Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/ad4e57-d901-4485-98d2-9196ce446527/1/QFtwXjNT1GvCYoxHT5dOY1TGOm0.roa
File: QFtwXjNT1GvCYoxHT5dOY1TGOm0.roa (raw, json)
Hash identifier: blG12dQ+3d9dQMegK8vvrDt/pM3QWwUHdvsyK1uVwuk=
Subject key identifier: 40:5B:70:5E:33:53:D4:6B:C2:62:8C:47:4F:97:4E:63:54:C6:3A:6D
Certificate issuer: /CN=ef3e71b96992da3d91c88dd74ef41f9b95b9485b
Certificate serial: 0187C23F4FC87750DD34A7025FBD9366FC3F
Authority key identifier: EF:3E:71:B9:69:92:DA:3D:91:C8:8D:D7:4E:F4:1F:9B:95:B9:48:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7z5xuWmS2j2RyI3XTvQfm5W5SFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/ad4e57-d901-4485-98d2-9196ce446527/1/QFtwXjNT1GvCYoxHT5dOY1TGOm0.roa
Signing time: Thu 27 Apr 2023 10:25:41 +0000
ROA not before: Thu 27 Apr 2023 10:25:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25261
IP address blocks: 213.192.232.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:c2:3f:4f:c8:77:50:dd:34:a7:02:5f:bd:93:66:fc:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef3e71b96992da3d91c88dd74ef41f9b95b9485b
Validity
Not Before: Apr 27 10:25:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=405b705e3353d46bc2628c474f974e6354c63a6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:d5:3c:9e:fc:c8:83:76:dd:1c:34:58:0c:26:
2d:30:2b:01:77:9b:68:69:ee:18:60:59:b0:75:24:
2d:1b:d1:8d:6a:53:77:f5:1b:38:65:10:fc:7d:45:
59:f5:d9:d4:bd:ef:71:b2:c1:cc:fe:cb:0b:d7:d1:
4b:da:ef:8b:f9:99:c6:e4:72:60:7a:44:4c:bc:97:
bd:80:aa:93:80:db:35:4a:e3:b3:38:c5:34:c0:51:
87:43:9c:3d:96:97:ec:e8:cd:cd:3a:bd:e5:57:b0:
39:97:ce:6f:14:48:1d:a1:56:50:ab:48:8b:b5:31:
07:f4:1e:16:e2:88:e3:45:58:dd:98:d2:6b:55:9d:
ea:a0:3d:36:ad:83:3f:62:cf:c2:44:1e:eb:c3:a0:
0c:d1:06:05:79:08:53:ba:80:ee:ee:cd:26:f8:a5:
67:6b:11:cf:3e:ce:74:60:ef:83:0a:02:07:28:cf:
4f:36:0a:ea:f3:43:92:e6:09:a7:53:c3:6b:56:99:
66:9c:5c:e9:f9:b4:7f:e3:6f:17:5e:bf:ef:9f:39:
f5:4c:de:58:63:ed:07:cd:86:49:fa:c3:11:10:93:
76:a6:66:c3:99:10:f4:d4:41:7c:08:fc:c6:41:00:
96:67:c9:47:1b:8e:ef:81:f1:29:c0:2b:ef:7c:92:
7c:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:5B:70:5E:33:53:D4:6B:C2:62:8C:47:4F:97:4E:63:54:C6:3A:6D
X509v3 Authority Key Identifier:
keyid:EF:3E:71:B9:69:92:DA:3D:91:C8:8D:D7:4E:F4:1F:9B:95:B9:48:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7z5xuWmS2j2RyI3XTvQfm5W5SFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/ad4e57-d901-4485-98d2-9196ce446527/1/QFtwXjNT1GvCYoxHT5dOY1TGOm0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/ad4e57-d901-4485-98d2-9196ce446527/1/7z5xuWmS2j2RyI3XTvQfm5W5SFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.192.232.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:62:fe:99:88:a7:d1:3c:82:e1:e9:21:98:a8:13:b5:6c:d0:
64:67:12:42:52:84:da:cb:dd:9d:40:1f:a4:f0:5d:a5:b5:82:
a7:da:1c:49:5a:f1:5d:fc:ac:1e:c6:10:da:ae:9a:0d:6a:d1:
dd:c6:d4:83:4e:39:47:87:0b:1a:34:e4:08:c8:29:7a:b3:02:
6c:96:c3:52:df:59:cf:30:8f:5d:47:89:ed:3a:c6:cf:49:18:
e7:93:8a:09:ae:97:e0:a7:d0:bc:ec:c7:51:59:b7:4c:d3:51:
5d:c3:d8:df:b9:7e:fd:17:3e:0e:11:b0:27:77:5a:90:b3:b0:
a0:e5:30:15:17:62:c6:09:64:02:57:4f:a8:2a:d1:a3:a6:76:
c2:ed:54:81:7d:e6:b1:8d:2c:e3:18:01:1d:8a:40:19:6b:25:
97:20:43:fe:1d:c2:3a:89:c3:ed:e9:fd:35:88:77:59:2d:0a:
80:72:2d:91:30:2b:a1:af:5a:38:5c:c0:71:fb:0b:c2:33:fa:
f3:c2:0f:4d:62:26:d8:79:91:37:5a:ab:8d:55:b5:12:85:fb:
ab:cf:40:fc:7f:75:12:97:bd:68:c6:83:46:f0:44:d5:a9:8e:
59:47:4e:b0:35:8e:6f:03:4e:da:4a:00:36:f9:21:77:5e:d5:
db:42:71:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:50:21 2024 by rpki-client on console-fra.rpki-client.org