Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/QM8oCDZj3f6DKLDgO9E82SoRr8A.roa
File: QM8oCDZj3f6DKLDgO9E82SoRr8A.roa (raw, json)
Hash identifier: zFRT29f5vcwGiLjNwmipCRzwLt7I8oR+exrvYelOLD4=
Subject key identifier: 40:CF:28:08:36:63:DD:FE:83:28:B0:E0:3B:D1:3C:D9:2A:11:AF:C0
Certificate issuer: /CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Certificate serial: 01928C0A3412AA92A28470FA7C77C9A33FD3
Authority key identifier: D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/QM8oCDZj3f6DKLDgO9E82SoRr8A.roa
Signing time: Mon 14 Oct 2024 17:18:51 +0000
ROA not before: Mon 14 Oct 2024 17:18:51 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215287
IP address blocks: 46.37.122.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 14 Nov 2024 07:44:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:8c:0a:34:12:aa:92:a2:84:70:fa:7c:77:c9:a3:3f:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Validity
Not Before: Oct 14 17:18:51 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=40cf28083663ddfe8328b0e03bd13cd92a11afc0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:09:63:1b:64:84:ce:5f:9c:55:f7:c0:31:bd:
0d:01:46:47:d5:4d:4a:da:da:25:c4:96:56:d4:d7:
2d:fc:ba:e2:1b:ad:5e:e0:bf:29:30:10:b8:ce:48:
49:a3:30:12:68:ee:cf:9c:2d:88:47:34:a1:94:a7:
b9:6d:6e:8d:ed:42:85:02:c9:5c:e6:aa:c2:97:e5:
85:40:3a:f7:79:07:be:de:17:b7:74:1a:67:5b:ec:
d6:05:08:2d:33:9c:68:fd:a6:c8:96:ab:ae:ee:f8:
ac:59:2a:4d:01:67:12:72:2c:d7:09:bd:b6:a3:a6:
d5:4d:c7:d3:3c:78:fc:69:28:60:eb:68:a1:1c:36:
6a:45:12:c0:7b:8a:36:1e:9c:e2:77:d8:e6:22:4a:
26:08:09:a2:9a:4f:3b:b4:32:f5:f6:70:e5:df:8f:
df:61:bf:c6:c3:0b:ed:bd:82:33:a8:df:6a:f9:da:
23:4c:22:6e:1d:f0:8e:88:ed:2b:ff:06:fd:3f:6a:
90:44:14:b0:5e:25:4a:f0:3f:a1:77:1f:e3:f3:98:
f8:fd:e3:87:5c:62:34:91:08:02:01:b6:53:ce:8f:
f4:ca:63:f3:d6:21:e3:4a:d9:cc:29:32:63:4c:98:
1a:7e:8a:1b:f2:ca:ed:ab:d5:44:8e:4f:a4:04:1a:
82:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:CF:28:08:36:63:DD:FE:83:28:B0:E0:3B:D1:3C:D9:2A:11:AF:C0
X509v3 Authority Key Identifier:
keyid:D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/QM8oCDZj3f6DKLDgO9E82SoRr8A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/088IhJGKUCOe9wUY7p_ATxquGSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.37.122.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:40:a7:a9:4d:cd:7f:5b:b8:e9:dc:24:71:96:8d:0b:37:88:
8b:be:9a:c5:f2:cc:d3:94:58:66:d9:75:8b:f8:fc:d2:2a:88:
f8:13:3b:3e:0c:4d:59:84:ef:b6:a4:ef:e5:49:e7:fc:11:71:
fa:ca:8a:9d:a5:c2:ba:fe:96:80:8c:2d:e1:b9:87:59:d4:cf:
47:c4:2f:68:ec:d5:11:22:8c:11:78:f6:75:db:21:ed:41:9c:
fb:2d:a7:d9:ab:1d:0f:b4:33:55:c1:64:b4:db:e9:43:a0:5d:
6e:e4:41:7a:74:99:7d:bc:36:ed:a2:8a:91:25:31:4e:0a:8e:
55:e8:18:45:db:af:87:d9:76:69:98:43:77:54:92:03:8a:19:
4c:5a:8c:10:db:23:12:4e:2b:ef:19:45:f0:a6:96:9c:83:f7:
ee:87:d6:c5:dd:02:80:2b:99:b1:83:db:76:0d:0e:6a:73:08:
50:92:7c:89:1a:40:0b:27:53:ef:f8:79:e3:46:16:11:ca:c9:
a9:04:3b:01:7f:67:1f:e8:b7:44:57:4d:bf:38:4f:18:1a:b1:
6b:89:ba:7c:73:85:f7:a0:5e:f1:23:9e:2d:09:0a:6f:d5:b2:
ba:8c:da:db:ed:e1:be:22:e4:fa:c8:44:a2:79:20:7e:c6:aa:
be:73:18:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 14 08:25:35 2024 by rpki-client on console-fra.rpki-client.org