Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/QtnXNSGhf0Cq1nzH-FDaa4qYZXA.roa
File: QtnXNSGhf0Cq1nzH-FDaa4qYZXA.roa (raw, json)
Hash identifier: s4kOyTd3tYIt36j6wnCeXmIfooevBkZB6LXCuwu8AkQ=
Subject key identifier: 42:D9:D7:35:21:A1:7F:40:AA:D6:7C:C7:F8:50:DA:6B:8A:98:65:70
Certificate issuer: /CN=ef1c665b038692b93bdf5d1d8f3cea3e98697a03
Certificate serial: 018798FF9CBA8CF2268F3624EBD8225F0E13
Authority key identifier: EF:1C:66:5B:03:86:92:B9:3B:DF:5D:1D:8F:3C:EA:3E:98:69:7A:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7xxmWwOGkrk7310djzzqPphpegM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/QtnXNSGhf0Cq1nzH-FDaa4qYZXA.roa
Signing time: Wed 19 Apr 2023 10:11:41 +0000
ROA not before: Wed 19 Apr 2023 10:11:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204582
IP address blocks: 62.76.251.0/24 maxlen: 24
212.193.118.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 15 Jun 2023 13:47:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:98:ff:9c:ba:8c:f2:26:8f:36:24:eb:d8:22:5f:0e:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef1c665b038692b93bdf5d1d8f3cea3e98697a03
Validity
Not Before: Apr 19 10:11:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=42d9d73521a17f40aad67cc7f850da6b8a986570
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:07:ea:83:7d:0e:7c:8d:63:eb:4e:6a:e0:5e:
7a:d6:57:a1:2e:49:3a:c7:5d:7d:4c:78:a2:6f:8a:
68:a7:cc:43:ac:24:bd:1b:55:75:65:9a:1e:8d:46:
06:b9:e7:7d:4d:cb:b8:6d:32:e7:ad:c2:09:06:bb:
a8:51:a3:32:29:1c:f3:71:c8:07:5e:58:b7:21:1c:
1e:33:07:09:22:fc:06:9c:0a:58:52:27:3b:6d:3f:
85:2b:4c:5f:ca:ec:5b:ca:73:c6:f1:13:54:22:d4:
62:b9:f9:2a:d0:b6:14:73:d3:af:c6:aa:7c:64:8c:
88:0e:3f:44:9d:d0:04:22:e8:95:c2:5a:66:17:75:
1f:54:fb:c6:a5:57:ea:07:bf:3b:c0:12:e8:1b:50:
7d:28:12:d6:74:be:a4:11:85:d0:e9:9a:f3:aa:45:
d4:c1:90:e1:c2:4d:4e:c3:e0:23:a5:6f:fd:ce:a3:
9d:da:8f:83:a2:1f:82:cd:ef:54:e9:d7:45:2f:b6:
fd:aa:54:5c:03:fa:f6:9a:f0:c1:a9:be:30:67:40:
45:44:ae:f5:52:95:39:fe:bc:bc:41:50:8e:75:43:
e2:94:e2:59:65:62:b5:5a:86:36:cc:2a:36:65:ee:
03:d3:a8:47:b0:b5:49:5d:45:0b:b1:2c:e1:1b:18:
e5:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:D9:D7:35:21:A1:7F:40:AA:D6:7C:C7:F8:50:DA:6B:8A:98:65:70
X509v3 Authority Key Identifier:
keyid:EF:1C:66:5B:03:86:92:B9:3B:DF:5D:1D:8F:3C:EA:3E:98:69:7A:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7xxmWwOGkrk7310djzzqPphpegM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/QtnXNSGhf0Cq1nzH-FDaa4qYZXA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/7xxmWwOGkrk7310djzzqPphpegM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.251.0/24
212.193.118.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:23:f2:3a:56:eb:38:0d:ee:95:d4:6f:5e:41:5a:e1:8a:14:
20:b5:a4:2d:54:02:50:da:21:b2:6d:3e:c1:af:20:60:b7:7f:
70:31:d5:63:09:74:10:5c:a1:14:6c:3c:ed:0c:c4:f2:31:c8:
76:5d:a6:e0:cb:fa:86:4b:f1:99:fd:ab:bc:51:55:0c:11:c9:
3b:38:48:55:51:41:b1:97:ad:38:b3:a7:86:19:c9:08:72:56:
bc:9d:09:5d:63:d7:fd:da:a9:b8:b7:76:3b:81:c1:b4:b5:f1:
b1:12:2b:42:b6:75:03:3d:32:ef:ee:e1:ba:6f:3f:42:00:03:
f5:1c:66:e6:54:a3:8b:0d:58:c3:a1:26:ef:70:0b:36:43:ce:
24:f3:fc:69:65:7c:00:2b:c1:e5:d7:14:0f:95:5f:fd:d5:4e:
6d:4f:b4:5d:65:fa:94:e6:b6:24:53:00:a5:22:ef:ea:ee:e3:
3a:5d:0e:3a:19:af:d9:d3:10:af:3c:28:48:a2:d1:a4:16:ed:
79:5d:22:d6:d5:76:8c:45:7e:d5:20:09:34:22:af:3a:57:60:
e9:bd:4a:e0:f0:c6:65:77:41:ad:72:37:d8:4a:11:6c:9e:67:
5e:13:ed:22:35:36:48:c9:ba:05:c6:4f:d9:60:17:5c:af:f5:
0e:80:53:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:51 2024 by rpki-client on console-fra.rpki-client.org