Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/bfdd19-6bba-4dc9-afc6-97be426a2334/1/QA96CylvwAVZ05mJRHG3cjSEweI.roa
File: QA96CylvwAVZ05mJRHG3cjSEweI.roa (raw, json)
Hash identifier: KYlGrX219ZbMaxvsxL/HwrchE9ikp5CgZumAj3IQZHo=
Subject key identifier: 40:0F:7A:0B:29:6F:C0:05:59:D3:99:89:44:71:B7:72:34:84:C1:E2
Certificate issuer: /CN=d04687a3ee6322b757de81e7f53c5d32eebe33a6
Certificate serial: 0185702700DB6894E5307E2581D74E1ADE8A
Authority key identifier: D0:46:87:A3:EE:63:22:B7:57:DE:81:E7:F5:3C:5D:32:EE:BE:33:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0EaHo-5jIrdX3oHn9TxdMu6-M6Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/bfdd19-6bba-4dc9-afc6-97be426a2334/1/QA96CylvwAVZ05mJRHG3cjSEweI.roa
Signing time: Mon 02 Jan 2023 01:44:42 +0000
ROA not before: Mon 02 Jan 2023 01:44:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12779
IP address blocks: 185.128.76.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:27:00:db:68:94:e5:30:7e:25:81:d7:4e:1a:de:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d04687a3ee6322b757de81e7f53c5d32eebe33a6
Validity
Not Before: Jan 2 01:44:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=400f7a0b296fc00559d399894471b7723484c1e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:53:56:14:e3:78:1c:9c:1c:8a:d2:05:49:1b:
71:d2:87:a2:f9:10:25:f3:82:da:1a:a9:18:d4:ba:
b1:8b:cc:42:e3:42:c9:7d:1b:a2:62:40:3e:ca:8c:
04:02:b3:e1:45:e5:f5:3f:4a:f4:72:8a:e7:55:a6:
30:62:73:56:5a:43:59:ce:97:3e:61:0b:b5:04:28:
ee:ad:01:fc:26:ec:9e:d6:25:4a:7f:91:5f:32:e1:
7b:c9:40:92:d5:f3:3f:e0:8d:17:84:9a:4a:5a:b0:
35:3d:e6:5b:7e:eb:da:fb:10:b9:67:d6:4b:d0:a0:
5e:69:90:b1:7e:c9:fd:14:9e:c8:6d:48:d1:98:12:
88:c3:d2:06:8a:99:f8:41:ce:d7:fb:12:72:cf:90:
29:dd:98:af:dd:ba:91:3d:1b:f9:c5:b4:2d:fd:c1:
dc:28:1b:bd:56:83:ed:78:38:c0:db:d6:4a:b7:00:
7b:2f:2d:88:f0:0c:e9:6f:ad:fc:84:dd:61:a0:bc:
97:79:82:02:54:59:34:f8:8d:02:34:ba:94:c4:a6:
f2:c3:39:7f:9c:a3:b0:3d:3a:b9:88:c0:da:b1:ca:
60:0d:f3:4e:50:a7:08:4d:8d:92:14:5a:62:a7:56:
ed:13:d0:07:93:11:15:db:e1:27:88:0a:66:e0:1b:
f7:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:0F:7A:0B:29:6F:C0:05:59:D3:99:89:44:71:B7:72:34:84:C1:E2
X509v3 Authority Key Identifier:
keyid:D0:46:87:A3:EE:63:22:B7:57:DE:81:E7:F5:3C:5D:32:EE:BE:33:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0EaHo-5jIrdX3oHn9TxdMu6-M6Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/bfdd19-6bba-4dc9-afc6-97be426a2334/1/QA96CylvwAVZ05mJRHG3cjSEweI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/bfdd19-6bba-4dc9-afc6-97be426a2334/1/0EaHo-5jIrdX3oHn9TxdMu6-M6Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.128.76.0/24
Signature Algorithm: sha256WithRSAEncryption
90:aa:29:fd:56:89:3d:e9:72:5d:1f:76:52:3d:7a:ff:17:9f:
5d:0c:ef:0d:28:93:13:94:1a:ca:54:58:5f:19:0f:c7:79:fd:
e0:4d:74:99:0a:39:6d:5b:a3:bd:9f:1a:b9:e0:b6:5e:71:4a:
73:bd:e2:2f:79:9b:f4:39:48:0c:d5:9b:03:2d:b4:c4:c8:64:
dd:b7:cd:fd:7b:1a:f3:8e:5c:12:df:c5:2c:21:fb:35:c5:29:
08:cd:75:24:c0:87:23:4f:cb:d0:c1:19:11:4a:47:2c:92:d0:
fa:f0:40:04:62:28:0e:36:ce:13:1d:6c:1e:41:86:1d:27:e8:
8d:e7:41:7c:bf:30:bc:2c:80:2d:41:16:dc:71:a2:ef:76:e8:
98:6f:cd:36:8e:03:7b:5d:89:c0:21:21:30:79:12:c6:a9:ad:
61:d9:57:6e:42:65:ab:14:e7:c1:00:a4:74:67:25:37:a2:8c:
b1:67:39:79:1b:56:fb:ab:68:0f:e3:c4:66:56:4f:00:81:7a:
b4:a1:60:97:0f:a1:83:c6:54:d1:fd:65:29:55:fb:73:71:b3:
ee:c0:0f:54:63:fd:51:ea:da:1a:3b:59:bd:24:54:29:0d:1c:
ef:5c:fe:f5:17:f6:3a:8e:5e:a0:11:61:02:8c:05:6d:c4:42:
01:17:c5:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 29 17:05:38 2023 by rpki-client on console-ams.rpki-client.org