Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/c88514-fad0-4d06-a138-da585e1970ed/1/QYMEnFm8JdTBya7vaKDLI-DgLEM.roa
File: QYMEnFm8JdTBya7vaKDLI-DgLEM.roa (raw, json)
Hash identifier: MzljykRM8mOHMHxv2ZfsA3ySKIVPyNYoPT52odbBNKE=
Subject key identifier: 41:83:04:9C:59:BC:25:D4:C1:C9:AE:EF:68:A0:CB:23:E0:E0:2C:43
Certificate issuer: /CN=d0b1bec98e79471ec0e10d1c3452067196c91c12
Certificate serial: 01856F0235A280FCFC612D9CB88180DA8F41
Authority key identifier: D0:B1:BE:C9:8E:79:47:1E:C0:E1:0D:1C:34:52:06:71:96:C9:1C:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0LG-yY55Rx7A4Q0cNFIGcZbJHBI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/c88514-fad0-4d06-a138-da585e1970ed/1/QYMEnFm8JdTBya7vaKDLI-DgLEM.roa
Signing time: Sun 01 Jan 2023 20:24:53 +0000
ROA not before: Sun 01 Jan 2023 20:24:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51747
IP address blocks: 45.142.64.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:02:35:a2:80:fc:fc:61:2d:9c:b8:81:80:da:8f:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0b1bec98e79471ec0e10d1c3452067196c91c12
Validity
Not Before: Jan 1 20:24:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4183049c59bc25d4c1c9aeef68a0cb23e0e02c43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:ea:68:6d:c0:48:5a:bf:98:7a:0d:93:1b:14:
d3:c9:7a:5a:72:67:db:dc:89:18:ab:db:35:14:cf:
25:eb:4d:e1:13:2e:9d:18:e6:3a:34:8a:23:c1:f2:
df:c6:0f:29:c8:11:7b:05:95:db:0c:d5:9c:03:e7:
38:3b:23:c0:54:e3:59:ef:bd:53:61:8c:ff:6f:03:
07:a9:81:9f:8c:2d:83:35:af:76:0e:4e:f2:c4:bf:
8a:8d:12:0b:e3:48:84:49:06:8d:c1:4e:aa:24:76:
98:ac:44:ad:70:72:6c:4b:ab:61:33:05:52:45:4d:
92:33:ba:30:d9:3c:96:e0:4b:d3:91:9f:52:06:c2:
77:70:94:64:24:81:2d:c9:21:7e:b6:4a:92:a3:3e:
91:3a:43:2b:d2:c3:b7:39:ad:2d:05:97:29:a5:65:
f5:0b:0c:be:66:e4:a3:68:50:28:9f:b7:69:7e:84:
bb:03:68:10:90:5d:1c:3b:a3:2c:0e:40:99:a4:05:
9d:06:12:f9:b6:fc:05:68:3e:bf:b1:8a:6d:ec:e5:
5d:93:dd:af:93:ec:88:61:64:db:84:b8:f6:10:f7:
96:dd:33:54:4b:d8:ed:b8:c2:34:55:86:58:be:d8:
99:85:ea:17:9a:2c:a9:3f:63:6f:8e:07:93:ac:78:
3f:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:83:04:9C:59:BC:25:D4:C1:C9:AE:EF:68:A0:CB:23:E0:E0:2C:43
X509v3 Authority Key Identifier:
keyid:D0:B1:BE:C9:8E:79:47:1E:C0:E1:0D:1C:34:52:06:71:96:C9:1C:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0LG-yY55Rx7A4Q0cNFIGcZbJHBI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/c88514-fad0-4d06-a138-da585e1970ed/1/QYMEnFm8JdTBya7vaKDLI-DgLEM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/c88514-fad0-4d06-a138-da585e1970ed/1/0LG-yY55Rx7A4Q0cNFIGcZbJHBI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.64.0/22
Signature Algorithm: sha256WithRSAEncryption
9a:8c:54:35:a9:4f:e4:ee:ec:3b:28:bc:1d:a4:ce:87:4a:6c:
b0:d5:96:c2:65:88:45:5c:27:96:9b:96:b2:d5:02:24:62:91:
cc:ab:10:22:d8:e9:cb:ee:ed:cc:17:a3:57:bb:4b:29:f5:87:
f3:04:e8:25:0b:62:01:e8:e6:6c:78:e2:51:6a:0a:63:97:f8:
37:1e:78:80:05:f4:07:7f:f8:5a:de:a3:94:26:05:81:15:53:
50:dc:de:34:e7:05:39:b1:c4:34:95:1a:71:37:08:ba:4c:bd:
63:b7:21:02:55:c9:71:d6:59:46:4d:50:a1:7a:ee:e5:95:f0:
f6:13:67:61:98:37:99:45:c3:91:d6:cd:d8:26:fe:39:89:20:
3b:95:03:24:f4:91:4a:6b:be:1d:06:e3:5f:21:fb:d7:56:f3:
3c:99:a5:ef:fd:20:1a:f2:71:9b:ba:f6:95:56:67:f0:6f:0d:
8e:86:9d:08:9d:0b:0c:d7:42:1a:14:58:8d:1e:9f:76:76:03:
ad:4b:e5:7f:52:1b:b4:c8:d1:51:c0:0a:d9:eb:ff:0e:d3:28:
25:94:f9:77:71:55:eb:42:1f:05:75:fb:88:2f:bb:49:64:6f:
c7:3f:b7:bc:99:cc:24:7e:3f:2c:db:68:03:05:52:55:11:75:
c9:cb:95:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 17:34:27 2024 by rpki-client on console-fra.rpki-client.org