Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/3822e5-07a4-4a38-ae68-b6c04330ccd1/1/QlA9-R8e2-JOlT-V1Rvvj8e6iy4.roa
File: QlA9-R8e2-JOlT-V1Rvvj8e6iy4.roa (raw, json)
Hash identifier: eZ3sDRDY4V1mFsgp3gTHzxK9dUhys0T8mUklrZELEOg=
Subject key identifier: 42:50:3D:F9:1F:1E:DB:E2:4E:95:3F:95:D5:1B:EF:8F:C7:BA:8B:2E
Certificate issuer: /CN=00ca712bb4911b7674c7af047ddd86aa2063ce00
Certificate serial: 0187364A574E1531F6FD264D99A833DC767C
Authority key identifier: 00:CA:71:2B:B4:91:1B:76:74:C7:AF:04:7D:DD:86:AA:20:63:CE:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AMpxK7SRG3Z0x68Efd2GqiBjzgA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/3822e5-07a4-4a38-ae68-b6c04330ccd1/1/QlA9-R8e2-JOlT-V1Rvvj8e6iy4.roa
Signing time: Fri 31 Mar 2023 06:10:54 +0000
ROA not before: Fri 31 Mar 2023 06:10:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200482
IP address blocks: 194.104.135.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:36:4a:57:4e:15:31:f6:fd:26:4d:99:a8:33:dc:76:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00ca712bb4911b7674c7af047ddd86aa2063ce00
Validity
Not Before: Mar 31 06:10:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=42503df91f1edbe24e953f95d51bef8fc7ba8b2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:b1:0f:c5:2e:9e:bc:d9:09:b6:01:2b:c1:f8:
d9:dc:6f:1c:de:8f:90:e3:c0:6a:42:f0:9a:0f:f7:
57:7c:ff:5d:db:25:0a:12:be:e1:4d:ab:1f:a6:1c:
f6:09:63:16:69:ad:32:cd:40:6a:0c:7e:06:60:42:
d1:a4:ca:94:18:38:07:78:d4:32:e9:2a:5b:cf:5a:
cb:b9:c8:6f:d7:67:31:d4:b4:ec:93:7e:cb:8c:ac:
73:92:e2:85:5a:94:57:d3:bc:64:64:87:37:f3:86:
28:04:92:7a:6d:3e:27:89:93:4e:0f:75:33:36:50:
09:68:3d:d9:1b:ef:df:22:b4:74:ae:7b:84:e0:3f:
94:8a:7c:95:8f:24:bb:e2:9b:4c:16:45:aa:ae:94:
8d:94:91:22:0e:4a:0f:a2:7b:1f:14:37:8b:dd:d8:
24:f8:fb:cc:af:7e:ea:48:54:4a:19:c7:0f:f4:db:
59:2d:c0:64:63:6b:6e:82:9a:d7:d3:4c:22:65:ec:
b5:24:0a:27:f7:5f:6b:9e:ec:2c:82:6d:ff:69:43:
d8:a0:2d:ad:8b:fb:29:0e:36:f8:cc:15:82:3b:00:
d5:c3:57:2d:6b:a4:67:8e:c3:b0:47:c8:12:a5:47:
76:0f:8f:d5:78:d3:3f:34:c6:bb:ec:23:b3:ef:bb:
5c:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:50:3D:F9:1F:1E:DB:E2:4E:95:3F:95:D5:1B:EF:8F:C7:BA:8B:2E
X509v3 Authority Key Identifier:
keyid:00:CA:71:2B:B4:91:1B:76:74:C7:AF:04:7D:DD:86:AA:20:63:CE:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AMpxK7SRG3Z0x68Efd2GqiBjzgA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/3822e5-07a4-4a38-ae68-b6c04330ccd1/1/QlA9-R8e2-JOlT-V1Rvvj8e6iy4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/3822e5-07a4-4a38-ae68-b6c04330ccd1/1/AMpxK7SRG3Z0x68Efd2GqiBjzgA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.104.135.0/24
Signature Algorithm: sha256WithRSAEncryption
76:bd:46:ca:4f:3b:63:4b:c4:c5:17:4e:b4:06:65:53:3a:26:
bd:36:a9:be:ae:99:c4:57:44:04:1a:69:41:46:58:70:a2:0d:
4a:16:77:0e:52:fc:6c:54:d1:8c:cd:0a:d1:f1:39:f0:39:e9:
62:0f:c5:d6:e7:1f:b6:1d:09:d6:b9:04:e4:d3:57:99:6b:64:
41:e4:51:f8:1e:bf:41:2b:7f:05:2b:0f:67:1b:08:96:d0:06:
46:9d:0c:20:97:4a:23:b7:b6:9b:65:b9:76:93:1d:ce:c6:c7:
f7:5d:5d:0c:75:bd:af:c6:80:aa:55:3f:7f:28:5d:a8:2c:68:
05:0a:91:58:af:21:65:55:54:30:f2:9f:db:14:4c:61:79:ba:
43:19:51:bb:7b:75:b4:47:f2:43:44:0a:4b:5f:01:6d:ed:fe:
ca:80:91:48:85:ee:94:35:31:cf:fb:f3:4e:83:73:c2:60:d8:
2d:47:86:87:b7:3a:f7:71:66:9e:5e:8f:af:c6:6b:93:b3:73:
8c:9a:68:a2:35:38:e0:71:94:ff:6d:56:23:19:5f:b7:f2:1e:
0f:88:45:18:f1:e3:ea:90:ea:d4:91:12:1e:6d:a3:e7:f9:fe:
f1:3a:a8:c1:9b:96:8c:7d:e3:37:d1:97:04:ac:fb:ce:fb:5c:
68:c7:fc:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:38 2023 by rpki-client on console-fra.rpki-client.org