Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/QnsSTzqWrb775uTAqc8IxMRLYhE.roa
File: QnsSTzqWrb775uTAqc8IxMRLYhE.roa (raw, json)
Hash identifier: Debrqbnf2nJXUQo/WrGphi5qx0nIE4uDdS3HZiPIC3g=
Subject key identifier: 42:7B:12:4F:3A:96:AD:BE:FB:E6:E4:C0:A9:CF:08:C4:C4:4B:62:11
Certificate issuer: /CN=e8b3eed1c7aca636d6245852b802e0e73754df63
Certificate serial: 0187DA091DB6C51E4CE27F5FCA04EDA555DB
Authority key identifier: E8:B3:EE:D1:C7:AC:A6:36:D6:24:58:52:B8:02:E0:E7:37:54:DF:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6LPu0cespjbWJFhSuALg5zdU32M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/QnsSTzqWrb775uTAqc8IxMRLYhE.roa
Signing time: Tue 02 May 2023 01:17:23 +0000
ROA not before: Tue 02 May 2023 01:17:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 37.148.218.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 13 Jun 2023 13:11:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:da:09:1d:b6:c5:1e:4c:e2:7f:5f:ca:04:ed:a5:55:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8b3eed1c7aca636d6245852b802e0e73754df63
Validity
Not Before: May 2 01:17:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=427b124f3a96adbefbe6e4c0a9cf08c4c44b6211
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:b6:6f:8e:3b:fd:cf:85:bf:05:8c:97:83:89:
d8:3b:fb:91:e2:e5:8e:ad:1c:d6:82:eb:9b:df:b0:
37:d8:1e:69:e7:bd:07:2d:d4:dd:e6:70:58:1d:1e:
c0:1d:82:31:65:32:73:c1:67:66:bb:52:5e:e1:1e:
3c:17:08:04:25:11:2f:dd:ae:1a:d7:d3:43:8a:25:
3c:46:4c:da:93:2d:02:6a:09:59:b6:bf:12:cb:55:
f4:7a:e9:44:fb:d9:d1:38:eb:04:38:3a:7c:6b:b6:
44:fb:a1:35:d3:49:92:19:69:47:2a:6a:e3:70:8b:
90:9b:ab:7a:4c:dd:1f:2d:e0:42:41:86:3f:bb:87:
51:d5:0a:c7:47:d9:ed:52:27:6c:ea:7f:1a:a0:30:
2f:e4:06:a9:56:16:74:e3:5e:f1:20:02:00:f3:c5:
ce:09:f9:7a:f6:2d:c3:44:86:d0:79:86:51:95:70:
e5:da:4a:e8:1d:80:d2:fe:63:37:d8:eb:9a:6c:a5:
b0:47:eb:b0:44:f5:57:fd:55:11:fc:a0:e6:42:e2:
94:ac:2f:27:e7:1c:37:23:ea:bc:3d:6a:17:9e:90:
34:51:1c:c9:62:c3:c8:cf:33:89:8e:56:22:ac:15:
3b:d5:f4:31:12:68:a5:c0:bd:9f:49:38:e3:82:ca:
d2:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:7B:12:4F:3A:96:AD:BE:FB:E6:E4:C0:A9:CF:08:C4:C4:4B:62:11
X509v3 Authority Key Identifier:
keyid:E8:B3:EE:D1:C7:AC:A6:36:D6:24:58:52:B8:02:E0:E7:37:54:DF:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6LPu0cespjbWJFhSuALg5zdU32M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/QnsSTzqWrb775uTAqc8IxMRLYhE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/6LPu0cespjbWJFhSuALg5zdU32M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.148.218.0/23
Signature Algorithm: sha256WithRSAEncryption
5d:4a:71:46:0f:9a:7a:e4:9e:7e:86:50:e3:fe:35:5c:74:43:
8c:0e:8d:53:15:1d:86:6d:ec:cc:a2:c5:12:9b:b9:ce:22:4c:
69:a8:e4:29:93:56:ec:49:3c:0a:9c:81:f2:b2:da:a3:22:4e:
5c:cb:29:4c:cd:48:43:31:96:93:64:99:cf:9c:45:43:be:83:
4b:bd:49:57:65:4e:f5:56:e8:cf:a4:45:3a:fd:15:50:33:b5:
e7:60:18:68:b6:5e:c3:9f:2f:23:c8:80:8f:d5:95:59:de:4e:
6c:d4:c3:f3:55:05:e4:d6:8f:6a:65:27:bb:10:cd:cf:f8:7b:
a6:93:5a:ed:64:45:73:7e:30:ae:5b:ca:72:97:b8:dd:90:29:
68:45:81:c4:3e:b4:76:f2:79:47:de:af:a2:aa:85:c4:03:b5:
ce:14:56:7e:e2:7d:d1:ff:3b:08:a6:9e:87:58:13:eb:d9:3c:
a2:32:52:e4:85:5c:44:75:88:a0:b3:74:46:12:ed:17:6e:fd:
91:6c:a0:ac:b9:a0:73:10:05:85:0e:93:9b:73:93:00:6b:59:
a7:0c:33:ab:e0:0e:49:32:9e:48:d1:3e:61:75:d3:55:94:d7:
45:fb:ab:b0:91:ed:b9:c8:72:d3:52:88:1c:33:71:71:dd:81:
9b:84:a5:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:41:08 2024 by rpki-client on console-fra.rpki-client.org