Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/QJr0LquMxzqZqRVQ97s7rYFUzfQ.roa
File: QJr0LquMxzqZqRVQ97s7rYFUzfQ.roa (raw, json)
Hash identifier: aYuuXjFwF9lV05qzk4SsKGrj2yS6clUaxtsAoHiSxhk=
Subject key identifier: 40:9A:F4:2E:AB:8C:C7:3A:99:A9:15:50:F7:BB:3B:AD:81:54:CD:F4
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 0187D20D069D78099311E552659AAFBBBAA6
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/QJr0LquMxzqZqRVQ97s7rYFUzfQ.roa
Signing time: Sun 30 Apr 2023 12:04:41 +0000
ROA not before: Sun 30 Apr 2023 12:04:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204843
IP address blocks: 86.107.100.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:d2:0d:06:9d:78:09:93:11:e5:52:65:9a:af:bb:ba:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Apr 30 12:04:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=409af42eab8cc73a99a91550f7bb3bad8154cdf4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:34:95:8f:ea:13:32:b9:85:92:2c:ec:22:3e:
eb:86:1f:99:0d:3e:07:4c:83:d6:ff:21:4a:4d:38:
40:d2:29:27:70:c8:17:a3:b1:b7:2b:26:22:81:f6:
2c:c4:3c:c5:04:29:86:19:a7:24:62:04:98:4d:00:
1a:74:a8:08:49:91:5f:0b:f3:b5:f1:86:8e:e8:d9:
8d:85:75:bd:25:dd:e2:a3:55:e0:18:39:e7:60:ef:
33:7f:82:46:15:6c:8f:5a:9c:1b:dd:22:e4:d7:1c:
d9:98:93:3b:3b:25:29:0d:83:d5:fa:22:0a:af:2f:
ec:dd:12:ad:68:8f:e4:3e:bf:62:c2:41:bb:e6:21:
54:f6:29:aa:56:4c:e4:f4:c3:eb:d8:f6:df:6f:69:
04:1f:7e:a8:8e:5f:f1:bf:25:50:6a:3d:64:99:9c:
71:94:c6:20:b1:17:72:0d:c6:a9:16:1c:e1:23:e6:
49:16:e8:b5:0c:d2:93:ad:6f:71:30:47:cc:24:74:
72:b2:b5:c8:f5:b8:a4:cc:4e:e9:26:92:23:25:33:
31:54:d6:80:c8:c5:c2:ec:c1:fc:a0:c8:1b:b0:2c:
30:00:de:4a:a9:70:c6:2a:6e:46:97:7b:52:11:88:
9e:d3:96:06:4d:5d:66:18:df:c7:c4:d3:2d:9b:53:
09:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:9A:F4:2E:AB:8C:C7:3A:99:A9:15:50:F7:BB:3B:AD:81:54:CD:F4
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/QJr0LquMxzqZqRVQ97s7rYFUzfQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.107.100.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:26:74:90:9b:8e:dd:94:57:06:74:dd:ec:5c:07:fd:c0:bd:
11:db:9b:44:86:f6:e5:c3:b4:02:f5:5f:f1:ca:cb:53:28:70:
31:ae:6f:0d:a2:ae:78:da:e1:c0:e1:3c:e7:90:74:48:6d:a3:
92:f0:12:59:9a:05:36:fb:f1:96:13:f4:1f:75:64:ec:98:23:
cc:91:b9:ce:c5:4f:2e:93:55:31:25:36:1a:e1:bd:5a:53:01:
bf:cf:4b:d7:5b:79:c3:78:79:a2:cb:1a:8d:31:08:45:e2:3d:
29:35:0f:35:fc:11:53:c0:88:37:a6:91:b1:be:fe:2f:83:d7:
41:fa:93:be:cd:2b:4b:1f:d2:bb:8a:98:12:45:d0:78:57:74:
7c:f3:c8:f2:c8:80:f4:42:53:3d:85:d5:9a:9a:01:05:ef:c5:
a9:d0:06:42:cf:62:86:01:a9:a8:03:8d:c9:ae:9c:8d:0d:a5:
7d:2c:a2:6f:11:ff:e5:fe:f2:0b:8e:21:25:c5:97:91:85:27:
4b:27:ee:ac:0a:b8:de:af:f0:45:ee:31:e6:a6:11:3b:97:bc:
15:c3:12:03:8e:a1:b2:98:ff:e8:eb:74:a6:a0:52:07:3a:80:
65:11:38:0d:4c:4a:63:96:09:56:38:26:bc:68:64:e1:db:4c:
8b:99:0a:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:38 2023 by rpki-client on console.sobornost.net