Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/quxJI8g6_tbt9td0fydML115QD4.roa
File: quxJI8g6_tbt9td0fydML115QD4.roa (raw, json)
Hash identifier: 4LKJmcIOTgAY5hkYihuMimZbjqlLB+xwK1ZfvMC2vLU=
Subject key identifier: AA:EC:49:23:C8:3A:FE:D6:ED:F6:D7:74:7F:27:4C:2F:5D:79:40:3E
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018570E789ADDBEA39D733271EA3C999735B
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/quxJI8g6_tbt9td0fydML115QD4.roa
Signing time: Mon 02 Jan 2023 05:14:59 +0000
ROA not before: Mon 02 Jan 2023 05:14:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58057
IP address blocks: 45.136.136.0/22 maxlen: 24
94.177.122.0/24 maxlen: 24
194.50.94.0/24 maxlen: 24
85.202.203.0/24 maxlen: 24
194.50.92.0/24 maxlen: 24
45.12.68.0/22 maxlen: 24
139.28.96.0/22 maxlen: 24
31.42.183.0/24 maxlen: 24
2a0e:97c0:260::/44 maxlen: 44
2a0e:b107:1165::/48 maxlen: 48
2a0c:3b80::/29 maxlen: 48
2a0e:97c1:200::/40 maxlen: 48
2001:7f8:119::/48 maxlen: 48
2a10:cc46:1000::/36 maxlen: 48
2a10:2f00:18f::/48 maxlen: 48
2a0e:b107:6f0::/44 maxlen: 44
2a0e:97c0:170::/48 maxlen: 48
2a0e:b107:9f2::/48 maxlen: 48
2a10:cc40:250::/44 maxlen: 48
2a0f:e404:102::/48 maxlen: 48
2a09:4c0::/29 maxlen: 64
2a0e:b107:1786::/48 maxlen: 48
2a0e:97c4:100::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:e7:89:ad:db:ea:39:d7:33:27:1e:a3:c9:99:73:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 2 05:14:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=aaec4923c83afed6edf6d7747f274c2f5d79403e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:ad:ee:91:06:4a:3f:3b:b0:ac:04:d6:28:d2:
18:8d:21:6c:15:1c:1b:ec:49:15:88:ac:e7:dd:bc:
51:41:6b:65:ce:13:63:d8:89:90:57:08:fe:98:68:
c7:d8:9e:63:91:04:90:64:75:ff:34:69:14:b5:e3:
d1:e2:49:cc:aa:7d:88:cf:99:a7:d1:8f:d8:af:c3:
ff:07:48:1f:d2:44:4b:b9:e3:50:8e:26:1f:d0:fb:
34:1b:a3:2f:1d:ef:65:8b:ac:07:96:a1:8b:38:52:
06:c0:df:05:d4:43:de:a9:5c:e9:e4:1e:b2:40:92:
09:d1:f8:af:5d:16:7b:ac:de:2d:30:76:4d:ad:d2:
c0:c1:a6:c5:d5:c2:23:c1:9d:73:a9:c9:2b:65:db:
7c:c3:25:da:9a:eb:1f:ce:d5:02:e0:6e:2c:23:c3:
ba:e5:32:8e:99:b1:af:9c:05:5b:92:42:16:77:ed:
2f:b8:1c:f5:5b:f7:6e:c2:50:03:cb:13:5e:58:64:
21:fd:99:93:8e:b4:e7:7e:a7:f1:a8:96:84:bb:fa:
41:c1:8b:2e:8e:83:7c:e6:af:c1:5d:44:62:8b:31:
10:a7:2d:5c:6b:6f:1a:43:e6:b6:d7:48:9f:b4:ec:
a4:63:38:ab:4a:49:f2:f5:9d:0b:27:b8:45:5a:47:
aa:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:EC:49:23:C8:3A:FE:D6:ED:F6:D7:74:7F:27:4C:2F:5D:79:40:3E
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/quxJI8g6_tbt9td0fydML115QD4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.42.183.0/24
45.12.68.0/22
45.136.136.0/22
85.202.203.0/24
94.177.122.0/24
139.28.96.0/22
194.50.92.0/24
194.50.94.0/24
IPv6:
2001:7f8:119::/48
2a09:4c0::/29
2a0c:3b80::/29
2a0e:97c0:170::/48
2a0e:97c0:260::/44
2a0e:97c1:200::/40
2a0e:97c4:100::/44
2a0e:b107:6f0::/44
2a0e:b107:9f2::/48
2a0e:b107:1165::/48
2a0e:b107:1786::/48
2a0f:e404:102::/48
2a10:2f00:18f::/48
2a10:cc40:250::/44
2a10:cc46:1000::/36
Signature Algorithm: sha256WithRSAEncryption
10:85:a5:f9:ae:a2:7c:fa:f6:a6:dc:35:9e:6b:87:76:57:3c:
36:94:7e:a8:15:19:3e:96:49:1d:ff:38:df:d1:08:ba:c8:31:
01:8f:61:d5:59:eb:0f:a4:13:94:07:b4:5d:0a:10:9b:b4:c4:
4e:30:f2:c3:94:0f:9b:48:5d:38:5c:7e:4f:86:71:43:7f:13:
9d:0f:d5:08:ab:0b:66:57:35:56:6b:c0:33:0d:2c:a3:e3:4e:
e4:c3:e4:bf:63:b7:72:4d:0a:27:86:87:84:b0:09:a7:0f:4e:
14:6c:61:b3:ab:f6:04:c9:84:92:34:d0:54:9e:c8:21:cc:7c:
07:7b:df:bb:cf:06:6c:cd:9d:21:85:a4:be:69:02:5a:25:e1:
8a:c7:6e:7c:8b:16:77:96:b4:ef:82:71:a2:03:bb:0c:3a:40:
19:28:81:af:9e:b4:51:d2:c0:98:65:fa:f7:ae:70:b6:ba:06:
1e:d5:d7:2d:f4:ab:f3:37:94:ea:ef:2f:c0:a7:96:09:53:77:
a5:03:c3:54:f2:48:57:41:84:80:36:4e:3f:55:88:fd:97:7c:
54:73:5d:73:7a:56:50:e4:b7:ca:6d:3c:47:78:bd:a3:bd:c7:
dd:df:45:88:d1:75:e0:98:36:77:14:c2:bd:b9:80:62:01:e2:
c3:b1:c8:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:20 2023 by rpki-client on console-fra.rpki-client.org