Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/qERSFOGQh3rzqNLXic5RHuqVyv4.roa
File: qERSFOGQh3rzqNLXic5RHuqVyv4.roa (raw, json)
Hash identifier: n1pH3MhT7OA7wdGx9lZB3a2MCgFB+s4h1VklqTFhFs8=
Subject key identifier: A8:44:52:14:E1:90:87:7A:F3:A8:D2:D7:89:CE:51:1E:EA:95:CA:FE
Certificate issuer: /CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Certificate serial: 01885C94A249607BAB55230AD4669E28AA58
Authority key identifier: 77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/qERSFOGQh3rzqNLXic5RHuqVyv4.roa
Signing time: Sat 27 May 2023 09:40:24 +0000
ROA not before: Sat 27 May 2023 09:40:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 87.248.130.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 16 Jun 2023 11:04:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:5c:94:a2:49:60:7b:ab:55:23:0a:d4:66:9e:28:aa:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Validity
Not Before: May 27 09:40:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a8445214e190877af3a8d2d789ce511eea95cafe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:0b:b0:f0:07:ac:a5:5a:37:ad:68:25:c0:53:
2a:17:cd:7f:3d:29:f5:e5:e0:2a:c7:4a:ec:e4:f1:
2c:09:76:a6:c8:af:8d:71:61:85:d4:c9:e9:0c:89:
07:f5:c4:9f:c3:16:a9:f5:cb:42:15:ad:a3:86:53:
2b:70:54:83:ab:fc:86:9c:56:26:4a:5d:86:c0:f2:
4d:70:3a:07:be:b6:94:b8:6a:67:6c:38:72:01:f0:
0b:b3:50:12:54:4a:73:e3:c7:46:78:90:d9:86:a1:
c3:80:98:44:b3:74:91:74:b6:8b:2a:46:0e:08:b2:
88:0e:4b:f2:ef:eb:d0:8f:81:e9:da:44:b3:00:97:
03:23:89:8f:85:c5:9e:b4:43:00:7d:4d:40:49:9d:
6a:a8:46:98:f9:5a:da:b9:82:96:67:ce:3b:ef:7b:
97:64:cf:71:8d:12:1e:5a:b2:ec:2c:42:c1:e9:bb:
ef:02:3e:46:69:6f:26:70:39:be:ba:92:2e:ff:88:
f0:6a:a5:26:50:1b:83:c7:9f:35:67:7f:52:03:9a:
11:17:b1:74:de:72:d3:f0:55:3c:ed:57:be:e8:1c:
32:21:4a:39:f4:85:e8:bb:b8:fd:4f:c9:c9:fe:65:
da:a4:fc:46:1f:e2:2b:c0:33:c9:fe:6d:ce:7d:9e:
42:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:44:52:14:E1:90:87:7A:F3:A8:D2:D7:89:CE:51:1E:EA:95:CA:FE
X509v3 Authority Key Identifier:
keyid:77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/qERSFOGQh3rzqNLXic5RHuqVyv4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.248.130.0/24
Signature Algorithm: sha256WithRSAEncryption
97:16:26:cc:39:16:24:e8:00:73:a4:cc:28:0c:0a:6b:76:97:
ca:7f:74:e4:6c:1c:8f:02:8d:7a:fd:25:48:c6:e3:87:a4:c2:
d9:07:17:05:f8:56:97:78:11:15:d7:3e:cb:9c:42:b3:b5:a3:
d6:b3:3a:0c:93:08:b4:b7:32:2e:e7:bb:5d:9b:7d:91:05:96:
b0:55:14:01:b7:ca:26:a0:43:92:e5:bf:83:83:f8:8a:22:91:
0e:6b:e0:a8:f8:d7:d8:a0:b7:af:ce:a8:d3:ad:da:95:73:64:
4f:d8:4d:1b:49:2a:e7:44:ed:af:3d:17:d7:34:57:b6:6d:c8:
60:4b:98:22:a7:89:50:c1:5c:ec:e4:ac:22:c7:f6:de:be:96:
a5:89:42:f2:68:64:41:49:5f:b6:f5:92:bc:40:fa:ad:2c:00:
76:50:ad:6d:5d:ec:5d:b4:5d:3d:1d:d7:bb:91:db:35:7b:17:
61:59:dc:7c:00:81:7b:ee:c9:e1:99:f2:4e:b6:98:cf:1b:94:
36:10:2d:fd:04:9d:34:81:d4:c9:1e:09:49:d0:2c:d4:65:7e:
89:aa:2b:36:4c:11:35:3f:95:7e:c4:c9:fe:35:09:88:08:48:
a7:31:78:37:4f:f9:6f:db:92:77:b6:ae:f2:4d:ab:d4:1b:65:
60:b0:d1:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:35 2024 by rpki-client on console-fra.rpki-client.org