Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/3e2b18-55c9-4180-8c6e-2c7086fded93/1/QzHQxo97fQseU4xMjsCWKSaVPyM.roa
File: QzHQxo97fQseU4xMjsCWKSaVPyM.roa (raw, json)
Hash identifier: CsmUQJB+QHmS7plfUDfjBXRxy7o9HiWeXLrYkTsU4Xg=
Subject key identifier: 43:31:D0:C6:8F:7B:7D:0B:1E:53:8C:4C:8E:C0:96:29:26:95:3F:23
Certificate issuer: /CN=088465b37b2d4e9f413a31dc7b7e6cba2a33db96
Certificate serial: 018A2AEEACDE3116DB8A6331893E85049B5F
Authority key identifier: 08:84:65:B3:7B:2D:4E:9F:41:3A:31:DC:7B:7E:6C:BA:2A:33:DB:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRls3stTp9BOjHce35suioz25Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/3e2b18-55c9-4180-8c6e-2c7086fded93/1/QzHQxo97fQseU4xMjsCWKSaVPyM.roa
Signing time: Fri 25 Aug 2023 04:23:19 +0000
ROA not before: Fri 25 Aug 2023 04:23:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 32159
IP address blocks: 188.66.24.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:2a:ee:ac:de:31:16:db:8a:63:31:89:3e:85:04:9b:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=088465b37b2d4e9f413a31dc7b7e6cba2a33db96
Validity
Not Before: Aug 25 04:23:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4331d0c68f7b7d0b1e538c4c8ec0962926953f23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:94:87:0e:d8:17:01:bc:d2:ce:69:04:a9:ba:
26:c3:83:59:0f:09:90:5b:ed:69:e1:8d:87:98:17:
25:86:71:f8:c0:59:95:fb:60:c2:13:96:ba:1e:d3:
7f:e2:ac:dc:eb:18:cc:89:c9:e9:a8:d8:87:77:6d:
d3:04:5d:68:ed:4e:32:dc:f8:d5:df:24:f8:8c:15:
ef:dd:47:ba:58:ec:5d:13:1a:15:bb:4d:53:26:05:
49:cb:7d:25:db:73:7c:25:92:fc:af:f0:81:a8:12:
ee:fb:fc:91:6c:33:09:a7:d3:50:69:80:a2:b4:be:
70:72:e4:f0:ce:ad:81:60:c3:91:71:f5:ee:27:4a:
2d:1b:c9:89:5d:cc:76:e4:ab:5b:de:99:db:8f:2a:
89:b6:3a:2e:3b:a9:64:63:a6:52:19:6a:fa:97:81:
7a:97:2b:ae:50:5b:5f:ba:b9:09:a9:19:20:e9:ca:
52:53:cc:8c:a6:01:ed:c6:40:0a:d9:08:d1:e4:c5:
65:ed:68:3e:71:cf:ef:19:b3:2d:c3:e4:b9:03:00:
80:c0:6b:b9:4c:7d:53:97:c9:de:a9:80:90:3f:b0:
ca:cf:80:3a:e1:1b:b9:3c:77:b9:73:6a:a7:3d:b7:
6a:cc:04:8f:b4:47:60:10:c6:5a:e6:ed:e8:23:2f:
55:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:31:D0:C6:8F:7B:7D:0B:1E:53:8C:4C:8E:C0:96:29:26:95:3F:23
X509v3 Authority Key Identifier:
keyid:08:84:65:B3:7B:2D:4E:9F:41:3A:31:DC:7B:7E:6C:BA:2A:33:DB:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRls3stTp9BOjHce35suioz25Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/3e2b18-55c9-4180-8c6e-2c7086fded93/1/QzHQxo97fQseU4xMjsCWKSaVPyM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/3e2b18-55c9-4180-8c6e-2c7086fded93/1/CIRls3stTp9BOjHce35suioz25Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.66.24.0/24
Signature Algorithm: sha256WithRSAEncryption
20:f6:22:75:17:d7:2c:b9:f0:ae:97:8e:9b:7c:cc:3f:2c:84:
9a:83:dd:9b:83:14:17:3c:a3:a6:f0:97:b8:7a:c4:73:c3:d1:
1b:44:12:6a:5c:ef:f6:be:3d:f1:3f:66:f1:59:65:a6:24:b9:
01:a3:08:01:26:e3:2c:02:a0:b4:f7:cc:6c:d8:48:dd:5f:59:
0f:7b:07:ee:3b:65:2e:8b:2d:18:8a:a1:11:c9:61:b7:83:e1:
a8:cf:0d:81:16:2f:c6:cc:e0:47:1f:a5:cd:42:67:f5:42:54:
5c:fc:38:f2:ed:3c:ad:8a:b3:93:bd:25:b7:9f:d3:51:1f:74:
65:88:16:cc:83:85:14:f8:a6:12:16:29:95:1d:b5:0c:29:6b:
ae:c1:b0:87:f7:78:9e:76:e1:d4:65:19:70:f3:30:59:69:7e:
d4:02:32:65:4f:dd:91:29:95:f4:30:63:ec:82:a2:1e:8c:6e:
01:e9:01:45:ee:4e:48:37:f6:21:d7:ff:65:e2:ac:06:bd:f3:
bc:e2:40:88:6d:10:1a:d9:e1:45:93:0f:b2:bc:ff:15:31:2f:
eb:62:c3:e4:6a:fc:70:e8:24:2e:a4:41:db:34:5f:f5:79:83:
67:46:5f:f7:6e:6e:74:98:f7:da:8b:c4:f9:28:39:f2:50:15:
b8:fb:53:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 15:02:36 2024 by rpki-client on console-ams.rpki-client.org