Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/a52048-12ca-4a03-95be-697948ea71f5/1/7QoFG1cYM6y7rcc56T7qn1Pxgc4.roa
File: 7QoFG1cYM6y7rcc56T7qn1Pxgc4.roa (raw, json)
Hash identifier: 47aih7lfjxfrLwt1Hcidrj8YnUkwP21dGmcBbTdwJdI=
Subject key identifier: ED:0A:05:1B:57:18:33:AC:BB:AD:C7:39:E9:3E:EA:9F:53:F1:81:CE
Certificate issuer: /CN=42ce759320195b9cc18ccfcb1b532aea949258f1
Certificate serial: 01885DA74A816E8AAD9A8101077859197E11
Authority key identifier: 42:CE:75:93:20:19:5B:9C:C1:8C:CF:CB:1B:53:2A:EA:94:92:58:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qs51kyAZW5zBjM_LG1Mq6pSSWPE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/a52048-12ca-4a03-95be-697948ea71f5/1/7QoFG1cYM6y7rcc56T7qn1Pxgc4.roa
Signing time: Sat 27 May 2023 14:40:24 +0000
ROA not before: Sat 27 May 2023 14:40:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42962
IP address blocks: 5.181.224.0/24 maxlen: 24
194.61.237.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 14:35:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:5d:a7:4a:81:6e:8a:ad:9a:81:01:07:78:59:19:7e:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42ce759320195b9cc18ccfcb1b532aea949258f1
Validity
Not Before: May 27 14:40:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ed0a051b571833acbbadc739e93eea9f53f181ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:59:72:60:a4:cc:cc:86:a6:4e:0b:5e:a5:77:
c0:c0:6e:3d:74:7c:52:7d:f4:da:4f:51:f5:0a:da:
3f:7f:b0:f2:db:5f:2b:cf:ef:17:73:82:03:a7:ae:
d5:f8:e4:dd:31:83:58:43:87:5c:41:42:f2:51:ca:
0b:e0:24:11:a9:28:ac:08:ac:5c:bf:db:57:6e:66:
9c:2e:5c:b2:24:d0:69:67:f9:65:0e:db:f7:44:ed:
91:1b:9f:49:dc:0c:95:25:37:23:d4:bb:de:84:15:
c3:72:ee:79:43:d1:a6:bb:3e:66:96:65:a0:36:12:
95:7d:e2:44:40:9f:ec:b4:f7:d2:64:80:c4:28:c5:
03:a0:4d:1c:53:93:e4:b3:77:fe:67:70:f7:7b:c0:
0d:38:08:23:85:49:67:e6:bb:05:c2:66:b8:e9:48:
c1:d5:b8:b1:fd:b3:f9:a2:d9:51:ac:0e:75:27:71:
24:da:39:d8:36:e2:a9:1e:d6:66:93:87:00:62:e5:
47:74:c3:d9:6a:76:4f:a4:25:c5:cd:26:a1:76:25:
96:5b:d3:81:7c:76:a7:79:fd:9b:93:c5:46:1f:d9:
d2:82:09:f9:bb:51:d7:60:df:7c:96:a5:38:18:15:
b7:55:51:3f:94:ca:b1:82:7a:20:d0:18:0f:6a:97:
2f:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:0A:05:1B:57:18:33:AC:BB:AD:C7:39:E9:3E:EA:9F:53:F1:81:CE
X509v3 Authority Key Identifier:
keyid:42:CE:75:93:20:19:5B:9C:C1:8C:CF:CB:1B:53:2A:EA:94:92:58:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qs51kyAZW5zBjM_LG1Mq6pSSWPE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/a52048-12ca-4a03-95be-697948ea71f5/1/7QoFG1cYM6y7rcc56T7qn1Pxgc4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/a52048-12ca-4a03-95be-697948ea71f5/1/Qs51kyAZW5zBjM_LG1Mq6pSSWPE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.224.0/24
194.61.237.0/24
Signature Algorithm: sha256WithRSAEncryption
31:48:6d:a8:b9:d6:36:05:44:3e:dd:06:55:3d:55:06:4b:b7:
68:ac:8e:f1:60:93:b8:e3:3f:82:47:c7:a8:f4:22:67:03:f5:
5d:54:fb:85:dd:52:8c:2b:63:f1:18:2c:1e:6b:55:06:dc:b3:
90:43:01:bb:50:eb:7b:aa:26:33:54:af:54:b8:93:bb:98:bc:
bc:7f:6c:2b:aa:91:3d:41:e0:ac:8f:5c:8e:90:0b:19:e3:8e:
fe:67:a9:33:db:6d:4a:7c:ad:80:e3:15:22:4b:fe:53:cb:7a:
08:49:84:3b:22:28:71:15:7d:f2:b5:aa:1e:66:2e:4d:16:e2:
77:84:39:74:e5:55:41:80:f1:f1:50:60:a4:94:40:86:73:01:
bd:2a:d0:a5:f4:1c:7b:11:7e:ac:a7:50:30:4d:04:d2:03:98:
d7:e8:6c:94:11:22:74:8f:2c:0e:d5:b8:77:e1:e5:90:6f:e9:
df:6f:12:30:73:b0:48:01:2f:e0:dd:96:c2:0f:55:47:4a:26:
46:19:2a:a3:02:23:18:80:c9:4d:58:f0:e7:b8:88:58:24:2c:
e1:57:c4:1b:38:a0:42:45:02:74:62:49:52:83:d5:ec:d3:59:
66:a1:39:91:20:71:35:52:a5:32:0e:d6:5c:dc:0b:56:7a:79:
19:57:71:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:36 2024 by rpki-client on console-fra.rpki-client.org