Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/a13b01-4153-4ea5-bf21-99868c51329a/1/QhIblmut_oqUkieiqDsudDq1b40.roa
File: QhIblmut_oqUkieiqDsudDq1b40.roa (raw, json)
Hash identifier: cCV3XcX0c8hIWE/RS7d+qnF4BYmivvaaIqje7CJtdvA=
Subject key identifier: 42:12:1B:96:6B:AD:FE:8A:94:92:27:A2:A8:3B:2E:74:3A:B5:6F:8D
Certificate issuer: /CN=aedaeea9117a1d5ccc320222955a09faa0798fd9
Certificate serial: 018987C7C9D60CC3039BA0F4A3DA495418E1
Authority key identifier: AE:DA:EE:A9:11:7A:1D:5C:CC:32:02:22:95:5A:09:FA:A0:79:8F:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rtruqRF6HVzMMgIilVoJ-qB5j9k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/a13b01-4153-4ea5-bf21-99868c51329a/1/QhIblmut_oqUkieiqDsudDq1b40.roa
Signing time: Mon 24 Jul 2023 12:02:44 +0000
ROA not before: Mon 24 Jul 2023 12:02:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 18692
IP address blocks: 95.172.72.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:87:c7:c9:d6:0c:c3:03:9b:a0:f4:a3:da:49:54:18:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aedaeea9117a1d5ccc320222955a09faa0798fd9
Validity
Not Before: Jul 24 12:02:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=42121b966badfe8a949227a2a83b2e743ab56f8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:ce:a9:a7:9a:b9:f4:15:59:13:76:85:0d:9a:
69:e6:1f:13:6f:4b:23:ce:0c:19:79:a5:e9:9f:1d:
59:22:30:4c:ee:0d:e7:bb:07:02:92:73:77:08:ac:
32:86:22:84:77:b8:45:57:3d:a3:da:75:70:f0:1c:
23:4c:37:a0:47:2e:a6:ff:c4:6b:5c:85:41:33:54:
68:91:2b:a8:c2:e3:8b:72:84:0e:9c:7f:45:25:33:
5a:98:fd:72:0e:ea:93:18:f4:03:bf:ff:ed:1c:ec:
e7:d3:3f:13:ee:c3:ce:c6:c0:cd:11:2b:94:61:a4:
5a:15:64:72:48:dc:4c:5e:27:fe:7b:e1:fa:07:32:
79:b7:bf:ec:0b:08:46:14:3f:c4:b2:95:59:13:fd:
ff:a0:67:3a:d8:88:15:d4:47:2c:bb:58:a2:34:d5:
be:2f:7c:a8:de:23:e9:c1:81:26:dd:00:af:80:26:
c3:ce:5d:6f:b4:bd:39:cb:b5:18:0b:00:b9:6c:4c:
d6:40:02:2f:3a:ff:fa:d8:6a:6c:ce:8b:cb:4e:db:
a8:04:79:a9:f5:5b:c1:a5:b1:68:10:93:55:40:ad:
b9:23:7c:6b:f6:28:ac:75:5b:f9:6a:f4:ff:fd:ec:
fc:28:81:7f:0c:fc:9d:f0:76:57:4b:44:1d:25:d8:
ed:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:12:1B:96:6B:AD:FE:8A:94:92:27:A2:A8:3B:2E:74:3A:B5:6F:8D
X509v3 Authority Key Identifier:
keyid:AE:DA:EE:A9:11:7A:1D:5C:CC:32:02:22:95:5A:09:FA:A0:79:8F:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rtruqRF6HVzMMgIilVoJ-qB5j9k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/a13b01-4153-4ea5-bf21-99868c51329a/1/QhIblmut_oqUkieiqDsudDq1b40.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/a13b01-4153-4ea5-bf21-99868c51329a/1/rtruqRF6HVzMMgIilVoJ-qB5j9k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.172.72.0/24
Signature Algorithm: sha256WithRSAEncryption
05:db:a7:d1:bd:0f:c7:95:ea:98:36:ce:90:c5:60:8a:a7:03:
9a:75:5d:c6:90:49:73:a8:a9:12:b1:f2:d0:29:c0:dd:28:99:
ce:16:bf:c1:40:41:c9:47:e2:f1:eb:04:e5:a8:68:c5:28:65:
20:6c:28:cd:ea:c0:1f:9c:84:52:92:b6:80:d1:4c:e6:a0:0c:
22:1c:f4:b4:71:e7:53:e0:b8:78:9e:52:d7:b7:44:89:68:c4:
9f:78:2f:00:8d:b1:e0:30:22:76:96:22:aa:44:18:65:c1:cb:
6b:12:8f:63:e3:60:2c:3e:6d:98:3f:0c:0c:3d:1d:9f:bd:4f:
91:dc:ae:33:17:f4:da:ea:75:5d:02:56:ba:2a:05:90:dc:65:
ac:ae:3c:7e:00:16:1c:7f:fd:29:a5:b5:bf:9b:ee:7d:ad:33:
1b:ea:30:28:c2:c7:db:12:9a:5e:33:40:a4:20:db:8a:00:9e:
9d:b5:04:f5:e4:04:50:93:9b:cc:51:23:a5:85:a3:0c:ec:32:
31:f9:3f:af:8a:51:11:69:1a:d7:98:f0:60:bb:37:62:7b:07:
47:62:5e:c5:0f:24:c6:83:54:e4:7f:46:0e:78:cf:73:7a:b5:
76:08:d1:f6:12:62:1e:40:ed:cc:d5:d9:2a:66:32:39:8e:6d:
e6:a9:52:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:58 2024 by rpki-client on console-fra.rpki-client.org