Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/QvtfKaCIkgvWTfoe7LtrCDuOhqA.roa
File: QvtfKaCIkgvWTfoe7LtrCDuOhqA.roa (raw, json)
Hash identifier: Wcq30OPjBMyGhRtIn5MoTY2UvN1+YPZPHaaEeMqyGF8=
Subject key identifier: 42:FB:5F:29:A0:88:92:0B:D6:4D:FA:1E:EC:BB:6B:08:3B:8E:86:A0
Certificate issuer: /CN=60581e673d80f7474936b21337eafcc1bdc385e9
Certificate serial: 0185725EB4CC721F253F21318E6930488C3B
Authority key identifier: 60:58:1E:67:3D:80:F7:47:49:36:B2:13:37:EA:FC:C1:BD:C3:85:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/QvtfKaCIkgvWTfoe7LtrCDuOhqA.roa
Signing time: Mon 02 Jan 2023 12:04:47 +0000
ROA not before: Mon 02 Jan 2023 12:04:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3320
IP address blocks: 84.246.108.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:5e:b4:cc:72:1f:25:3f:21:31:8e:69:30:48:8c:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60581e673d80f7474936b21337eafcc1bdc385e9
Validity
Not Before: Jan 2 12:04:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=42fb5f29a088920bd64dfa1eecbb6b083b8e86a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:e1:dd:90:a1:2d:f7:c3:1d:1b:df:94:42:2a:
9e:65:bd:78:2d:bd:bd:8a:52:8b:40:e6:22:b5:5c:
68:e9:f8:64:0a:6b:17:29:04:3f:a9:33:66:d5:83:
b6:a0:c5:f2:45:1e:b1:b2:be:97:55:3a:e7:1c:55:
c1:75:68:4a:d8:29:a5:29:38:a3:d4:5a:cf:16:3c:
db:36:7e:1a:c8:8e:cd:dc:81:09:69:72:48:18:01:
09:11:2d:f3:aa:e2:f1:4c:d9:b2:0e:df:6c:c0:ce:
9b:a2:9b:8e:42:0b:a0:ad:19:12:a3:2a:10:cf:0e:
30:3f:b3:3b:1a:31:b9:22:18:ab:4f:7d:d3:ad:a2:
f3:c2:fd:03:20:43:96:bf:0b:a5:fa:3f:14:e8:55:
4e:c8:18:7f:aa:58:43:1d:82:7b:38:c7:6c:eb:15:
51:65:8a:50:60:6c:4a:ae:36:e2:a0:5d:4a:55:81:
2e:3e:dd:3a:d9:40:6a:1a:8f:35:4d:6d:d2:fc:14:
43:d1:e9:cf:7f:1e:d6:5b:32:d0:44:f1:02:25:5f:
7e:0b:e1:3f:16:c7:a0:9d:f4:9b:65:b5:2f:d3:13:
8d:11:77:27:f7:aa:ed:a4:6e:66:9e:89:eb:03:9a:
3a:61:e7:ed:85:3e:66:5a:16:24:c9:19:af:f8:d6:
ff:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:FB:5F:29:A0:88:92:0B:D6:4D:FA:1E:EC:BB:6B:08:3B:8E:86:A0
X509v3 Authority Key Identifier:
keyid:60:58:1E:67:3D:80:F7:47:49:36:B2:13:37:EA:FC:C1:BD:C3:85:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/QvtfKaCIkgvWTfoe7LtrCDuOhqA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/YFgeZz2A90dJNrITN-r8wb3Dhek.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.246.108.0/24
Signature Algorithm: sha256WithRSAEncryption
29:2b:52:ed:ac:e3:3e:e2:50:19:83:54:5c:3e:d4:b4:b4:3e:
18:41:e4:40:2b:9d:11:b7:fe:14:67:9c:6b:8a:4c:e7:e6:8e:
2a:f1:bf:1b:e3:2d:9d:20:16:d7:8f:75:49:be:b0:7e:15:3f:
0e:7f:23:50:66:7f:65:76:56:cc:68:dd:39:72:e3:17:90:02:
9e:aa:a3:6e:80:63:58:a5:40:b2:84:59:7a:eb:49:bd:e7:eb:
42:cc:0d:3b:1e:44:79:9c:a0:e0:a9:14:00:18:a8:2c:6f:a9:
2d:8c:af:25:09:38:05:d8:42:a9:36:b3:32:c4:c7:ee:8f:f8:
e9:35:6e:c9:e8:4b:5b:29:f9:da:36:24:70:43:36:47:01:d7:
dc:01:8a:e2:7d:81:a2:ec:68:09:8b:a1:58:38:35:02:52:4e:
b6:89:86:81:b4:50:9b:9f:45:4f:00:fc:ce:f7:ec:83:48:bc:
b7:61:d3:49:4b:41:83:ee:9f:91:37:17:4f:d5:40:92:dc:6a:
d5:e7:40:d2:9c:55:26:8e:56:77:ce:64:23:b3:bc:fd:5d:a8:
64:0f:18:3a:78:02:bd:f9:aa:9f:09:73:61:04:39:d2:19:08:
10:ae:d0:ba:99:5d:0c:ee:6d:5b:a0:0f:3c:5a:8f:cb:26:b9:
c9:8e:2f:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:38 2023 by rpki-client on console-ams.rpki-client.org