Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/e7fbe8-d98e-45d2-b19c-11627d7469ab/1/q1jSiRluRXPHZ4sTZ8gIHXasRJI.roa
File: q1jSiRluRXPHZ4sTZ8gIHXasRJI.roa (raw, json)
Hash identifier: 5JxVLUJpa/Vx2JLJaPvKh5DEXJ5ILquPmGgzmZ47kLo=
Subject key identifier: AB:58:D2:89:19:6E:45:73:C7:67:8B:13:67:C8:08:1D:76:AC:44:92
Certificate issuer: /CN=282434a9a038b0fe73caf776bccd542fd3e2f6a5
Certificate serial: 0188DCC826B425CDDFBEFF232DF66160ECFC
Authority key identifier: 28:24:34:A9:A0:38:B0:FE:73:CA:F7:76:BC:CD:54:2F:D3:E2:F6:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KCQ0qaA4sP5zyvd2vM1UL9Pi9qU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/e7fbe8-d98e-45d2-b19c-11627d7469ab/1/q1jSiRluRXPHZ4sTZ8gIHXasRJI.roa
Signing time: Wed 21 Jun 2023 07:08:04 +0000
ROA not before: Wed 21 Jun 2023 07:08:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39419
IP address blocks: 185.237.24.0/22 maxlen: 24
2a0c:180::/29 maxlen: 64
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:dc:c8:26:b4:25:cd:df:be:ff:23:2d:f6:61:60:ec:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=282434a9a038b0fe73caf776bccd542fd3e2f6a5
Validity
Not Before: Jun 21 07:08:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ab58d289196e4573c7678b1367c8081d76ac4492
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:21:46:1e:55:9e:dd:ab:63:32:9a:eb:5f:05:
cd:f6:3e:d8:5b:9c:60:ae:fc:ef:0b:63:f9:f7:fb:
98:fc:6e:56:29:e0:b2:91:42:59:7b:fb:dd:11:12:
3c:78:f7:0e:75:0b:99:1e:01:64:61:01:ab:1f:83:
33:88:3b:71:0f:5a:1e:15:b7:82:a5:46:b4:c0:62:
d0:45:eb:60:b1:85:fb:8d:e1:f3:0b:68:09:ed:4c:
4b:ca:79:32:3d:99:40:3a:1f:8a:cf:7e:dc:90:f8:
9b:8b:0b:ef:59:16:9f:91:60:9b:da:23:fa:10:b3:
df:62:2b:e6:a5:13:10:7e:ee:50:b2:95:7f:0d:1e:
52:b4:db:50:32:dd:55:ef:93:84:e9:a3:78:5a:c0:
54:1c:68:21:f9:b4:be:bd:0e:d7:60:1a:a1:39:8a:
26:5b:16:7a:62:21:b2:38:1c:63:7a:41:6d:37:0a:
ae:20:f1:0e:04:40:97:e3:0e:87:dd:bf:38:8e:8c:
8a:ac:d2:8d:7e:40:d7:87:ad:3f:90:6d:c8:9b:02:
3b:80:e0:3d:ca:25:6f:5f:34:44:a2:ce:ff:be:af:
29:2c:ae:c8:46:6e:fd:f6:99:8e:dc:30:b5:2e:94:
67:47:99:d0:83:ab:27:de:3d:af:1c:34:20:ba:c8:
f7:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:58:D2:89:19:6E:45:73:C7:67:8B:13:67:C8:08:1D:76:AC:44:92
X509v3 Authority Key Identifier:
keyid:28:24:34:A9:A0:38:B0:FE:73:CA:F7:76:BC:CD:54:2F:D3:E2:F6:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KCQ0qaA4sP5zyvd2vM1UL9Pi9qU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/e7fbe8-d98e-45d2-b19c-11627d7469ab/1/q1jSiRluRXPHZ4sTZ8gIHXasRJI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/e7fbe8-d98e-45d2-b19c-11627d7469ab/1/KCQ0qaA4sP5zyvd2vM1UL9Pi9qU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.237.24.0/22
IPv6:
2a0c:180::/29
Signature Algorithm: sha256WithRSAEncryption
6b:aa:1d:68:42:a5:c1:e8:1f:68:c5:c4:e4:a5:2f:26:f7:8e:
e0:43:d4:bb:4e:1b:54:4f:cb:ec:86:d2:92:8c:21:bc:8b:8c:
b9:c9:62:2f:6c:e8:9d:a5:b6:98:5c:30:28:3e:91:15:5a:a4:
83:41:e0:1a:bb:92:de:a3:a9:50:b3:8f:eb:23:4a:bc:8f:6b:
76:39:d1:e0:14:ce:6c:92:6b:67:06:2a:4e:6d:6c:82:ac:33:
31:49:0f:c1:e3:b2:9c:37:72:c5:b5:7c:8c:ff:44:72:37:6d:
b5:47:67:42:5f:62:be:8e:3a:a5:cf:e9:25:bf:99:d6:b0:1d:
8a:e3:52:cc:91:ab:57:c7:68:9a:d5:95:83:7b:a9:11:f2:4d:
89:f7:2a:0e:0d:48:45:b1:ba:4a:e5:fb:2d:e5:15:76:67:80:
0b:3e:96:05:91:f3:40:bc:e3:c4:81:de:f0:61:0b:4b:5f:17:
22:95:e1:17:eb:d6:0d:06:96:8b:c0:35:d3:24:7c:ae:ad:04:
42:69:78:c8:8c:c2:be:38:42:52:ca:3d:62:ae:47:6e:af:34:
43:af:3f:6c:f7:1f:74:ed:ce:7e:f8:80:4d:72:d8:3a:26:a7:
53:6c:55:81:43:82:23:7a:95:97:86:2a:33:4d:9f:87:b2:5c:
ee:91:70:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:00 2024 by rpki-client on console-ams.rpki-client.org