Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/363586-9b80-457b-bdf0-6ca52e029cbe/1/QJZVmuTOlApeYHpEi_I-9wJM6IQ.roa
File: QJZVmuTOlApeYHpEi_I-9wJM6IQ.roa (raw, json)
Hash identifier: rLF5n/T0yhw35ix+51VE6PfvJ8KNYVhAMf5g2hJK1NY=
Subject key identifier: 40:96:55:9A:E4:CE:94:0A:5E:60:7A:44:8B:F2:3E:F7:02:4C:E8:84
Certificate issuer: /CN=776405e0283743cf52180d5b13812dfba3ded7fc
Certificate serial: 01856F949F168D3BC34C4ABFF1BAB220A3A0
Authority key identifier: 77:64:05:E0:28:37:43:CF:52:18:0D:5B:13:81:2D:FB:A3:DE:D7:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d2QF4Cg3Q89SGA1bE4Et-6Pe1_w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/363586-9b80-457b-bdf0-6ca52e029cbe/1/QJZVmuTOlApeYHpEi_I-9wJM6IQ.roa
Signing time: Sun 01 Jan 2023 23:04:48 +0000
ROA not before: Sun 01 Jan 2023 23:04:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57127
IP address blocks: 146.247.24.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:94:9f:16:8d:3b:c3:4c:4a:bf:f1:ba:b2:20:a3:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=776405e0283743cf52180d5b13812dfba3ded7fc
Validity
Not Before: Jan 1 23:04:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4096559ae4ce940a5e607a448bf23ef7024ce884
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:51:31:7e:0d:53:da:b2:15:17:40:2e:00:87:
a3:66:ed:3f:b6:0f:18:f7:c2:06:54:62:fa:6a:67:
ff:ab:55:d2:e3:ba:df:e8:33:c1:9d:c0:a1:4e:88:
6e:d4:37:cc:00:c1:f2:2d:20:73:a2:56:e1:23:ae:
9a:24:5a:a9:9b:27:f9:d3:3d:a5:83:e2:52:25:38:
4d:d1:d7:c1:65:e1:e7:dd:08:02:fd:be:d4:3d:8e:
4a:db:45:43:1a:6f:95:23:f3:27:d6:f3:b1:16:24:
3d:da:cc:97:3b:d2:b5:d3:25:39:45:ad:8c:30:91:
d2:67:f3:c6:82:55:27:f5:69:3d:8c:93:f6:b3:d4:
9f:4f:e4:f4:f3:ed:26:43:6b:e0:25:cf:08:2f:10:
f4:90:67:aa:96:01:b5:ea:48:21:c8:f8:9c:be:7e:
59:31:67:f4:ba:e4:89:98:a7:c6:cc:bc:0b:66:eb:
e1:48:9e:2a:9a:4c:83:d9:d4:17:bb:fb:1d:b0:f0:
b1:02:01:44:64:64:fb:17:c4:52:aa:b1:63:90:df:
58:f1:92:00:58:d4:ad:68:c4:ac:6a:f1:ae:d2:03:
c1:9e:03:51:12:1b:56:ae:1a:cf:ab:0a:9b:6d:a1:
61:49:7e:c1:81:5c:22:a1:04:8f:a5:5f:90:90:f9:
25:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:96:55:9A:E4:CE:94:0A:5E:60:7A:44:8B:F2:3E:F7:02:4C:E8:84
X509v3 Authority Key Identifier:
keyid:77:64:05:E0:28:37:43:CF:52:18:0D:5B:13:81:2D:FB:A3:DE:D7:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2QF4Cg3Q89SGA1bE4Et-6Pe1_w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/363586-9b80-457b-bdf0-6ca52e029cbe/1/QJZVmuTOlApeYHpEi_I-9wJM6IQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/363586-9b80-457b-bdf0-6ca52e029cbe/1/d2QF4Cg3Q89SGA1bE4Et-6Pe1_w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.247.24.0/22
Signature Algorithm: sha256WithRSAEncryption
77:c3:9d:08:82:b2:5c:f2:d5:c7:c1:56:7d:64:e7:a0:f1:a1:
33:fb:e9:ad:4c:aa:f8:78:e8:58:30:6b:d2:17:e9:2c:7c:76:
45:0f:3d:ad:71:66:96:28:cf:5a:fc:43:a6:7a:51:c3:e7:0e:
fc:f5:61:48:bc:52:78:67:3d:ed:05:7d:f4:8e:38:c3:8c:39:
d6:94:87:d2:fc:b2:d4:59:08:86:fb:d1:8c:a0:2c:8c:cb:3e:
24:d8:7b:92:c7:2c:d2:d2:b1:8a:41:00:d9:42:7e:a9:73:26:
63:e0:23:3c:5e:c4:ee:e3:c7:3a:de:0c:27:e7:a1:24:41:7f:
52:2f:2d:1d:65:2b:0b:b4:cb:5d:a7:25:94:7a:5e:8b:04:c9:
f5:e9:bc:f0:e7:85:51:36:f3:6d:87:75:bd:56:7d:1a:7b:50:
5a:5f:b1:a6:6e:fa:5a:97:90:80:94:10:7e:4a:54:25:a4:5d:
c6:f4:56:a4:3e:35:64:e7:be:9d:88:23:90:0c:7b:fc:cf:1f:
2c:c9:0f:5c:8c:63:72:a7:68:bf:a0:71:e3:cd:5b:37:ab:1f:
b0:0d:a1:99:5a:90:77:54:2c:5e:30:26:e5:8d:88:83:43:40:
c7:20:f4:91:ff:cb:bb:f3:8a:ae:8f:fe:cc:ef:6b:ec:82:70:
43:1f:55:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 06:31:39 2024 by rpki-client on console-fra.rpki-client.org