Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/QeyQNcQxHS4-zrgJJ9Er_oTv09A.roa
File: QeyQNcQxHS4-zrgJJ9Er_oTv09A.roa (raw, json)
Hash identifier: R3erQkvas0m0sGBdFIl5Hl6Qkkuy2fkPmwhYzmNxstI=
Subject key identifier: 41:EC:90:35:C4:31:1D:2E:3E:CE:B8:09:27:D1:2B:FE:84:EF:D3:D0
Certificate issuer: /CN=59dd542781851c0bce5a3ea5cc387650ffc8277e
Certificate serial: 01856EB8ECE048BC79A780198B48B355F560
Authority key identifier: 59:DD:54:27:81:85:1C:0B:CE:5A:3E:A5:CC:38:76:50:FF:C8:27:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wd1UJ4GFHAvOWj6lzDh2UP_IJ34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/QeyQNcQxHS4-zrgJJ9Er_oTv09A.roa
Signing time: Sun 01 Jan 2023 19:04:50 +0000
ROA not before: Sun 01 Jan 2023 19:04:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15695
IP address blocks: 84.47.184.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:b8:ec:e0:48:bc:79:a7:80:19:8b:48:b3:55:f5:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=59dd542781851c0bce5a3ea5cc387650ffc8277e
Validity
Not Before: Jan 1 19:04:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=41ec9035c4311d2e3eceb80927d12bfe84efd3d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:28:0a:24:5c:40:80:ed:cb:53:19:4f:4b:4c:
54:4e:db:ac:8a:d7:c3:86:29:71:27:28:ab:bb:66:
f3:35:e1:b3:2c:63:ef:ba:e7:25:6b:d6:5b:39:d0:
43:a6:f8:d9:0a:6f:c7:dc:71:be:67:03:14:ae:9f:
b3:1a:fa:01:ce:7c:9b:ae:33:e8:3d:55:11:20:06:
6d:49:71:23:90:b5:c7:f4:b8:72:33:cd:70:cb:ec:
f8:b1:40:ba:54:d7:7d:f2:f1:97:e5:8d:4a:79:12:
a3:c8:72:6a:22:23:e2:ed:76:08:2a:c7:d1:16:fa:
df:04:13:eb:36:c6:c6:65:e7:d7:ab:45:41:6f:50:
f6:2d:45:9b:bc:60:f1:c6:49:14:5d:f1:4b:ac:eb:
0c:f2:7c:6a:a7:02:af:9a:13:a7:5a:2f:91:2a:0b:
45:0d:ac:68:d2:49:a4:b4:f1:76:22:63:1b:c6:3c:
1b:18:ac:de:9c:1d:1a:c4:5f:c5:8b:6f:73:2c:4b:
3c:61:4f:59:01:0b:df:2b:3b:01:30:d1:14:24:37:
a1:58:78:0f:f8:9b:39:2b:7b:2f:5c:15:83:fc:b3:
a6:ee:1a:8f:e0:1f:7e:17:59:d1:42:c5:9a:1c:63:
6f:9e:b6:9b:1c:1f:4d:32:c9:07:ca:90:4f:4f:ba:
19:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:EC:90:35:C4:31:1D:2E:3E:CE:B8:09:27:D1:2B:FE:84:EF:D3:D0
X509v3 Authority Key Identifier:
keyid:59:DD:54:27:81:85:1C:0B:CE:5A:3E:A5:CC:38:76:50:FF:C8:27:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wd1UJ4GFHAvOWj6lzDh2UP_IJ34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/QeyQNcQxHS4-zrgJJ9Er_oTv09A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/Wd1UJ4GFHAvOWj6lzDh2UP_IJ34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.47.184.0/24
Signature Algorithm: sha256WithRSAEncryption
20:66:2d:0c:be:99:b9:a7:e4:1d:0f:43:db:de:0d:6e:bd:00:
b9:52:51:d1:7f:a5:b4:04:07:01:09:12:16:c6:4c:9d:fe:b6:
11:b4:c1:15:57:c2:65:42:8d:55:51:22:07:e1:ee:a8:97:27:
74:2e:09:68:39:a4:04:c0:fe:66:31:41:de:0a:85:79:f3:0d:
62:05:26:ea:f6:1e:63:3e:ca:ac:d1:26:af:d3:e6:ea:7a:17:
b8:26:b2:a8:6b:0f:06:55:9b:8f:4b:ff:f5:79:32:3a:59:10:
eb:82:30:53:3e:8a:49:a9:2b:32:32:70:2d:92:c5:4e:b6:c7:
77:64:a4:0d:03:e9:3c:95:c6:f8:9a:f9:59:80:ca:e5:b7:ee:
5f:53:05:98:e0:f0:ad:2b:ff:f9:c4:25:a8:de:f5:3f:2e:cf:
9d:3d:f1:ae:3d:04:68:5c:ed:78:df:41:b3:a9:7d:2a:90:a8:
4f:53:c9:ff:31:3a:2d:6b:0f:a7:07:e0:ff:72:90:f2:1b:64:
aa:c5:8a:f4:a0:33:3a:e7:a1:ab:88:5a:04:3b:63:83:bc:13:
f8:c3:4a:64:be:1a:6a:2f:f3:1c:fb:6b:7a:3d:b3:42:39:ab:
70:68:7d:56:23:a2:d8:e8:a9:65:54:e0:07:80:5e:16:d5:8a:
d0:32:1a:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 14:35:56 2024 by rpki-client on console-fra.rpki-client.org