Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/0f50bb-1fe1-4c83-8c88-e35d2d5f00f8/1/QPd3pppriKY74r38i3fhz-eR7pA.roa
File: QPd3pppriKY74r38i3fhz-eR7pA.roa (raw, json)
Hash identifier: Q6sMxMnQSc3NpMVJbvpfLjxtlmXG4gdQM06pW6c+HqU=
Subject key identifier: 40:F7:77:A6:9A:6B:88:A6:3B:E2:BD:FC:8B:77:E1:CF:E7:91:EE:90
Certificate issuer: /CN=d98ac0b1066d0defcb1695643dcbaa0739975ca8
Certificate serial: 01857102D4E7B092B2C5AF91663430B8B7DE
Authority key identifier: D9:8A:C0:B1:06:6D:0D:EF:CB:16:95:64:3D:CB:AA:07:39:97:5C:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2YrAsQZtDe_LFpVkPcuqBzmXXKg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/0f50bb-1fe1-4c83-8c88-e35d2d5f00f8/1/QPd3pppriKY74r38i3fhz-eR7pA.roa
Signing time: Mon 02 Jan 2023 05:44:48 +0000
ROA not before: Mon 02 Jan 2023 05:44:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207725
IP address blocks: 45.137.232.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:02:d4:e7:b0:92:b2:c5:af:91:66:34:30:b8:b7:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d98ac0b1066d0defcb1695643dcbaa0739975ca8
Validity
Not Before: Jan 2 05:44:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=40f777a69a6b88a63be2bdfc8b77e1cfe791ee90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:61:7b:4a:b5:0a:55:36:67:6b:53:34:db:2c:
d6:91:94:a4:97:c1:61:17:ea:9c:3c:e4:45:c9:17:
fa:98:9d:a7:d8:f5:d9:be:0d:2d:40:39:ec:bb:1a:
0b:31:ac:cf:d5:c9:8a:f8:f7:fc:8f:0e:65:cb:e1:
7e:de:5c:b4:76:cc:54:3b:49:4d:23:91:bc:48:c4:
93:3c:8e:ef:26:90:3e:c6:2f:0f:cc:30:30:36:03:
01:5d:5c:76:2d:6c:5e:8e:c9:ca:80:7b:80:0a:85:
22:07:a5:b6:5e:69:50:eb:8c:93:16:e3:65:9a:8f:
ad:96:41:79:06:dd:c1:ae:5d:aa:8a:ea:02:84:ea:
77:79:36:b6:31:e3:e5:e3:f9:3b:4c:58:6e:08:07:
47:1e:1e:53:b9:6d:92:9e:06:68:95:aa:94:01:95:
c9:cf:47:18:37:38:9b:7b:c0:b1:b6:9f:81:e5:4b:
eb:7b:e7:38:c8:2a:b3:5d:3b:9e:a1:ba:e4:3f:4c:
2a:66:6a:23:82:73:d3:e3:57:60:92:e9:6b:d2:e3:
b4:c0:c5:4b:2f:52:cd:42:ff:fd:da:ff:ad:0e:14:
2d:44:2c:89:6e:07:69:15:c9:ab:5b:a0:0b:56:e2:
cc:1e:d7:6e:21:00:27:31:2a:2b:04:c0:b4:84:82:
f6:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:F7:77:A6:9A:6B:88:A6:3B:E2:BD:FC:8B:77:E1:CF:E7:91:EE:90
X509v3 Authority Key Identifier:
keyid:D9:8A:C0:B1:06:6D:0D:EF:CB:16:95:64:3D:CB:AA:07:39:97:5C:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2YrAsQZtDe_LFpVkPcuqBzmXXKg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/0f50bb-1fe1-4c83-8c88-e35d2d5f00f8/1/QPd3pppriKY74r38i3fhz-eR7pA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/0f50bb-1fe1-4c83-8c88-e35d2d5f00f8/1/2YrAsQZtDe_LFpVkPcuqBzmXXKg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.137.232.0/22
Signature Algorithm: sha256WithRSAEncryption
91:b6:77:d9:09:3d:e2:48:64:65:d6:ce:f8:83:b9:21:69:f8:
d8:e8:6a:09:23:27:3f:55:46:8c:75:70:31:be:d3:fa:ed:3e:
f7:63:59:37:61:32:ca:6d:ae:76:2b:c6:c6:f6:a9:0c:c3:12:
62:a5:7f:f8:f9:28:1e:b1:24:62:85:44:30:ef:73:a4:f1:a0:
0f:4f:77:91:db:a9:cd:4d:c5:2d:76:ee:b1:f9:a4:44:0e:ac:
31:dd:20:57:97:34:38:0c:e4:19:72:6a:ff:e8:45:14:b6:9e:
f5:86:64:14:34:a9:3b:2b:b9:df:4e:6e:50:d0:91:14:a2:36:
94:1c:b8:93:11:d2:91:08:78:76:f2:a5:3a:9a:4b:8a:6d:ba:
0c:61:17:1c:11:56:00:49:5a:33:e8:d5:ff:db:b2:b9:0f:08:
3b:78:92:71:86:e6:6b:1b:5e:5a:a1:ca:35:77:ff:73:70:6c:
02:16:58:4d:a7:2c:7f:1d:4a:51:d4:29:74:3a:2b:f3:fd:08:
0c:94:96:e2:fd:ec:da:1b:35:b9:65:8e:8a:ef:24:37:65:0e:
e3:02:9d:a9:be:19:2e:22:c2:02:1d:71:8f:56:15:e4:2c:c8:
2a:a7:75:c3:17:51:11:6b:9d:a3:00:d5:23:4a:24:1e:67:1d:
ac:95:49:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 17:14:10 2024 by rpki-client on console-ams.rpki-client.org