Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/qkefZ3ouGEiXItSQNlRX2BerZfI.roa
File: qkefZ3ouGEiXItSQNlRX2BerZfI.roa (raw, json)
Hash identifier: 0U3SS1v+VS0SdcXn6k7659fmgAlDQsb2xicogQHGYo4=
Subject key identifier: AA:47:9F:67:7A:2E:18:48:97:22:D4:90:36:54:57:D8:17:AB:65:F2
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 0189D929BEC83061512C087EFC7FB4EC9A42
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/qkefZ3ouGEiXItSQNlRX2BerZfI.roa
Signing time: Wed 09 Aug 2023 07:18:58 +0000
ROA not before: Wed 09 Aug 2023 07:18:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212411
IP address blocks: 188.241.242.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:d9:29:be:c8:30:61:51:2c:08:7e:fc:7f:b4:ec:9a:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Aug 9 07:18:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=aa479f677a2e18489722d490365457d817ab65f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:0c:5d:72:f6:1e:b7:45:49:26:43:ad:0e:30:
6f:af:49:5b:be:6a:81:65:60:2e:36:2e:2f:85:49:
3b:21:56:5c:f7:dd:b4:57:f5:46:13:5a:3c:ae:39:
8b:f0:f8:7e:94:59:8c:03:3c:bb:62:8a:b7:92:08:
9f:fe:b2:a9:a4:cb:b5:0f:d4:37:88:c6:9b:c2:7e:
4d:f6:dd:ff:12:8e:ef:f4:8e:51:0f:da:07:63:1d:
8e:4e:02:f3:ba:a2:41:58:f0:43:fc:f4:cd:90:13:
e2:38:62:6d:7e:0b:3e:9b:09:a3:d5:61:96:3a:c6:
91:fb:7f:ab:a9:59:f5:02:f0:19:fe:48:57:8b:ac:
b8:21:58:b3:72:bd:dd:6d:34:67:6c:ed:9d:1b:40:
82:60:70:19:77:f6:a8:86:81:d8:d8:a2:c3:9a:ac:
bc:c1:40:9e:60:0c:08:a3:51:63:a5:f6:59:6f:84:
ec:b1:12:03:e5:13:68:77:a7:7b:24:8f:c7:3b:20:
10:8b:7e:db:54:46:2a:c8:1b:4d:d7:a6:f9:8b:d2:
ad:d1:17:ba:ad:93:2f:59:ad:84:25:ba:26:d4:77:
d0:6b:cd:33:32:55:5e:ab:c4:dd:7d:b1:2f:de:24:
5a:49:2e:eb:63:2f:6d:41:bf:73:08:80:0a:5b:f6:
33:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:47:9F:67:7A:2E:18:48:97:22:D4:90:36:54:57:D8:17:AB:65:F2
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/qkefZ3ouGEiXItSQNlRX2BerZfI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.241.242.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:3d:23:ef:ec:a2:71:83:06:a7:6d:53:ae:d1:1d:5b:4b:fe:
eb:82:e5:2e:9b:70:e1:c4:f2:1a:62:6c:06:fe:70:a0:10:d1:
9f:87:fd:ed:00:54:d3:dc:b0:52:3d:fb:28:7e:37:6a:03:ec:
82:c4:a0:e1:bf:64:b8:c0:11:2c:84:ee:86:4a:eb:e4:b0:d0:
d7:12:e0:24:9b:a6:2b:dd:33:a0:4d:67:36:a6:34:cb:ef:54:
fb:83:6a:84:51:a0:6a:22:bf:88:b7:2a:da:f6:8c:4a:9c:47:
fe:69:e3:b3:98:4f:e5:17:13:bf:ca:71:06:61:3d:6f:7f:34:
7a:d0:5d:6a:0e:3c:91:98:b1:4d:03:6e:88:26:3a:54:5a:44:
69:c0:85:ed:df:bd:7a:f4:e0:89:1e:48:72:99:92:41:84:5c:
5d:ac:fc:ce:a4:77:b4:1d:04:a0:f6:73:97:c4:4d:80:f5:6a:
13:a0:c8:e1:59:b7:77:b3:c7:b5:09:93:8b:f6:08:39:18:db:
3b:66:ab:e6:e8:8d:0c:01:4d:81:59:0f:f3:d3:fd:c0:e6:c9:
a3:66:22:8d:cb:ca:2a:89:f3:3c:29:78:9b:d9:fb:df:dc:58:
d2:3b:10:a9:8b:c3:1f:e0:de:3e:b3:ca:12:d4:b6:a7:60:0d:
9f:92:26:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 5 18:40:49 2023 by rpki-client on console-ams.rpki-client.org