Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/dqzqQDlxg5WWtUXvVe6KbsEb15A.roa
File: dqzqQDlxg5WWtUXvVe6KbsEb15A.roa (raw, json)
Hash identifier: IBssdf9/mUVImIFzW+k25wjDzqXrH3DrK1E02YOD9Fs=
Subject key identifier: 76:AC:EA:40:39:71:83:95:96:B5:45:EF:55:EE:8A:6E:C1:1B:D7:90
Certificate issuer: /CN=b4253c4f233ce9847699ae68ecbf5d7514b0fadb
Certificate serial: 018596BC94791909FF2B1096148EEE547E02
Authority key identifier: B4:25:3C:4F:23:3C:E9:84:76:99:AE:68:EC:BF:5D:75:14:B0:FA:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/dqzqQDlxg5WWtUXvVe6KbsEb15A.roa
Signing time: Mon 09 Jan 2023 13:33:39 +0000
ROA not before: Mon 09 Jan 2023 13:33:39 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51395
IP address blocks: 94.247.42.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:96:bc:94:79:19:09:ff:2b:10:96:14:8e:ee:54:7e:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4253c4f233ce9847699ae68ecbf5d7514b0fadb
Validity
Not Before: Jan 9 13:33:39 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=76acea403971839596b545ef55ee8a6ec11bd790
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:2e:5f:8d:c4:d2:9b:96:5c:48:13:11:d6:8e:
f2:51:94:4b:35:e9:10:c0:11:88:99:9a:1d:a9:2f:
32:b1:e0:02:a0:35:db:83:5e:64:3a:4a:c3:44:67:
7f:60:47:40:0f:5d:8e:dc:a6:53:d0:4e:e6:c0:3b:
85:00:cb:03:c4:07:2e:8e:79:78:9b:7a:98:a6:de:
56:ff:fc:ed:68:ac:d5:78:5e:02:c4:15:34:c5:a8:
dd:ed:1b:a7:2e:76:df:ba:f5:a8:dd:9c:b3:fd:5f:
5f:ee:04:dc:90:95:f1:8f:82:b7:d8:7c:ce:83:2e:
ed:c0:59:1a:37:7a:7e:78:9c:b9:3d:c8:6d:ca:a0:
af:ab:ea:ca:f5:c3:11:74:5d:6d:24:fa:e1:18:e7:
58:6e:3a:13:19:06:a2:d8:ee:fd:45:02:f1:4f:bb:
bb:c5:41:a4:6d:e3:31:3e:53:23:1b:14:71:ef:c2:
8e:df:ad:73:96:23:a6:d5:c8:e6:2e:b2:f2:5d:15:
69:a1:29:7b:23:22:94:72:a7:a5:6d:2a:c9:0b:90:
52:89:c1:2c:bb:40:3a:e1:f5:ec:e0:0e:4e:5b:59:
63:ae:1c:af:5a:1c:ba:ba:4d:05:30:e2:6c:10:03:
cc:a3:b3:e1:fe:c9:76:6b:ec:c5:19:99:d0:59:53:
a5:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:AC:EA:40:39:71:83:95:96:B5:45:EF:55:EE:8A:6E:C1:1B:D7:90
X509v3 Authority Key Identifier:
keyid:B4:25:3C:4F:23:3C:E9:84:76:99:AE:68:EC:BF:5D:75:14:B0:FA:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/dqzqQDlxg5WWtUXvVe6KbsEb15A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/tCU8TyM86YR2ma5o7L9ddRSw-ts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.247.42.0/24
Signature Algorithm: sha256WithRSAEncryption
b4:66:9a:c6:7e:87:d2:af:f8:33:4b:4d:51:d7:f2:07:e6:35:
3d:0b:3b:df:af:99:0b:b8:ad:11:f0:44:96:44:25:af:77:b1:
7d:1a:cc:d3:d8:5e:e1:89:11:13:28:a7:81:58:c6:86:5e:05:
5f:ef:b6:cc:9a:5f:65:1c:51:85:45:5b:59:50:40:24:74:33:
e7:53:ad:7b:7b:9b:92:06:6b:13:f8:40:c8:2e:8e:e2:40:9b:
f4:d0:01:f9:fc:7e:4c:9b:62:fb:98:b9:43:ab:19:9f:74:c8:
4f:fd:da:68:9d:04:9c:80:ce:74:92:98:88:40:15:78:7b:46:
16:74:3e:8d:c7:3a:20:5e:37:85:a9:0c:19:10:31:62:7f:48:
9e:64:e4:1d:8c:90:fb:08:ff:e9:c6:98:54:64:6d:ed:3a:3c:
ab:5b:f2:cf:95:68:6a:27:19:10:08:83:bd:ae:5a:be:6b:a6:
8c:69:88:41:5e:5d:e6:f7:31:e7:ac:fa:26:1f:05:8b:e3:63:
d1:59:88:01:16:a8:b3:2b:7b:b6:05:24:25:e4:e1:63:c1:64:
cb:e6:eb:9f:18:ee:e9:58:fc:e6:be:c9:e2:cb:27:8e:f4:77:
69:7f:c6:7c:f2:83:83:b6:a5:a0:af:9f:6d:3b:f0:53:47:99:
69:d3:93:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:31 2024 by rpki-client on console-ams.rpki-client.org