Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/dfd605-10da-46a2-9677-41401008a70c/1/QK9jgkw-qBj_OXU5gqG4jI5OT_M.roa
File: QK9jgkw-qBj_OXU5gqG4jI5OT_M.roa (raw, json)
Hash identifier: ZMBaFkNYP5IuGUK6nb3zeu6RmUARNt3GcptWEwgYCyQ=
Subject key identifier: 40:AF:63:82:4C:3E:A8:18:FF:39:75:39:82:A1:B8:8C:8E:4E:4F:F3
Certificate issuer: /CN=9daa9f14f97d4dad8c004c253a5e1ce7c7dd7c4b
Certificate serial: 01857C2DEC12DB185924672AEF5DA5E3405A
Authority key identifier: 9D:AA:9F:14:F9:7D:4D:AD:8C:00:4C:25:3A:5E:1C:E7:C7:DD:7C:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/naqfFPl9Ta2MAEwlOl4c58fdfEs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/dfd605-10da-46a2-9677-41401008a70c/1/QK9jgkw-qBj_OXU5gqG4jI5OT_M.roa
Signing time: Wed 04 Jan 2023 09:47:42 +0000
ROA not before: Wed 04 Jan 2023 09:47:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20473
IP address blocks: 176.118.162.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:7c:2d:ec:12:db:18:59:24:67:2a:ef:5d:a5:e3:40:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9daa9f14f97d4dad8c004c253a5e1ce7c7dd7c4b
Validity
Not Before: Jan 4 09:47:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=40af63824c3ea818ff39753982a1b88c8e4e4ff3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:f4:36:37:43:58:ab:b0:a5:ee:c9:13:f5:86:
d5:8f:12:2d:f7:24:83:31:08:45:96:6f:3b:50:ca:
44:08:3f:cb:1e:e6:5b:a5:ff:7a:5b:1f:22:05:d9:
73:8a:ee:43:37:82:15:fb:40:02:3a:99:bd:52:c8:
b8:58:71:77:d1:5c:db:9b:7f:09:39:9f:47:eb:3d:
dc:6c:2c:13:3d:7b:cb:fa:86:ae:f9:e7:92:6b:17:
db:70:fa:65:be:62:af:e0:d8:21:68:02:dc:29:73:
b0:56:95:17:f7:7e:da:a4:0d:ac:fd:6a:7c:52:4c:
20:fd:56:30:c7:e1:22:d8:5a:80:96:54:6b:59:5d:
a9:83:29:34:94:21:17:14:b0:6e:1e:3e:fe:6e:78:
83:4f:9e:ce:c5:60:e8:61:c0:31:11:a4:09:8a:23:
59:69:fd:e7:f1:3c:6a:ab:01:fd:cb:0b:77:3b:38:
bd:4d:64:66:ee:61:c2:2e:71:00:fe:3a:f2:1b:b6:
d8:06:30:cc:96:d8:44:34:03:38:9c:1e:5b:a4:37:
ba:7b:b8:d9:09:25:bf:e3:b0:b5:05:e5:c2:4d:c1:
eb:aa:f7:9f:cf:22:2a:d8:e4:a4:f0:7a:e3:43:fb:
25:c2:9c:76:04:74:63:0e:32:08:5b:27:0f:60:67:
89:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:AF:63:82:4C:3E:A8:18:FF:39:75:39:82:A1:B8:8C:8E:4E:4F:F3
X509v3 Authority Key Identifier:
keyid:9D:AA:9F:14:F9:7D:4D:AD:8C:00:4C:25:3A:5E:1C:E7:C7:DD:7C:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/naqfFPl9Ta2MAEwlOl4c58fdfEs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/dfd605-10da-46a2-9677-41401008a70c/1/QK9jgkw-qBj_OXU5gqG4jI5OT_M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/dfd605-10da-46a2-9677-41401008a70c/1/naqfFPl9Ta2MAEwlOl4c58fdfEs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.118.162.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:34:cc:08:42:3f:11:c9:f3:a0:42:8d:57:dc:65:05:3c:65:
46:2b:6d:1e:0e:af:a1:7e:f9:54:8d:12:e8:58:fa:d4:46:5e:
e6:19:00:7c:ce:da:b4:09:cd:0d:55:64:62:ca:12:b6:9c:08:
c1:93:21:8c:7b:b5:22:50:e3:84:7c:f6:89:a2:b0:49:ff:ac:
63:77:c6:75:36:46:40:63:e9:0e:93:eb:2e:6e:8c:b5:56:01:
a3:74:fa:a7:e8:5f:73:cd:4f:73:64:6c:39:d6:48:77:56:98:
7d:f6:f1:00:3f:7f:fc:51:8d:86:81:2f:df:0a:5d:10:e8:46:
a8:55:2e:38:93:15:29:ee:02:5c:98:bc:88:30:3d:f0:25:a4:
9a:7c:8e:7a:fb:d4:0c:4f:c9:3b:f6:5b:f1:87:cf:6a:55:bf:
82:05:ae:5b:72:dc:0f:7a:19:5b:b3:1b:cc:43:3a:ec:85:9d:
a7:ad:e1:d1:3d:92:cc:8c:57:eb:08:aa:65:26:21:0b:30:02:
b0:99:6b:d8:3a:2b:1a:6d:df:1e:6c:f7:ff:6d:82:04:09:64:
a0:50:a1:e9:bb:6b:bd:f9:d5:ec:f8:48:c6:32:79:9b:d2:fa:
ae:1f:01:4b:d0:7b:cd:f4:8f:8c:df:c4:54:b5:04:15:6a:6c:
0d:29:a8:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 3 11:09:28 2023 by rpki-client on console-fra.rpki-client.org