Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/6c203d-6221-460a-af49-c12218765154/1/qtMZmfsfPEjZ5pryjbH1QwI3aRA.roa
File: qtMZmfsfPEjZ5pryjbH1QwI3aRA.roa (raw, json)
Hash identifier: uNZ+bqmeBthHYfupj9+IzwRk69cSTkkptpmYySsYawU=
Subject key identifier: AA:D3:19:99:FB:1F:3C:48:D9:E6:9A:F2:8D:B1:F5:43:02:37:69:10
Certificate issuer: /CN=32508fb781ca6dbd8221f2c2f954a3a7446b2b42
Certificate serial: 0188F80944247FBB25289EDCC8854A7D6BFB
Authority key identifier: 32:50:8F:B7:81:CA:6D:BD:82:21:F2:C2:F9:54:A3:A7:44:6B:2B:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MlCPt4HKbb2CIfLC-VSjp0RrK0I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/6c203d-6221-460a-af49-c12218765154/1/qtMZmfsfPEjZ5pryjbH1QwI3aRA.roa
Signing time: Mon 26 Jun 2023 14:08:56 +0000
ROA not before: Mon 26 Jun 2023 14:08:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59711
IP address blocks: 88.218.206.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:f8:09:44:24:7f:bb:25:28:9e:dc:c8:85:4a:7d:6b:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32508fb781ca6dbd8221f2c2f954a3a7446b2b42
Validity
Not Before: Jun 26 14:08:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=aad31999fb1f3c48d9e69af28db1f54302376910
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:d4:c2:62:67:a8:97:40:28:ef:fd:ca:97:dc:
09:34:5b:63:48:71:52:db:06:36:70:b5:b0:ab:89:
73:fb:92:cf:d5:06:38:7c:a2:64:f1:5e:72:44:ea:
f0:c1:b8:fc:14:6f:2f:5c:7a:41:94:ba:87:e3:d4:
7b:ab:3d:4e:d8:19:fd:e6:15:55:1a:af:16:21:5a:
c1:b8:43:b7:ff:e3:d7:f0:b7:49:50:2a:c0:0a:ce:
86:b1:79:d6:7f:e2:56:d0:ce:0e:22:6b:5b:f1:79:
b2:2b:be:1f:78:4b:bd:80:be:3b:e0:68:bd:af:f8:
d4:c6:38:8e:40:38:41:82:6f:38:e4:3c:99:03:0c:
58:59:b3:b6:80:8b:63:c1:16:e7:68:e8:3d:e2:b7:
8f:5b:91:33:7f:42:58:e9:1e:e5:6f:c9:5c:84:c0:
d6:5e:61:b2:7a:58:ba:01:8c:0c:bc:d6:45:b3:59:
92:03:8a:d6:74:18:c1:e5:78:1b:db:c4:66:d1:10:
c2:4e:15:fc:9b:c9:59:24:5e:f4:9e:dc:55:8a:1c:
fb:79:08:c6:58:45:05:90:48:62:e2:ab:6f:c7:04:
c4:4a:35:3b:3a:d4:ff:c9:a9:d8:55:63:8b:dd:c8:
21:7d:08:08:d9:49:f8:df:4a:55:46:19:b0:fa:4f:
ea:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:D3:19:99:FB:1F:3C:48:D9:E6:9A:F2:8D:B1:F5:43:02:37:69:10
X509v3 Authority Key Identifier:
keyid:32:50:8F:B7:81:CA:6D:BD:82:21:F2:C2:F9:54:A3:A7:44:6B:2B:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MlCPt4HKbb2CIfLC-VSjp0RrK0I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/6c203d-6221-460a-af49-c12218765154/1/qtMZmfsfPEjZ5pryjbH1QwI3aRA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/6c203d-6221-460a-af49-c12218765154/1/MlCPt4HKbb2CIfLC-VSjp0RrK0I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.218.206.0/24
Signature Algorithm: sha256WithRSAEncryption
00:56:f1:09:0c:35:fe:94:9d:f2:e0:d4:13:41:0e:63:c8:86:
bc:5f:8f:fc:35:c8:b0:30:c7:2e:a2:1b:c5:ae:97:c9:32:1f:
1f:94:87:8c:2f:2e:50:92:2c:f0:2a:bc:f4:91:97:8d:96:5b:
43:32:30:f2:13:87:4a:c8:44:46:19:22:be:95:98:1e:5a:c4:
ca:46:c9:42:57:31:b7:74:0b:0f:80:3c:bc:48:16:f8:5f:cd:
d8:06:bb:6d:57:13:68:6d:ed:37:99:ed:a0:c3:34:84:0f:27:
e2:a1:c4:5c:0b:c2:98:73:a9:db:f4:5a:b4:2a:92:c9:3d:c8:
6a:bc:c5:4f:f8:50:d2:9c:65:39:94:45:a7:a3:17:2a:e3:7f:
93:29:ec:95:0f:66:c8:cf:28:25:9e:d3:08:48:2f:b8:fc:72:
58:3c:a4:a0:6c:2f:ca:05:3e:9e:e4:83:ec:de:2b:47:99:12:
b6:8b:bb:53:3e:0b:32:38:1e:a0:27:3e:fd:2b:39:5e:41:2a:
62:03:3b:fd:81:d9:c0:dc:4f:2b:45:72:44:c7:5f:10:9e:13:
ea:c9:02:1b:d7:09:49:e7:91:38:6d:ec:bd:46:40:17:06:aa:
78:25:aa:a7:cd:e4:35:74:9b:0f:f2:f4:bc:5c:b7:50:23:fc:
89:c5:50:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:57 2023 by rpki-client on console.sobornost.net