Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/QCWZWFIAeQT9WeZ5nnz0OSGLynI.roa
File: QCWZWFIAeQT9WeZ5nnz0OSGLynI.roa (raw, json)
Hash identifier: addmzhu2JcF8rdKEdeXSsK2COPsxqAjLMand7sY8fzY=
Subject key identifier: 40:25:99:58:52:00:79:04:FD:59:E6:79:9E:7C:F4:39:21:8B:CA:72
Certificate issuer: /CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Certificate serial: 0186021E5898B9CBF528EDAD44437AD9B041
Authority key identifier: 05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/QCWZWFIAeQT9WeZ5nnz0OSGLynI.roa
Signing time: Mon 30 Jan 2023 09:59:48 +0000
ROA not before: Mon 30 Jan 2023 09:59:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197184
IP address blocks: 88.203.248.0/24 maxlen: 24
88.203.249.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:02:1e:58:98:b9:cb:f5:28:ed:ad:44:43:7a:d9:b0:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Validity
Not Before: Jan 30 09:59:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4025995852007904fd59e6799e7cf439218bca72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:2d:d2:b4:5e:40:23:23:29:65:26:94:ff:bb:
e6:83:e0:c7:be:60:27:e9:0c:58:ea:4e:e0:84:5b:
70:75:06:80:47:6b:25:90:f3:ee:84:d4:a0:d1:18:
f3:be:b7:65:01:ca:e5:00:7a:fb:95:f7:6f:cd:50:
a8:71:5a:78:91:0d:e4:ea:7b:d0:50:24:1e:e8:94:
d3:08:ea:2f:e9:8b:b8:44:16:05:66:79:ea:5a:19:
7d:cb:1d:69:f2:cf:ab:70:51:cf:39:48:db:f5:12:
92:3e:34:e6:15:76:3e:eb:af:72:6c:66:9c:94:39:
f5:e7:6a:ad:1c:0e:48:47:38:c9:fe:86:84:ae:88:
a2:f4:5f:eb:c1:ee:da:63:97:ee:3d:46:52:4a:3b:
60:a7:4f:e9:af:f1:95:eb:5c:5b:6c:f8:24:05:34:
a2:df:d1:ae:8f:62:4c:70:3b:4e:f4:b7:92:32:aa:
4b:a3:0f:64:26:e4:f8:cc:5c:62:c4:b1:e6:3b:a0:
88:ae:50:9e:d4:4e:35:4e:c7:16:6f:86:fa:e8:64:
73:78:31:84:f7:8d:3d:45:39:c1:e9:34:bb:d9:b6:
f4:a7:3d:9c:a7:c6:8b:c0:41:92:b8:f8:fe:52:43:
6c:48:63:e6:c4:a9:50:4b:9e:93:35:01:05:bf:1b:
b6:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:25:99:58:52:00:79:04:FD:59:E6:79:9E:7C:F4:39:21:8B:CA:72
X509v3 Authority Key Identifier:
keyid:05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/QCWZWFIAeQT9WeZ5nnz0OSGLynI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/BUjO3xcCntmKEIETxsEJ7KzNguw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.203.248.0/23
Signature Algorithm: sha256WithRSAEncryption
2f:be:b1:86:d0:c8:06:bb:c0:35:e7:3c:c2:35:7b:17:9e:67:
6f:f9:e5:f2:28:60:80:17:a9:35:01:70:4e:c6:a1:e1:07:c0:
a8:6c:42:e7:07:44:44:38:5f:58:20:96:03:7b:00:ae:ce:10:
2a:67:fd:95:24:4a:5c:96:a1:ea:00:d2:63:5e:4b:d2:9b:1f:
35:e7:82:5d:19:b8:18:e6:98:6a:fd:6e:cc:dc:29:09:a5:51:
2c:b1:68:86:d1:0a:68:fd:86:d9:59:b4:1e:e1:30:77:1c:bf:
86:a7:f1:6b:0e:35:2c:f0:40:2b:53:7a:1c:a9:85:f1:7f:c6:
60:11:b4:42:3d:12:98:c5:28:0e:39:3f:37:ff:4a:bd:56:8d:
14:ff:77:81:3b:c4:6a:a3:8f:a9:f9:1a:09:63:34:a0:3e:41:
ca:24:93:b6:ac:86:50:41:b7:d0:5c:3e:04:45:c0:71:5a:1f:
c3:5d:b9:f7:43:c8:a3:d2:17:7c:bf:32:8e:04:9d:3e:9d:f7:
e8:a0:65:ab:26:bd:60:ed:d9:7b:08:18:65:7f:79:f3:dc:59:
3d:25:d4:8e:db:b9:a2:46:bd:9c:ae:32:2a:cb:42:6c:30:30:
f0:ae:0b:3f:e5:1e:f9:8a:49:f3:cd:7d:64:b3:28:3c:7f:3a:
b2:3d:f8:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:18:44 2024 by rpki-client on console-ams.rpki-client.org