Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/d85bc7-58a6-407a-8acb-7509f7f4c5a6/1/qVg37r2vzIUue2Sr4_hF-2QUXeQ.roa
File: qVg37r2vzIUue2Sr4_hF-2QUXeQ.roa (raw, json)
Hash identifier: KEBP3FPDBn1fJ+zDNsZZfyLj3whD6DbAgyV/JgYKo30=
Subject key identifier: A9:58:37:EE:BD:AF:CC:85:2E:7B:64:AB:E3:F8:45:FB:64:14:5D:E4
Certificate issuer: /CN=e8f99cd884fb5cbab3f3b34e17a80a48adec3fe5
Certificate serial: 0185701508ED246E160F3CE285629C7322A7
Authority key identifier: E8:F9:9C:D8:84:FB:5C:BA:B3:F3:B3:4E:17:A8:0A:48:AD:EC:3F:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6Pmc2IT7XLqz87NOF6gKSK3sP-U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/d85bc7-58a6-407a-8acb-7509f7f4c5a6/1/qVg37r2vzIUue2Sr4_hF-2QUXeQ.roa
Signing time: Mon 02 Jan 2023 01:25:04 +0000
ROA not before: Mon 02 Jan 2023 01:25:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 178.175.182.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:15:08:ed:24:6e:16:0f:3c:e2:85:62:9c:73:22:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8f99cd884fb5cbab3f3b34e17a80a48adec3fe5
Validity
Not Before: Jan 2 01:25:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a95837eebdafcc852e7b64abe3f845fb64145de4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:c7:b9:97:c3:67:33:89:78:c2:17:11:3a:5c:
53:49:dc:e5:4f:58:b5:65:46:a4:39:72:03:e6:4a:
70:76:73:3d:e4:fd:17:e9:47:9e:1b:49:87:b6:6e:
f8:27:b2:07:66:8d:c2:46:de:b1:49:fe:7e:06:6e:
ae:49:34:c3:03:e2:e8:4f:95:b6:c7:9c:dc:db:6d:
19:cf:dd:01:6d:30:ca:19:37:ff:82:c9:97:9a:95:
28:ef:27:89:5a:5a:e6:c3:37:47:3b:d4:81:de:02:
2b:d4:d9:b8:21:00:c5:e6:a8:b0:80:b3:07:f4:71:
7c:b5:1b:48:24:40:3c:3c:c0:1c:bf:7b:1c:05:6c:
19:33:b3:a1:fa:67:ba:f5:b8:6b:1b:d3:4b:18:3e:
67:00:7f:d9:db:d9:ae:49:da:06:e3:87:94:46:63:
85:a9:65:19:e8:6a:f6:d6:c3:87:e4:20:f4:78:30:
bd:be:5c:61:2f:ed:28:a3:c1:07:17:a2:db:56:ce:
d5:53:b3:44:e0:9a:75:64:8e:a4:86:c9:28:45:e0:
5a:8a:a9:4c:51:e6:e6:4c:c9:18:90:4e:5e:28:d3:
43:70:60:9e:fd:b5:71:9b:9f:b1:4d:3d:17:fb:81:
f3:8b:e1:22:f5:d5:44:98:27:80:b4:9a:b9:af:f5:
3a:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:58:37:EE:BD:AF:CC:85:2E:7B:64:AB:E3:F8:45:FB:64:14:5D:E4
X509v3 Authority Key Identifier:
keyid:E8:F9:9C:D8:84:FB:5C:BA:B3:F3:B3:4E:17:A8:0A:48:AD:EC:3F:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6Pmc2IT7XLqz87NOF6gKSK3sP-U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/d85bc7-58a6-407a-8acb-7509f7f4c5a6/1/qVg37r2vzIUue2Sr4_hF-2QUXeQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/d85bc7-58a6-407a-8acb-7509f7f4c5a6/1/6Pmc2IT7XLqz87NOF6gKSK3sP-U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.175.182.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:2f:b2:de:51:5c:b5:73:aa:53:46:99:1b:b6:c0:87:d1:af:
de:17:e4:21:c6:b6:13:fe:eb:7e:96:1e:68:fb:ef:50:ce:33:
31:d0:7d:3b:37:df:82:4e:78:51:a4:96:5f:e1:9d:12:13:87:
9c:c5:dd:58:2f:f4:87:95:cd:dc:bc:e2:86:97:15:fb:32:7e:
f3:1c:6b:c0:f4:31:34:f7:02:a9:32:ce:21:83:6f:60:db:e6:
11:9e:67:3d:b7:21:52:88:04:9b:46:13:f4:98:09:9e:3d:fc:
0b:bd:37:d1:b0:e2:a4:c4:dc:bf:de:d4:82:ad:d6:06:24:0f:
0c:d9:07:bf:a3:22:52:67:a8:e3:9a:61:59:44:58:84:83:8c:
ab:85:12:3e:7e:f4:79:98:f6:ea:ee:c7:3d:4f:6c:25:b1:c6:
02:3e:25:2c:84:47:7e:7e:fb:89:14:d0:95:bc:3b:de:0f:37:
4c:bd:3f:1e:33:1d:f8:62:36:84:3e:df:a1:bd:09:fa:ae:1a:
40:39:25:16:e5:e1:7f:fa:3b:e5:e4:96:1d:78:60:54:f3:c3:
05:b8:98:e4:0a:0d:1e:51:31:71:23:af:b0:aa:95:fb:44:d5:
cc:7d:c6:61:7c:f5:ec:ca:0d:0e:37:1a:f2:66:ad:9b:83:25:
eb:81:b1:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:00:10 2024 by rpki-client on console-ams.rpki-client.org