Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/992d03-883b-404d-887e-f2435d5cf37b/1/QIGQIBKIrA9gjWbda8-YIzurWyw.roa
File: QIGQIBKIrA9gjWbda8-YIzurWyw.roa (raw, json)
Hash identifier: M2pne+b6389I29wSamhjWTva48CI/2ztnFbJ849kD+E=
Subject key identifier: 40:81:90:20:12:88:AC:0F:60:8D:66:DD:6B:CF:98:23:3B:AB:5B:2C
Certificate issuer: /CN=7001e422227fa44cc5cb95d2a9dcce0fa5b89c07
Certificate serial: 018570398FDEB7C7F3CEAFADAFEEDB3EF750
Authority key identifier: 70:01:E4:22:22:7F:A4:4C:C5:CB:95:D2:A9:DC:CE:0F:A5:B8:9C:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cAHkIiJ_pEzFy5XSqdzOD6W4nAc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/992d03-883b-404d-887e-f2435d5cf37b/1/QIGQIBKIrA9gjWbda8-YIzurWyw.roa
Signing time: Mon 02 Jan 2023 02:04:58 +0000
ROA not before: Mon 02 Jan 2023 02:04:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211238
IP address blocks: 91.227.168.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:39:8f:de:b7:c7:f3:ce:af:ad:af:ee:db:3e:f7:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7001e422227fa44cc5cb95d2a9dcce0fa5b89c07
Validity
Not Before: Jan 2 02:04:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=408190201288ac0f608d66dd6bcf98233bab5b2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:bd:55:9e:48:79:b9:37:04:8f:96:7b:ff:d5:
2f:ae:47:cd:02:30:5d:00:81:79:e0:18:c0:55:20:
4d:72:14:ee:7f:ce:70:8c:2c:25:b0:48:9a:20:5d:
a0:9e:a9:eb:25:1d:2e:63:ff:c1:c1:7b:8e:9e:3b:
c2:77:a5:57:5c:6f:5c:13:00:e7:0a:2b:0a:b5:6d:
75:3d:33:c7:19:4d:e3:46:0e:ec:bd:be:98:5f:57:
d7:dd:6c:c7:c9:28:56:d9:96:53:ec:af:1a:1c:b9:
90:44:99:e1:04:d8:60:96:66:db:b0:c0:69:4b:7f:
65:42:a4:82:b0:df:97:eb:cd:4a:03:12:03:96:33:
f1:37:ad:c2:00:b7:27:12:13:db:57:f6:f3:2d:59:
a9:5d:69:b9:bc:a0:fb:55:e4:53:b0:84:d4:e6:85:
63:f2:fd:8f:2b:04:75:ad:c8:ee:a8:d9:bc:33:be:
dc:78:89:5f:58:d5:60:79:52:f0:47:96:aa:31:87:
e1:8e:eb:a6:f0:89:87:55:8f:ad:89:cf:32:06:ac:
fa:29:20:46:79:82:32:7f:b3:9f:c5:d3:0b:c0:37:
72:b9:d5:b2:d8:44:3c:be:96:d1:51:a4:61:c5:3e:
69:67:28:bb:a5:09:e5:84:58:a6:4c:b2:06:a2:6f:
3a:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:81:90:20:12:88:AC:0F:60:8D:66:DD:6B:CF:98:23:3B:AB:5B:2C
X509v3 Authority Key Identifier:
keyid:70:01:E4:22:22:7F:A4:4C:C5:CB:95:D2:A9:DC:CE:0F:A5:B8:9C:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cAHkIiJ_pEzFy5XSqdzOD6W4nAc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/992d03-883b-404d-887e-f2435d5cf37b/1/QIGQIBKIrA9gjWbda8-YIzurWyw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/992d03-883b-404d-887e-f2435d5cf37b/1/cAHkIiJ_pEzFy5XSqdzOD6W4nAc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.227.168.0/24
Signature Algorithm: sha256WithRSAEncryption
bd:60:2a:21:58:f8:5d:72:15:c1:0a:4a:28:67:76:ea:a9:2f:
df:b3:05:9a:bb:86:6a:12:87:a2:30:30:67:24:ba:68:b1:10:
69:ad:3f:07:2c:8e:5f:42:e3:5e:e3:13:21:b3:85:b4:b8:bf:
5f:3e:0a:04:2e:96:23:f0:38:9e:48:c2:26:d8:ea:7b:81:1d:
8c:b6:24:29:ec:de:91:26:05:ce:b0:56:30:40:b7:f0:17:a3:
19:0a:79:6c:5a:97:02:73:2a:73:30:af:7f:be:68:b1:4e:7b:
63:c7:0d:d7:3c:4e:56:86:e8:cb:d0:09:38:8f:36:e6:5b:da:
89:85:a7:9c:df:bd:d8:e3:c6:06:63:22:37:f9:e5:ee:5a:75:
03:58:3b:aa:b7:b0:9c:05:ba:1d:e8:26:ee:ac:d4:6b:65:d5:
06:5b:bd:c5:09:8b:41:61:d6:78:62:4e:c4:51:3c:75:6f:62:
b7:30:2a:f1:08:ef:a8:60:9d:f9:a8:c1:eb:6e:27:49:f0:5c:
75:5e:b7:4b:bb:bc:bd:18:98:73:da:c0:79:23:81:e4:5d:31:
67:1e:a2:ce:8d:58:f6:55:5e:c4:9b:f9:57:9a:dd:b3:d2:2a:
70:9e:5f:4f:90:0a:79:f1:f0:4f:23:62:8f:88:01:3b:7f:86:
2e:10:1a:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 09:30:23 2024 by rpki-client on console-ams.rpki-client.org