Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/9de8b0-6cc5-458b-b23e-16e10d72b567/1/QVLot2B8BrW08bzwuObeOXKYP40.roa
File: QVLot2B8BrW08bzwuObeOXKYP40.roa (raw, json)
Hash identifier: uSteCNssomFd+iY9i3HoIKEKRwmwnITYNQNN93QNvrc=
Subject key identifier: 41:52:E8:B7:60:7C:06:B5:B4:F1:BC:F0:B8:E6:DE:39:72:98:3F:8D
Certificate issuer: /CN=b6ae61814f7150c9b8117f498cab94db72a8339c
Certificate serial: 01896EDE02CEAFCD23D82762871DF939BC31
Authority key identifier: B6:AE:61:81:4F:71:50:C9:B8:11:7F:49:8C:AB:94:DB:72:A8:33:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tq5hgU9xUMm4EX9JjKuU23KoM5w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/9de8b0-6cc5-458b-b23e-16e10d72b567/1/QVLot2B8BrW08bzwuObeOXKYP40.roa
Signing time: Wed 19 Jul 2023 15:56:30 +0000
ROA not before: Wed 19 Jul 2023 15:56:30 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209961
IP address blocks: 185.214.166.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:6e:de:02:ce:af:cd:23:d8:27:62:87:1d:f9:39:bc:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b6ae61814f7150c9b8117f498cab94db72a8339c
Validity
Not Before: Jul 19 15:56:30 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4152e8b7607c06b5b4f1bcf0b8e6de3972983f8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:d9:43:00:31:42:0d:2b:5e:74:54:08:14:9b:
da:d5:0e:c5:f5:50:27:2a:68:61:dd:85:62:a0:32:
f2:17:c4:41:b8:5a:50:c4:a5:23:29:27:4e:0b:4f:
38:fa:1d:9f:8d:d0:12:3d:03:58:3a:f2:90:ec:e2:
46:3c:18:b2:d3:a6:0b:18:1f:7b:a9:c9:cb:12:54:
5b:99:03:17:13:40:b8:45:c4:bf:43:e0:56:fe:e1:
94:2b:fe:0a:4e:fb:17:35:99:41:5b:4a:87:4a:fb:
1c:ef:e0:39:39:df:78:1a:61:38:7d:13:45:1d:b7:
32:a1:66:d6:33:be:79:63:de:02:82:71:78:fc:e6:
73:05:f7:c7:23:a4:fd:b9:a3:d7:f5:ac:5f:af:3f:
36:87:1e:4c:0c:06:39:0e:b2:de:51:8d:6d:df:d3:
96:30:81:8e:19:4b:df:67:88:e8:82:19:78:15:94:
14:92:ba:06:4f:68:d6:f2:3e:06:fd:61:11:50:79:
9f:dd:93:c1:d5:64:58:66:22:3f:40:33:bd:e2:e2:
6c:19:36:4d:4d:ef:03:fc:83:73:f0:9c:5f:69:2b:
d9:ff:a8:8f:a0:99:c4:b9:cf:55:56:40:e5:04:75:
10:74:8d:db:49:f7:7c:c1:4a:59:9e:a3:11:f3:ce:
48:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:52:E8:B7:60:7C:06:B5:B4:F1:BC:F0:B8:E6:DE:39:72:98:3F:8D
X509v3 Authority Key Identifier:
keyid:B6:AE:61:81:4F:71:50:C9:B8:11:7F:49:8C:AB:94:DB:72:A8:33:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tq5hgU9xUMm4EX9JjKuU23KoM5w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/9de8b0-6cc5-458b-b23e-16e10d72b567/1/QVLot2B8BrW08bzwuObeOXKYP40.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/9de8b0-6cc5-458b-b23e-16e10d72b567/1/tq5hgU9xUMm4EX9JjKuU23KoM5w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.214.166.0/24
Signature Algorithm: sha256WithRSAEncryption
88:34:3d:42:42:f0:c8:a4:12:44:c4:dd:35:e4:dc:36:81:d8:
17:32:e6:c3:36:30:01:14:a6:84:70:fe:1f:02:da:c9:13:19:
f1:ee:37:d2:d0:df:4e:9d:51:21:27:2d:01:1f:92:9e:e0:c5:
d0:a8:59:7a:ba:c0:12:49:8c:6f:bd:42:0f:fd:93:9f:35:ca:
0b:19:c1:82:77:a1:8a:c5:78:22:83:7b:f9:fd:70:0e:da:06:
27:20:fa:60:a7:64:55:52:d3:97:a5:a4:01:d8:30:b0:04:02:
5f:98:0a:ed:a9:17:b5:8a:cc:8e:9a:44:e8:32:89:8b:14:90:
cb:15:41:cd:28:bb:b4:1c:9d:fd:6c:dc:3d:a1:4f:a1:b3:5b:
73:43:26:36:ec:95:7b:7a:8c:84:72:f9:4b:50:e2:e4:f8:60:
1c:7a:ec:42:b8:36:c0:fa:c8:36:86:09:c6:23:30:2a:de:ad:
2a:55:9a:9d:33:14:01:8c:d6:90:f0:c4:40:a9:d9:5a:1b:6d:
86:3d:5b:42:ed:41:71:f0:64:da:cc:77:59:79:a1:0e:55:00:
3e:42:5e:e5:57:1f:1a:9c:3a:c2:94:07:30:54:99:4d:b3:b1:
c3:8d:da:18:10:dc:46:34:62:30:42:15:c5:29:3e:43:ab:b3:
78:f7:82:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 15:03:11 2024 by rpki-client on console-ams.rpki-client.org