Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/828652-addf-4fe8-9fe6-4b1f61653f3d/1/QqEtReuVNl6A-bsB9EkCNJzZmHY.roa
File: QqEtReuVNl6A-bsB9EkCNJzZmHY.roa (raw, json)
Hash identifier: 4ZCGhDSHNa+NnarRFtOfPd1ULbliIOkNcQCySCIXrws=
Subject key identifier: 42:A1:2D:45:EB:95:36:5E:80:F9:BB:01:F4:49:02:34:9C:D9:98:76
Certificate issuer: /CN=13932782ee7758990404fa1ccfb09ec23a86123f
Certificate serial: 0189014A0DAF1E51D1503EC27A8AE9EE461C
Authority key identifier: 13:93:27:82:EE:77:58:99:04:04:FA:1C:CF:B0:9E:C2:3A:86:12:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E5Mngu53WJkEBPocz7CewjqGEj8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/828652-addf-4fe8-9fe6-4b1f61653f3d/1/QqEtReuVNl6A-bsB9EkCNJzZmHY.roa
Signing time: Wed 28 Jun 2023 09:16:17 +0000
ROA not before: Wed 28 Jun 2023 09:16:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202416
IP address blocks: 82.136.32.0/24 maxlen: 24
2001:4088:20::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:01:4a:0d:af:1e:51:d1:50:3e:c2:7a:8a:e9:ee:46:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=13932782ee7758990404fa1ccfb09ec23a86123f
Validity
Not Before: Jun 28 09:16:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=42a12d45eb95365e80f9bb01f44902349cd99876
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:67:cf:65:75:74:d0:b8:cb:72:f1:8c:2f:4f:
46:6e:59:d9:69:25:72:5b:f0:4e:e5:88:d5:09:58:
bd:a6:bf:b4:2f:14:a3:47:74:55:9f:93:3b:06:a5:
99:fd:d8:c0:29:0a:49:cf:2a:30:fb:ee:f9:23:4a:
60:c4:f1:1a:5c:68:13:e3:cb:50:19:b5:f4:06:03:
26:67:6c:56:a4:7a:61:56:5c:08:b6:95:de:05:fc:
54:e9:a6:ae:72:98:82:fc:84:3b:1e:2d:fc:78:4b:
47:32:1c:0a:fb:ca:d2:c6:f8:6e:ad:34:06:42:75:
d5:13:2b:51:6a:6f:6b:3a:9b:82:d6:1b:2a:15:65:
bb:db:a1:03:27:cf:53:1e:1b:e4:f8:a2:b3:43:7a:
4a:44:e3:cf:11:e9:1b:12:53:41:ad:b9:20:b3:07:
bb:d3:2f:1c:25:00:a0:75:00:81:c3:04:bc:05:60:
1f:a0:e8:af:e5:32:59:1a:63:d3:51:99:3b:87:f6:
c6:a3:c9:b9:e7:42:a4:2e:54:fb:73:b6:e2:96:2a:
f6:21:28:92:a8:b3:c6:d4:75:b4:37:a1:a5:8a:be:
ef:19:ed:6a:c2:9d:8b:4e:9c:67:ba:b0:c5:c6:af:
ad:ec:26:90:2c:cc:59:7b:4d:df:14:41:bf:b8:b2:
b5:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:A1:2D:45:EB:95:36:5E:80:F9:BB:01:F4:49:02:34:9C:D9:98:76
X509v3 Authority Key Identifier:
keyid:13:93:27:82:EE:77:58:99:04:04:FA:1C:CF:B0:9E:C2:3A:86:12:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E5Mngu53WJkEBPocz7CewjqGEj8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/828652-addf-4fe8-9fe6-4b1f61653f3d/1/QqEtReuVNl6A-bsB9EkCNJzZmHY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/828652-addf-4fe8-9fe6-4b1f61653f3d/1/E5Mngu53WJkEBPocz7CewjqGEj8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.136.32.0/24
IPv6:
2001:4088:20::/48
Signature Algorithm: sha256WithRSAEncryption
56:5e:c6:ae:06:07:d8:c9:45:57:6e:1d:3a:82:4f:19:06:c5:
e5:11:03:fe:2e:e2:c1:58:5c:94:1d:76:47:37:ee:7e:a8:f5:
43:cc:58:18:c7:9f:84:aa:25:36:c2:ff:63:c6:d0:00:1f:fc:
6e:db:9e:7f:a9:dc:cb:1c:ba:ea:93:9e:e6:b0:61:81:bb:26:
5b:8e:36:ce:0e:c8:99:54:20:75:60:15:77:8e:7a:cf:00:70:
5a:87:3a:c6:fe:fa:41:41:8d:27:a8:5a:79:83:09:ae:78:0d:
44:1c:2e:2e:34:e6:89:b9:e0:d3:24:0a:52:cb:6f:c5:24:e4:
de:6f:91:28:d9:45:e9:84:95:38:e1:4b:4f:41:a0:98:cb:31:
83:3f:b3:25:7a:a9:46:2e:22:bf:f2:c9:b0:28:cc:8d:55:2f:
99:c9:dd:fa:f3:77:fd:ee:cd:59:b9:14:5f:d3:fb:e1:0d:f6:
81:3c:d0:e4:db:38:a0:b6:f9:bd:3c:36:d3:b1:20:c2:4d:1c:
7e:9e:0d:8a:aa:49:76:9e:94:82:04:28:67:cf:7f:88:da:f6:
d1:e8:82:a4:98:66:16:b4:d2:be:03:98:d0:cb:78:91:11:63:
97:c0:9f:27:0b:d3:7b:9e:a5:89:89:5c:4d:89:57:c4:4c:cd:
d4:87:c2:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 13:11:13 2024 by rpki-client on console-ams.rpki-client.org