Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/76a216-cae7-4886-8e77-c813ce0f5e47/1/QZ75UNOQuKxjg-uqfOy-T05lIbY.roa
File: QZ75UNOQuKxjg-uqfOy-T05lIbY.roa (raw, json)
Hash identifier: 2yjCdq9hF3t/9tNXVZeA35MQBDfByWUL0pUzyBohwIM=
Subject key identifier: 41:9E:F9:50:D3:90:B8:AC:63:83:EB:AA:7C:EC:BE:4F:4E:65:21:B6
Certificate issuer: /CN=d897faea94815e0520b46f185c3ebec29b376ef0
Certificate serial: 01856C9CD6EBE3B51AEEEB3B9A48BFB44651
Authority key identifier: D8:97:FA:EA:94:81:5E:05:20:B4:6F:18:5C:3E:BE:C2:9B:37:6E:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2Jf66pSBXgUgtG8YXD6-wps3bvA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/76a216-cae7-4886-8e77-c813ce0f5e47/1/QZ75UNOQuKxjg-uqfOy-T05lIbY.roa
Signing time: Sun 01 Jan 2023 09:14:55 +0000
ROA not before: Sun 01 Jan 2023 09:14:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 95.130.184.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:9c:d6:eb:e3:b5:1a:ee:eb:3b:9a:48:bf:b4:46:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d897faea94815e0520b46f185c3ebec29b376ef0
Validity
Not Before: Jan 1 09:14:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=419ef950d390b8ac6383ebaa7cecbe4f4e6521b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:ec:5e:be:c6:ff:55:d2:16:73:93:2d:4a:23:
bd:17:d9:d7:83:7c:c7:39:26:c5:16:4d:49:00:e3:
52:a2:49:98:42:38:1d:d8:c4:c4:a2:66:61:24:3d:
b8:f8:b7:27:2c:1e:cb:2f:2b:4e:01:3e:89:a3:82:
d1:6e:32:c1:16:62:b7:b3:40:21:66:28:1f:e8:5c:
74:33:d3:bf:84:2e:35:76:b7:00:eb:3a:09:b5:20:
5d:f7:7e:27:bc:8d:0d:9f:64:9c:4e:62:0b:a6:f4:
c2:52:19:ee:ca:fb:0c:a1:97:b1:27:01:a8:19:6a:
2e:94:65:f4:9b:5b:d6:97:a4:e3:6e:7c:d8:2a:2d:
c5:54:af:40:31:98:f3:20:7e:14:01:15:f3:bf:e6:
7c:ca:ea:a3:ce:74:a5:15:7c:da:ed:d1:2f:64:f0:
8f:e7:de:35:dd:50:36:57:55:3f:c4:d6:40:36:7b:
a2:56:94:99:41:54:00:84:0b:46:b6:a3:09:ff:71:
0a:52:82:36:f7:a0:02:31:d0:8c:8f:29:cb:ad:03:
2a:f1:9d:87:66:03:bf:f7:97:4c:20:60:1e:66:01:
71:bb:85:c6:28:5b:b3:72:d6:72:48:ac:80:a3:4f:
84:ee:fc:0b:1c:f3:66:7a:34:7b:b9:0c:75:88:ef:
c9:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:9E:F9:50:D3:90:B8:AC:63:83:EB:AA:7C:EC:BE:4F:4E:65:21:B6
X509v3 Authority Key Identifier:
keyid:D8:97:FA:EA:94:81:5E:05:20:B4:6F:18:5C:3E:BE:C2:9B:37:6E:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2Jf66pSBXgUgtG8YXD6-wps3bvA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/76a216-cae7-4886-8e77-c813ce0f5e47/1/QZ75UNOQuKxjg-uqfOy-T05lIbY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/76a216-cae7-4886-8e77-c813ce0f5e47/1/2Jf66pSBXgUgtG8YXD6-wps3bvA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.130.184.0/23
Signature Algorithm: sha256WithRSAEncryption
52:bc:bd:c9:3c:c7:c7:06:cd:0d:9b:ca:5d:fe:87:9f:12:6a:
d4:2c:f7:c8:67:55:4a:ea:07:92:af:7f:c3:19:76:6e:fc:97:
ea:fb:2a:e1:30:d2:32:5c:d5:32:4c:9c:a2:23:99:23:5f:05:
f5:7d:e1:02:be:e4:d0:a7:c3:b0:21:c6:e5:8b:45:25:88:43:
0e:36:0b:eb:82:c7:20:7d:ad:2b:f7:93:62:8b:f6:50:cf:97:
11:31:dd:eb:aa:46:0f:0b:de:13:f6:ce:bf:5b:af:ce:81:d5:
47:da:5a:05:00:34:a2:39:40:b5:59:59:07:06:e6:0c:ee:0e:
91:bb:3e:e1:64:cf:bf:d8:5e:c3:b3:aa:ff:f6:a1:6d:45:6b:
cf:16:7d:95:8b:fa:9c:ea:17:fe:2d:74:a0:f9:aa:48:83:11:
97:3d:c9:d3:1b:bf:9b:17:93:34:14:ce:ca:4b:bc:61:ef:2b:
2d:9a:3b:09:ab:66:4b:c4:c1:b8:08:9b:ba:3b:d0:be:b2:01:
b7:d7:74:5a:77:4c:3f:82:2d:3c:03:cf:27:84:56:2a:a7:1c:
cd:59:d7:4c:0f:f8:2c:85:d1:b4:6c:0a:5d:d6:46:61:62:96:
af:9c:f0:fd:99:bb:64:ba:5d:1e:8f:d4:90:e7:38:ea:5e:95:
56:0b:a4:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 23:38:20 2024 by rpki-client on console-fra.rpki-client.org