Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/QncXh-yRI4hb1x1ZqJiRS5THCU8.roa
File: QncXh-yRI4hb1x1ZqJiRS5THCU8.roa (raw, json)
Hash identifier: KaP3dRYuT+CTQQIUwaTg1oJK0YG6RHXDyhJRzzYcyDE=
Subject key identifier: 42:77:17:87:EC:91:23:88:5B:D7:1D:59:A8:98:91:4B:94:C7:09:4F
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 01889AE1D92B29F09D116B19B4D034A6DFDD
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/QncXh-yRI4hb1x1ZqJiRS5THCU8.roa
Signing time: Thu 08 Jun 2023 12:01:12 +0000
ROA not before: Thu 08 Jun 2023 12:01:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203639
IP address blocks: 5.105.17.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:9a:e1:d9:2b:29:f0:9d:11:6b:19:b4:d0:34:a6:df:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: Jun 8 12:01:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=42771787ec9123885bd71d59a898914b94c7094f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:ff:b8:4c:d1:a7:30:bd:18:b2:20:27:70:63:
f6:61:09:e4:91:18:f8:8b:42:15:93:fc:eb:86:d3:
38:a3:3b:eb:74:39:bc:28:b5:e0:db:22:4a:48:31:
d3:01:71:b2:60:95:c9:57:73:4e:88:44:48:64:24:
a4:1f:c8:9a:a8:10:38:a7:70:b2:f3:e6:22:db:29:
7d:f1:52:69:00:b2:41:30:74:22:0c:80:23:01:fb:
5e:f4:1d:50:57:a6:27:4d:94:3f:2b:d6:be:2f:df:
81:b2:d7:01:34:be:cb:58:73:65:5f:c3:30:f3:c8:
51:59:62:f0:55:ce:90:d6:da:68:6a:12:20:61:48:
cf:a0:ff:e5:ed:57:eb:8d:ad:2d:c3:e5:68:b3:7d:
31:14:b4:c9:d9:77:f8:e5:c6:7e:08:0b:83:fb:6a:
5b:02:29:7d:d2:f7:3a:57:ef:38:16:c6:9c:4f:91:
38:22:11:9f:2f:97:95:f5:11:aa:19:b5:31:42:2f:
bc:ca:d3:6c:0c:57:51:f8:1e:eb:08:69:65:69:d2:
d7:ae:a2:03:c9:44:46:3a:92:7d:6a:ed:43:5e:93:
54:99:3e:66:7d:7c:a7:ee:ed:9d:f9:c3:fc:b7:4c:
88:11:53:0d:d7:3c:61:a1:43:90:91:04:fb:68:80:
57:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:77:17:87:EC:91:23:88:5B:D7:1D:59:A8:98:91:4B:94:C7:09:4F
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/QncXh-yRI4hb1x1ZqJiRS5THCU8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.105.17.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:f0:ed:84:51:9f:71:19:4e:7c:77:ab:7e:1f:b2:b1:b7:92:
c5:2c:43:4b:b5:ca:ea:2a:5f:97:53:de:21:48:d0:ef:bd:a2:
ca:24:e1:9d:48:58:a4:60:93:36:c4:51:f0:16:a8:85:16:1f:
a2:44:1b:42:5a:d5:16:15:a4:fd:55:57:f9:35:da:5c:f2:b8:
0a:87:79:e6:07:ed:61:21:a0:61:91:65:39:b7:8a:f0:c9:cf:
f9:7f:fa:aa:b2:ec:bd:cf:fa:fa:44:38:6f:90:34:bc:ed:26:
20:8a:43:55:d0:51:8e:91:8b:99:72:4d:58:aa:a3:20:79:1f:
02:9c:63:80:21:45:c3:d4:05:51:50:30:83:28:01:28:37:30:
f4:82:86:01:3e:e9:95:a9:10:50:0a:33:ad:2e:b2:d3:a0:3c:
cd:db:65:3c:38:64:92:d5:94:eb:fc:b8:ef:ea:f5:47:f1:a4:
90:db:26:88:66:37:ac:d1:65:28:d2:5d:f0:ad:67:ab:1b:2b:
28:db:7f:75:1f:a6:3e:b3:b6:33:b0:50:5b:25:b6:6a:05:dc:
44:d8:a6:09:e3:7d:1d:75:b5:e5:77:fd:dc:e5:0c:d4:c3:42:
25:4d:0e:30:23:8f:0d:8a:71:11:31:11:06:34:63:ba:a7:59:
78:12:93:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 19 14:15:15 2023 by rpki-client on console-fra.rpki-client.org