
5a:44:fe:0f:aa:82:18:54:c1:1a:81:1e:a6:fc:00:ff:5c:79:
55:79:fd:e8:dc:f3:0d:b9:97:89:38:f3:bb:57:6c:1d:3a:9f:
8d:75:6c:db:a4:e3:ff:64:66:8d:9c:b8:f8:3f:f7:e4:88:d2:
2c:1a:8b:d7:4d:0e:75:df:4c:31:49:d8:2e:bf:97:3d:b7:98:
34:47:91:07:74:20:bd:6a:b7:10:3b:ea:2a:48:1d:c0:46:fc:
bc:bc:e6:f4:dc:99:96:e8:26:bc:d0:49:c1:5b:ef:ce:70:ff:
3a:4f:41:67:ea:ab:41:43:84:e9:b0:c4:e4:0d:f6:0e:d5:5b:
e0:80:fe:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:56 2024 by rpki-client on console-fra.rpki-client.org