Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/QfhOsCgESDwGfG8zow4SUBab9YM.roa
File: QfhOsCgESDwGfG8zow4SUBab9YM.roa (raw, json)
Hash identifier: 2Udu2tVO0bNCIzRlbf0LKwIsxOtif2OEyhJJ0Vld+Ug=
Subject key identifier: 41:F8:4E:B0:28:04:48:3C:06:7C:6F:33:A3:0E:12:50:16:9B:F5:83
Certificate issuer: /CN=f04a58047f37bbc057944bbf8cad8742879592da
Certificate serial: 0192C02B51673E035BEBC4FF267F063B139D
Authority key identifier: F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/QfhOsCgESDwGfG8zow4SUBab9YM.roa
Signing time: Thu 24 Oct 2024 20:15:17 +0000
ROA not before: Thu 24 Oct 2024 20:15:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 18345
IP address blocks: 170.62.88.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 08 Nov 2024 08:41:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:c0:2b:51:67:3e:03:5b:eb:c4:ff:26:7f:06:3b:13:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f04a58047f37bbc057944bbf8cad8742879592da
Validity
Not Before: Oct 24 20:15:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=41f84eb02804483c067c6f33a30e1250169bf583
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:f6:8e:8b:f2:40:e2:75:1b:cc:78:57:2c:9f:
14:88:85:bf:bb:2e:ff:69:77:2d:16:7d:5d:e6:a0:
6a:86:cc:8b:52:32:7d:5e:38:bf:eb:8a:f5:ec:94:
1b:9b:6a:b1:c8:3f:ff:c1:ba:b1:6e:25:42:3b:4b:
68:7b:ab:c7:ce:f4:d9:16:a5:fa:31:d4:11:12:80:
71:86:cf:5e:a9:1f:cb:f0:fb:fb:71:33:8d:fb:3f:
2f:48:d1:cc:4f:a2:04:7b:9a:24:30:f0:cf:cd:24:
de:86:59:58:49:2b:92:51:4a:93:0f:a5:f4:18:96:
bf:9e:0b:ab:6a:37:d5:d5:c4:44:ee:fa:e8:2b:28:
bd:c0:9a:bb:a9:c2:9b:53:d6:52:79:e2:04:c3:d8:
8e:53:c3:ef:ff:ad:21:f0:08:7c:01:5f:1e:1b:47:
70:29:92:09:8a:9a:59:ac:90:f6:26:16:c8:a1:89:
76:cc:04:61:0c:1f:14:15:9f:3d:ff:3e:2d:74:ab:
eb:78:d1:ad:97:95:ad:58:fd:1a:40:50:aa:82:b1:
3d:f4:b2:bd:58:1e:3e:93:17:c6:62:07:d0:79:df:
7e:94:fd:8a:39:ca:5b:5f:7d:3a:27:95:ca:d7:23:
6b:db:4e:4f:54:39:a4:49:b9:18:d2:8b:a1:b5:a2:
04:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:F8:4E:B0:28:04:48:3C:06:7C:6F:33:A3:0E:12:50:16:9B:F5:83
X509v3 Authority Key Identifier:
keyid:F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/QfhOsCgESDwGfG8zow4SUBab9YM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.62.88.0/24
Signature Algorithm: sha256WithRSAEncryption
c1:39:b3:d0:15:2a:b9:07:b4:51:bf:e6:76:cf:c9:d0:65:c6:
67:4d:15:b4:28:be:f1:50:d6:cc:25:ab:78:d9:53:0d:d2:b9:
d3:b9:77:32:27:5b:60:db:b0:fa:b8:93:f0:34:ae:a1:f1:dd:
1a:90:5c:35:4b:f8:7f:5e:31:c9:f2:d7:65:6f:7d:91:4b:8c:
24:f7:c8:c3:8d:68:8f:9d:21:c3:cc:69:d4:92:32:ce:7e:55:
f6:50:a9:5d:57:b8:4a:b7:5d:fd:a7:d7:9d:77:ba:e2:52:60:
a8:ca:11:70:c6:31:1b:bc:41:07:b2:48:7f:d6:2f:7d:d0:e4:
7b:f6:3e:43:2f:e0:df:a7:f2:ec:42:ee:34:10:d3:83:73:15:
56:f8:66:85:a8:cd:72:d0:4a:f0:63:84:aa:04:94:2a:4f:73:
35:5d:2e:3c:48:d5:31:5b:ac:34:7e:54:d6:1f:74:2f:ed:c5:
e5:41:1c:cf:77:78:8b:38:07:34:91:1b:8b:fc:f0:35:21:fd:
e9:68:6d:4d:f0:11:a0:64:3e:6c:74:b0:62:8d:67:50:f3:df:
f4:b0:22:02:91:36:dc:5e:3a:cf:3c:31:23:31:12:1f:cb:df:
90:29:49:71:52:dd:c7:8c:76:81:18:bb:7b:96:b1:5d:5c:fb:
59:c4:88:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 8 10:13:29 2024 by rpki-client on console-ams.rpki-client.org