Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/075377-e426-492f-a59c-ae4c95c94005/1/qK_DwxgH6PYqu06YnnuCSDWzpG4.roa
File: qK_DwxgH6PYqu06YnnuCSDWzpG4.roa (raw, json)
Hash identifier: 3cIylhhteWbCwKIMKkzOGomFFNe/yOcKeB9jx0ZdyMs=
Subject key identifier: A8:AF:C3:C3:18:07:E8:F6:2A:BB:4E:98:9E:7B:82:48:35:B3:A4:6E
Certificate issuer: /CN=dc1fd007dffa508f30063fbe4d53a2b2e1e8c4de
Certificate serial: 018573F181DE158043C1FC80C100BF8E8F54
Authority key identifier: DC:1F:D0:07:DF:FA:50:8F:30:06:3F:BE:4D:53:A2:B2:E1:E8:C4:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3B_QB9_6UI8wBj--TVOisuHoxN4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/075377-e426-492f-a59c-ae4c95c94005/1/qK_DwxgH6PYqu06YnnuCSDWzpG4.roa
Signing time: Mon 02 Jan 2023 19:24:45 +0000
ROA not before: Mon 02 Jan 2023 19:24:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206394
IP address blocks: 94.176.147.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:f1:81:de:15:80:43:c1:fc:80:c1:00:bf:8e:8f:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc1fd007dffa508f30063fbe4d53a2b2e1e8c4de
Validity
Not Before: Jan 2 19:24:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a8afc3c31807e8f62abb4e989e7b824835b3a46e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:02:c4:6d:9a:6d:4f:e9:02:28:8e:18:90:12:
f3:58:e4:71:e6:c3:e8:67:fe:b7:ff:f4:46:ff:ce:
26:c3:95:f5:c0:55:3e:a3:18:ee:9e:f9:37:5a:40:
22:11:d7:74:bf:6e:75:95:35:89:ff:c0:a3:93:b0:
12:7b:2f:5e:32:36:32:22:e2:05:67:5d:8f:ef:1a:
e1:89:a7:2b:37:8a:3e:48:d6:72:23:b8:94:b3:31:
cf:e0:68:d6:0d:6e:96:fd:c4:e1:94:06:89:c7:a6:
7e:8c:00:b4:b6:be:3d:07:4f:72:85:d9:a1:4c:52:
2b:ab:53:91:78:62:35:56:f1:bc:e6:82:dd:f8:3f:
14:9a:8c:5b:e8:ba:ee:fd:3e:07:7d:22:d3:7a:91:
53:cc:47:01:ac:97:b8:63:c5:9d:a5:4b:b7:d6:0e:
65:0c:ec:dc:1d:2e:c1:cd:f8:a1:9c:75:c8:8f:27:
06:a5:37:df:9e:65:af:79:7d:88:f0:15:f6:f9:9d:
56:88:dd:4e:82:40:98:dc:52:f2:05:39:d2:c1:df:
e1:13:0c:3f:74:0b:b0:ed:92:bc:0a:62:ab:fd:bf:
02:40:86:30:35:6e:1e:5a:2a:3b:a2:bf:18:b1:d6:
eb:dc:93:46:f7:93:39:a8:d1:b5:b9:66:b9:ff:5f:
d4:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:AF:C3:C3:18:07:E8:F6:2A:BB:4E:98:9E:7B:82:48:35:B3:A4:6E
X509v3 Authority Key Identifier:
keyid:DC:1F:D0:07:DF:FA:50:8F:30:06:3F:BE:4D:53:A2:B2:E1:E8:C4:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3B_QB9_6UI8wBj--TVOisuHoxN4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/075377-e426-492f-a59c-ae4c95c94005/1/qK_DwxgH6PYqu06YnnuCSDWzpG4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/075377-e426-492f-a59c-ae4c95c94005/1/3B_QB9_6UI8wBj--TVOisuHoxN4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.176.147.0/24
Signature Algorithm: sha256WithRSAEncryption
c8:e6:b7:fe:53:1b:ad:5d:e7:16:a8:98:60:64:e1:00:6b:1e:
c9:90:eb:36:1c:41:d1:f6:73:05:b1:86:e4:d3:e0:0f:95:80:
03:8b:6d:c7:a2:ea:fa:b2:f3:fa:01:03:5a:3a:e9:d4:d2:39:
c6:2e:55:33:78:71:d7:d8:56:2d:af:32:0a:21:e0:25:9f:fe:
04:aa:df:e4:c9:df:25:86:f7:d0:43:b9:0e:0e:93:94:b3:df:
a9:e2:38:be:a7:fb:7c:f6:31:b4:8d:69:9f:a6:75:89:e7:3a:
20:b0:e0:d2:8b:fc:68:27:1e:f8:06:5f:0b:0d:44:e3:24:be:
2e:0f:ac:ea:4d:ad:69:57:99:9d:3c:67:a3:a2:15:19:2e:a7:
74:2a:18:0f:61:74:99:d4:17:f8:91:ca:cb:26:4d:5a:52:1e:
be:31:f5:37:c0:13:d9:54:89:87:76:d8:ad:c2:6e:25:56:2e:
67:13:24:f9:01:59:8f:06:d8:19:67:f8:56:81:b0:d4:47:82:
6b:00:1c:41:a6:92:3a:f9:3d:5f:fd:e5:fc:7e:51:e0:a0:33:
50:a5:d1:30:9a:c1:b9:51:ec:16:4d:ee:50:92:4c:9c:f8:32:
ff:1d:d4:6f:8a:2e:b1:2e:94:49:1d:b7:b3:f2:be:51:2a:75:
fd:31:d8:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 02:54:17 2024 by rpki-client on console-ams.rpki-client.org