Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/2c77c4-e306-4ab9-b87f-8892652996a2/1/QYx3Zw5OpWAwKpeJnFY8bmZpxLA.roa
File: QYx3Zw5OpWAwKpeJnFY8bmZpxLA.roa (raw, json)
Hash identifier: Xhd/fxIyZbsCA+xb99QWxk462WeKAFFL9Q/E9MaKQ3U=
Subject key identifier: 41:8C:77:67:0E:4E:A5:60:30:2A:97:89:9C:56:3C:6E:66:69:C4:B0
Certificate issuer: /CN=04a77442f6895c9032464260622887aa96fc6daa
Certificate serial: 018BB19F1F0804BB01BB5E925D74A891DC25
Authority key identifier: 04:A7:74:42:F6:89:5C:90:32:46:42:60:62:28:87:AA:96:FC:6D:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BKd0QvaJXJAyRkJgYiiHqpb8bao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/2c77c4-e306-4ab9-b87f-8892652996a2/1/QYx3Zw5OpWAwKpeJnFY8bmZpxLA.roa
Signing time: Thu 09 Nov 2023 01:07:57 +0000
ROA not before: Thu 09 Nov 2023 01:07:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202448
IP address blocks: 94.231.205.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:b1:9f:1f:08:04:bb:01:bb:5e:92:5d:74:a8:91:dc:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04a77442f6895c9032464260622887aa96fc6daa
Validity
Not Before: Nov 9 01:07:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=418c77670e4ea560302a97899c563c6e6669c4b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:37:c1:70:11:24:24:18:38:f3:74:0b:01:02:
48:03:b4:f6:48:da:a4:a5:7b:ce:64:13:4e:7f:b2:
cf:cf:51:4f:36:25:da:75:da:0a:43:fe:ef:e7:73:
12:64:bc:53:b4:32:ae:01:46:87:45:91:2e:67:68:
66:f7:5f:9e:4d:e5:ec:08:54:60:d0:44:ef:46:bc:
fe:b8:0b:d8:71:6c:a9:8c:d8:8a:d1:f0:88:5b:d3:
e1:41:48:5f:73:2d:92:d4:03:df:5d:32:36:bf:4a:
40:50:23:c2:cf:16:71:10:4d:43:80:a2:c6:ee:19:
d5:c2:31:70:ab:49:2a:26:26:fc:86:1b:62:94:a6:
51:9e:bc:3b:47:fb:64:a8:ce:70:ea:4f:df:59:72:
58:81:30:39:9c:a0:20:a2:9e:90:3c:cb:a4:3f:d4:
1d:f4:27:84:9c:57:fb:d0:66:e4:d6:f8:fb:f9:62:
77:6a:5a:53:c7:ee:d8:6a:66:92:9d:3d:42:e7:d4:
69:d4:e5:9e:fc:a9:17:2c:de:d3:39:dd:d4:05:8f:
d8:c6:fb:fb:e9:0c:41:ca:3e:be:ef:48:22:c8:f4:
14:49:91:26:69:e6:55:dd:c0:18:7a:b2:cf:6a:45:
87:ba:bf:3a:31:d9:cc:ab:a9:dc:db:59:02:fa:39:
f6:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:8C:77:67:0E:4E:A5:60:30:2A:97:89:9C:56:3C:6E:66:69:C4:B0
X509v3 Authority Key Identifier:
keyid:04:A7:74:42:F6:89:5C:90:32:46:42:60:62:28:87:AA:96:FC:6D:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BKd0QvaJXJAyRkJgYiiHqpb8bao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/2c77c4-e306-4ab9-b87f-8892652996a2/1/QYx3Zw5OpWAwKpeJnFY8bmZpxLA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/2c77c4-e306-4ab9-b87f-8892652996a2/1/BKd0QvaJXJAyRkJgYiiHqpb8bao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.231.205.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:54:d6:f5:69:87:04:93:84:63:31:55:5d:be:70:2d:d5:32:
5f:35:2d:33:0e:64:84:84:b3:51:14:a1:b1:ab:fb:1f:2d:d5:
18:9b:da:af:e1:d5:46:65:33:78:b8:12:e0:d3:34:58:4e:a5:
0a:2d:c6:7e:fe:1d:d3:a2:7c:22:8f:6a:16:36:1c:ff:eb:d6:
cb:f9:01:3b:1f:17:19:f6:ac:32:af:b5:e3:29:95:62:8f:e9:
31:41:a7:fc:8c:43:91:51:ba:de:82:e4:e6:16:70:ca:65:9f:
d2:63:f6:86:9c:05:cc:df:23:24:54:79:2a:5e:1c:ea:50:c8:
cd:c9:e5:fb:68:96:be:4b:ef:1c:08:ad:a4:69:31:89:e7:91:
e7:e8:5d:84:00:e3:ae:12:43:d8:fa:f6:38:20:e5:56:0f:34:
70:66:48:bf:8c:1c:a6:67:7b:02:e7:c4:69:09:83:02:dd:8f:
6e:a4:76:e8:39:71:27:7d:bb:2f:bc:69:9d:59:08:40:0b:6e:
a1:26:8b:d6:e0:1c:7b:6c:86:be:3d:10:5d:9c:1f:57:16:73:
0a:03:aa:da:c9:f7:f1:26:62:7e:ef:81:2f:f3:11:21:04:2e:
7c:1c:8f:63:7c:52:82:18:3c:9d:11:e1:d9:a9:cf:4f:d2:c8:
8c:3a:23:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 23:30:20 2024 by rpki-client on console-ams.rpki-client.org