Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/66b74c-81c1-410e-957d-a8d65dccb96b/1/QRaexSPYKwBXEymY4b64NK-iKXs.roa
File: QRaexSPYKwBXEymY4b64NK-iKXs.roa (raw, json)
Hash identifier: IZWyAsqfZV8ZjJ8NKp1oFTXlwOETSGkoFsyaghSF7/o=
Subject key identifier: 41:16:9E:C5:23:D8:2B:00:57:13:29:98:E1:BE:B8:34:AF:A2:29:7B
Certificate issuer: /CN=72e4baf99ab840129133285fe9ad7b83fd130c39
Certificate serial: 01856CE61242272B72B28DB58D38204E62CA
Authority key identifier: 72:E4:BA:F9:9A:B8:40:12:91:33:28:5F:E9:AD:7B:83:FD:13:0C:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cuS6-Zq4QBKRMyhf6a17g_0TDDk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/66b74c-81c1-410e-957d-a8d65dccb96b/1/QRaexSPYKwBXEymY4b64NK-iKXs.roa
Signing time: Sun 01 Jan 2023 10:34:55 +0000
ROA not before: Sun 01 Jan 2023 10:34:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42708
IP address blocks: 45.11.182.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:e6:12:42:27:2b:72:b2:8d:b5:8d:38:20:4e:62:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72e4baf99ab840129133285fe9ad7b83fd130c39
Validity
Not Before: Jan 1 10:34:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=41169ec523d82b0057132998e1beb834afa2297b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:57:9f:6b:c0:fb:44:8c:5e:6a:d1:1a:87:54:
02:d1:6f:75:63:4b:be:74:19:b0:35:f7:52:b2:d8:
b4:98:93:94:d6:dd:b4:61:e8:1c:dc:12:cc:34:48:
5f:c1:84:6f:16:4e:e9:c7:92:91:27:20:11:67:41:
73:cb:77:35:6d:e2:92:bf:4d:38:db:60:45:cb:1d:
41:50:25:70:1b:dc:22:d0:59:32:fa:c8:ca:f6:4d:
7b:15:72:c9:70:5e:aa:c5:7c:67:52:08:30:56:b2:
d9:74:a0:6b:76:38:38:bd:56:f7:fd:e4:b2:0f:2d:
0e:2e:4b:11:af:33:fb:7c:35:2d:a1:23:2e:47:e8:
80:7b:f4:d1:c7:96:d4:46:d2:d5:17:aa:b4:c5:dd:
3b:a6:4d:0b:79:42:30:c7:49:d4:90:b8:13:44:3c:
a0:7a:3b:81:9c:b9:ff:c0:bb:47:16:13:13:2a:aa:
57:6b:d0:fc:22:37:ef:a0:07:19:98:80:87:de:54:
3d:ff:99:2f:54:4c:ad:87:6a:fa:c5:79:0b:76:83:
cd:02:ac:7d:7b:e7:3b:d9:55:ff:db:a0:05:e5:a6:
0d:de:96:18:24:a6:79:3d:c2:b5:51:61:c8:84:6b:
3b:83:0c:d1:5c:2b:f4:d6:94:dd:72:d5:98:e4:a2:
ce:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:16:9E:C5:23:D8:2B:00:57:13:29:98:E1:BE:B8:34:AF:A2:29:7B
X509v3 Authority Key Identifier:
keyid:72:E4:BA:F9:9A:B8:40:12:91:33:28:5F:E9:AD:7B:83:FD:13:0C:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cuS6-Zq4QBKRMyhf6a17g_0TDDk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/66b74c-81c1-410e-957d-a8d65dccb96b/1/QRaexSPYKwBXEymY4b64NK-iKXs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/66b74c-81c1-410e-957d-a8d65dccb96b/1/cuS6-Zq4QBKRMyhf6a17g_0TDDk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.11.182.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:81:fa:26:a7:c8:0c:74:d9:be:39:6a:10:6f:5e:9f:58:d4:
38:88:29:ce:ae:37:da:a4:15:dd:c2:b1:87:0e:7c:d6:f2:51:
eb:fd:59:3a:42:d7:9a:8e:1f:84:7a:0b:01:10:08:bf:af:c5:
69:ae:86:30:60:03:14:4e:c3:c9:cc:2c:8c:c6:1f:9d:0a:d7:
56:fe:74:c4:87:5d:24:52:d1:ee:7f:d3:0c:8f:d7:ae:05:1d:
45:af:ec:b5:77:a1:09:0c:a9:5b:f3:e5:70:ab:cb:69:ba:37:
5e:f9:2e:52:df:d2:fe:4a:b0:e0:ad:d8:b2:be:68:3d:0a:7f:
35:3e:d4:bd:ff:61:3b:3f:12:25:97:d4:fe:9e:09:88:07:59:
0e:11:42:c2:65:7d:cc:8d:a2:4b:0b:cb:b8:0b:5e:1a:4b:e5:
19:71:3a:70:e4:40:d4:9b:08:35:8c:b4:59:b7:7b:07:11:b5:
2b:6a:74:ea:bf:ab:fb:d5:20:8d:75:19:25:85:a6:e4:f3:bf:
32:d4:91:9a:0c:93:a3:06:69:6f:9d:42:00:ce:7f:66:08:66:
83:70:d0:c3:45:76:fc:5b:9d:c8:9a:00:a8:0c:dd:14:07:c9:
33:34:40:e0:55:24:d4:b4:96:ea:c3:ea:1f:3f:9b:2b:ae:ed:
73:89:a7:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 17:13:57 2024 by rpki-client on console-ams.rpki-client.org