Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/qvhm-e7c2j295oUukf17pgrPdlU.roa
File: qvhm-e7c2j295oUukf17pgrPdlU.roa (raw, json)
Hash identifier: JJsT/kdpyRoVQ3xKTnZzQsmxFVou+vmxAkeILmwK+X4=
Subject key identifier: AA:F8:66:F9:EE:DC:DA:3D:BD:E6:85:2E:91:FD:7B:A6:0A:CF:76:55
Certificate issuer: /CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Certificate serial: 018572BA898C499ECD130E8175AC5678D197
Authority key identifier: 68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/qvhm-e7c2j295oUukf17pgrPdlU.roa
Signing time: Mon 02 Jan 2023 13:45:05 +0000
ROA not before: Mon 02 Jan 2023 13:45:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202162
IP address blocks: 85.232.236.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:35:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:ba:89:8c:49:9e:cd:13:0e:81:75:ac:56:78:d1:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Validity
Not Before: Jan 2 13:45:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=aaf866f9eedcda3dbde6852e91fd7ba60acf7655
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:5e:85:1f:41:d7:a4:04:c3:35:a6:af:3d:cd:
d2:55:10:52:14:59:eb:b9:b8:68:06:31:48:65:99:
4b:44:85:f1:e0:85:6c:41:82:69:0f:ee:bf:b4:bb:
a9:df:fd:bd:53:8a:d4:04:75:56:3e:61:d0:6a:8e:
ce:49:e0:6e:3d:ab:bd:9c:14:8e:7e:c4:41:70:b8:
b2:dd:97:28:78:a8:54:d7:94:e4:ae:82:71:3c:a4:
1e:c4:58:54:38:3f:6d:a4:0a:31:3b:de:84:39:1c:
d3:24:65:51:0f:39:c9:10:49:b9:43:16:6f:4b:c3:
eb:92:e1:f3:8b:3f:7a:ca:ea:ff:82:b0:f2:71:a0:
d8:96:f7:b6:b9:5f:17:bd:10:47:15:d6:a2:e4:f2:
29:f3:4f:96:a8:3d:7e:66:47:bf:1c:75:23:e9:8f:
42:c7:cc:82:69:e2:2b:d7:05:2c:fd:1e:71:1c:da:
46:a3:6f:12:1d:1d:a8:6a:04:38:af:4a:7a:cd:25:
42:1a:b9:f9:1d:35:e0:e4:5a:3c:b7:cf:d5:fa:66:
62:1e:24:36:22:00:3f:ab:f4:f3:c7:13:42:bd:7c:
11:93:7a:5a:5f:93:54:04:aa:69:24:29:b7:cb:db:
76:b4:ce:24:b2:eb:e0:d6:46:48:e1:27:2e:42:61:
98:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:F8:66:F9:EE:DC:DA:3D:BD:E6:85:2E:91:FD:7B:A6:0A:CF:76:55
X509v3 Authority Key Identifier:
keyid:68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/qvhm-e7c2j295oUukf17pgrPdlU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/aMUQ_JuGXZbjr8fFYFbvrZozDFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.232.236.0/24
Signature Algorithm: sha256WithRSAEncryption
21:71:14:84:af:5f:97:98:63:27:b1:da:21:0c:ef:bb:0c:35:
8b:22:59:a2:1c:e7:36:16:eb:db:1c:d8:33:52:a7:17:00:a3:
af:4f:cc:5f:b0:a1:74:2b:7a:e8:af:86:f5:c8:92:6b:e8:e7:
d3:d3:6f:08:c4:70:50:bc:05:b4:36:c8:df:49:78:79:e6:e2:
8f:ed:d2:0e:47:31:7d:9e:72:db:c1:ff:a2:dd:88:a1:bc:32:
9a:28:ef:9a:88:cf:04:9b:aa:27:71:f1:3a:28:52:ca:5e:04:
a7:04:1e:44:09:53:54:4c:f2:7a:9b:36:dd:8b:16:58:39:b4:
f2:31:d5:a5:73:b6:01:12:b3:7f:83:9a:be:9c:d6:6f:df:5e:
1b:71:f1:05:cf:c0:27:51:f6:c1:82:3d:23:d9:41:f8:fd:0d:
f1:e3:f7:5c:30:40:80:03:a9:57:e4:0a:56:4d:24:7f:31:a8:
70:09:40:00:1f:e4:a9:01:6c:0e:1c:64:05:b6:00:d5:6d:a9:
eb:52:01:e5:1a:5c:fe:a7:08:bc:01:9b:e3:0c:62:cb:f8:d8:
8e:52:36:20:51:cb:60:c9:94:70:54:46:35:80:2d:f8:5c:8c:
61:9b:72:60:0c:a4:d7:8e:4e:72:72:e0:a6:a5:85:1a:9a:1a:
bf:73:1a:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:57 2024 by rpki-client on console-fra.rpki-client.org