Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/QS3e-VM9iHZ2kCuZdTztOdfxWlQ.roa
File: QS3e-VM9iHZ2kCuZdTztOdfxWlQ.roa (raw, json)
Hash identifier: Lrw/IBQfXEz6IRCmu99QQRVTJa9dUglS2of0AsAM3TY=
Subject key identifier: 41:2D:DE:F9:53:3D:88:76:76:90:2B:99:75:3C:ED:39:D7:F1:5A:54
Certificate issuer: /CN=00775d9471b85d963fef6d283590e2d942dd5c21
Certificate serial: 01856F5DB8E4B88BD2BC47C2F88AA9B604CA
Authority key identifier: 00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/QS3e-VM9iHZ2kCuZdTztOdfxWlQ.roa
Signing time: Sun 01 Jan 2023 22:04:51 +0000
ROA not before: Sun 01 Jan 2023 22:04:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56466
IP address blocks: 87.107.141.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:5d:b8:e4:b8:8b:d2:bc:47:c2:f8:8a:a9:b6:04:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00775d9471b85d963fef6d283590e2d942dd5c21
Validity
Not Before: Jan 1 22:04:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=412ddef9533d887676902b99753ced39d7f15a54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:c2:d4:02:0e:18:7d:3d:c5:f0:98:e7:ae:bd:
08:75:e5:8c:1a:07:e3:8a:95:3a:9f:9f:fa:c6:10:
e0:c4:b0:73:b9:8c:05:f5:b7:d5:97:26:f7:b8:67:
08:6d:ed:f2:7c:a1:1e:7f:99:8a:1a:b0:9d:bf:df:
ae:4c:4b:e5:dd:14:7f:77:6b:ed:ae:bd:de:29:ac:
46:14:cc:9c:d0:dd:3a:f7:ed:5c:c1:4f:c9:d4:0a:
ee:64:a3:1a:52:e8:8a:f0:28:52:1e:66:e1:aa:95:
18:c8:91:4b:63:c2:6f:d8:c9:99:4d:8c:96:4b:e2:
bb:7f:df:da:5f:a3:fc:bf:a5:83:e3:0f:e9:32:71:
c2:b1:9b:a3:d7:c3:3a:69:cd:19:12:57:74:e1:bb:
e3:53:df:5c:6e:f4:d8:ad:a5:a4:b8:62:34:c6:39:
05:c2:b0:ef:49:35:a7:aa:da:be:72:48:c7:6e:f0:
81:31:f2:ea:5d:bc:e2:87:fc:8b:e4:56:93:a6:57:
1d:1f:14:c5:0a:67:f6:3c:9e:f8:71:d1:dd:77:a3:
e6:27:73:64:db:33:c3:89:ab:78:f0:b1:ae:4d:3c:
a6:23:25:46:82:72:3d:7a:a1:73:57:2e:54:f1:f3:
b5:dc:8f:a3:73:12:8e:11:66:ab:96:44:aa:8e:30:
d3:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:2D:DE:F9:53:3D:88:76:76:90:2B:99:75:3C:ED:39:D7:F1:5A:54
X509v3 Authority Key Identifier:
keyid:00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/QS3e-VM9iHZ2kCuZdTztOdfxWlQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.107.141.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:d8:8f:1b:3b:41:77:42:2f:a7:5d:79:5f:2d:e4:47:8a:4f:
b2:0b:d9:13:90:a6:44:25:54:1b:67:56:c0:29:26:69:be:db:
e8:c1:ea:94:89:a0:3a:0b:f0:e5:09:bf:12:53:0a:20:0d:d4:
84:4b:ae:f2:f3:0a:d8:ab:b7:4d:12:f9:8f:b1:59:46:81:06:
f5:19:b8:3c:de:49:cb:60:fd:63:2d:57:85:be:94:8a:fe:4e:
0c:92:00:b5:a0:5f:9b:28:22:46:a8:32:f8:03:31:ec:13:d2:
44:2d:46:b3:3a:10:62:9c:0c:8c:98:15:c2:33:59:5f:48:72:
76:99:b6:d8:a2:67:58:18:23:6d:8a:16:cb:46:07:77:6c:c2:
c1:77:0d:d5:b9:63:1f:08:80:8d:22:9d:64:66:44:d0:45:6c:
6a:b8:aa:1d:65:23:28:93:64:d2:11:28:0e:15:3b:42:7a:b0:
d6:5b:d9:7d:a8:db:e1:97:11:6f:37:5e:3b:1b:33:2f:be:75:
2c:ef:b6:94:f3:87:74:49:69:9f:8f:72:e7:f8:21:8b:20:bc:
9f:1f:27:ae:28:9f:23:6c:de:36:4a:21:ff:79:0a:8e:10:52:
26:97:96:f1:c5:29:44:83:d6:f9:16:82:b7:a0:a0:a7:b2:59:
35:d9:36:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 17:35:35 2024 by rpki-client on console-fra.rpki-client.org