Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/fdffe3-010f-4c6a-bd96-718b8c7c9335/1/Q3l8wcYwDL925U5Tj5PrWzGSzQo.roa
File: Q3l8wcYwDL925U5Tj5PrWzGSzQo.roa (raw, json)
Hash identifier: Nvk49pqqicoLl8kS/a4vfiu/TMRkBTQUxlJ9etkukRY=
Subject key identifier: 43:79:7C:C1:C6:30:0C:BF:76:E5:4E:53:8F:93:EB:5B:31:92:CD:0A
Certificate issuer: /CN=56ad9b2c227b413c505813294faadb6dbbc2dd66
Certificate serial: 01856D6F6D066B0F788A0B952DC7AD8F415E
Authority key identifier: 56:AD:9B:2C:22:7B:41:3C:50:58:13:29:4F:AA:DB:6D:BB:C2:DD:66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Vq2bLCJ7QTxQWBMpT6rbbbvC3WY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/fdffe3-010f-4c6a-bd96-718b8c7c9335/1/Q3l8wcYwDL925U5Tj5PrWzGSzQo.roa
Signing time: Sun 01 Jan 2023 13:04:56 +0000
ROA not before: Sun 01 Jan 2023 13:04:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 194.176.117.0/24 maxlen: 24
2a13:14c0::/32 maxlen: 48
2a13:14c1::/32 maxlen: 48
Validation: Failed, certificate revoked on Mon 23 Oct 2023 13:23:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:6f:6d:06:6b:0f:78:8a:0b:95:2d:c7:ad:8f:41:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=56ad9b2c227b413c505813294faadb6dbbc2dd66
Validity
Not Before: Jan 1 13:04:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=43797cc1c6300cbf76e54e538f93eb5b3192cd0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:ec:99:e4:f7:74:bc:8c:59:ea:32:8d:93:3f:
7d:f7:2e:1b:2b:94:79:e0:f3:c2:26:69:90:63:4a:
b8:ee:f4:ac:15:c3:c0:60:4d:0b:5a:7e:7a:63:7c:
d8:74:36:5f:d3:9c:7c:d2:4e:26:11:4b:26:8e:4e:
6a:7c:34:a9:9c:57:2b:1e:c3:51:39:67:24:87:69:
ae:92:f7:d7:e8:a1:21:3e:40:e8:a7:f3:2e:47:5c:
c8:8f:80:4b:2d:83:f6:b0:c9:00:b9:59:cc:e1:33:
1c:69:2a:8c:aa:21:62:1d:88:0e:a1:39:c4:aa:dd:
aa:9a:6d:b0:33:9d:7d:7b:b5:f4:67:2a:50:d3:ca:
b9:9e:fd:58:56:c6:5c:57:72:93:a1:bd:58:15:70:
f7:18:3d:8a:ed:d3:a8:56:6c:d0:e8:f2:c8:1d:58:
77:3b:cf:37:6b:65:96:17:0b:96:1b:b8:8e:06:f9:
88:1a:91:48:5c:1d:5d:46:92:0e:f6:79:58:fd:c0:
c8:f6:a4:99:78:8e:2f:4a:81:07:44:a7:01:f9:df:
7e:8c:c3:cd:e7:02:c8:af:c1:2e:fd:82:51:01:29:
d5:03:2d:18:c3:03:10:ee:84:72:22:80:15:60:bf:
17:9d:74:a5:d3:bc:1d:ec:3a:ee:98:b3:70:09:a6:
51:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:79:7C:C1:C6:30:0C:BF:76:E5:4E:53:8F:93:EB:5B:31:92:CD:0A
X509v3 Authority Key Identifier:
keyid:56:AD:9B:2C:22:7B:41:3C:50:58:13:29:4F:AA:DB:6D:BB:C2:DD:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vq2bLCJ7QTxQWBMpT6rbbbvC3WY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/fdffe3-010f-4c6a-bd96-718b8c7c9335/1/Q3l8wcYwDL925U5Tj5PrWzGSzQo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/fdffe3-010f-4c6a-bd96-718b8c7c9335/1/Vq2bLCJ7QTxQWBMpT6rbbbvC3WY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.176.117.0/24
IPv6:
2a13:14c0::/31
Signature Algorithm: sha256WithRSAEncryption
10:f7:10:f0:8e:a1:a3:79:4a:ea:e9:18:b0:f8:1b:f6:b1:8c:
54:6d:37:87:a3:19:12:f5:07:2f:88:67:93:55:9c:0f:25:39:
73:6b:d3:61:ce:6a:14:ba:6e:8b:84:2a:32:cf:34:c5:f5:e3:
c3:65:73:5c:5d:3f:47:15:80:4d:3a:93:f3:aa:32:3d:93:7e:
77:ff:a0:39:9c:f3:21:e5:ae:9c:6c:73:8e:77:ff:f7:90:09:
c9:e8:2d:23:60:6f:0d:b8:22:09:53:c5:09:be:34:85:79:88:
11:a9:a6:4c:20:62:13:08:28:66:d5:3f:68:2a:ae:24:17:6e:
e5:ec:a3:b6:75:d4:2b:32:cb:c7:2a:8c:e0:18:a5:d3:88:c9:
68:be:c2:2f:46:03:b6:c7:f6:02:59:7b:51:ae:3c:ed:db:4e:
2f:22:f7:4c:a1:73:80:8d:bb:c6:c9:07:4f:41:9d:66:2c:61:
51:4a:63:be:e4:b2:80:d9:67:40:31:e9:4a:c5:2b:fe:ae:33:
9f:50:88:bb:6d:fd:97:f7:53:c2:37:40:7f:6c:e9:9d:68:d1:
53:aa:c5:60:7e:12:e0:1d:c1:f1:80:27:80:dd:02:02:47:e6:
d3:e7:cf:7e:73:90:ce:44:df:c0:77:31:c5:2f:0f:2d:c4:cc:
83:20:26:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:00 2024 by rpki-client on console-fra.rpki-client.org