Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/b09f74-179b-4ed2-acf8-56e6e2dc8885/1/QEuFITPaZCxmw0dliSeXDblDzTc.roa
File: QEuFITPaZCxmw0dliSeXDblDzTc.roa (raw, json)
Hash identifier: /uErvyZSerw8ll33E5zf/MsylhU+mUj6E615Z7n+K/0=
Subject key identifier: 40:4B:85:21:33:DA:64:2C:66:C3:47:65:89:27:97:0D:B9:43:CD:37
Certificate issuer: /CN=9a97515657175a946cc8db6196ca1b2154e38114
Certificate serial: 018E50F2FB652F5DC4A6BF9D6DE6B15165C4
Authority key identifier: 9A:97:51:56:57:17:5A:94:6C:C8:DB:61:96:CA:1B:21:54:E3:81:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mpdRVlcXWpRsyNthlsobIVTjgRQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/b09f74-179b-4ed2-acf8-56e6e2dc8885/1/QEuFITPaZCxmw0dliSeXDblDzTc.roa
Signing time: Mon 18 Mar 2024 09:44:45 +0000
ROA not before: Mon 18 Mar 2024 09:44:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42003
IP address blocks: 89.40.28.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 18 Mar 2024 11:44:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:50:f2:fb:65:2f:5d:c4:a6:bf:9d:6d:e6:b1:51:65:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a97515657175a946cc8db6196ca1b2154e38114
Validity
Not Before: Mar 18 09:44:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=404b852133da642c66c347658927970db943cd37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:f9:5d:b2:1e:f3:6c:b6:ac:30:9b:46:7e:ba:
8c:08:5b:80:bc:c3:6b:f5:68:20:65:7c:37:e7:7a:
17:7b:e0:48:c7:e9:56:d2:b3:77:07:ce:25:71:38:
d4:b1:3e:4f:e2:ba:ab:e4:6f:22:aa:e6:85:ce:5f:
ca:3a:68:b3:ff:9d:f6:bb:9b:1d:de:43:e5:98:12:
e3:b3:a3:12:9b:57:5e:bf:b7:ec:52:07:87:e0:24:
9d:14:fa:66:1f:ec:8c:53:ae:ef:89:ff:06:22:24:
73:98:be:09:7c:6d:33:dd:af:31:b0:cd:3e:76:5c:
ce:06:23:78:1d:9b:8c:08:05:ba:18:d0:0e:2e:23:
0b:ad:6b:a2:d5:f3:a7:26:35:cc:42:85:86:8a:db:
aa:a9:83:51:00:e4:89:13:41:45:39:9d:b8:9c:a5:
e0:2d:89:f6:5b:38:3c:0c:ef:31:9b:bc:f7:92:20:
53:58:f2:24:7c:55:e2:11:07:c4:16:d8:e4:bb:11:
3b:60:4a:36:25:ff:89:86:c5:af:c8:e0:b8:ae:d6:
11:5a:16:a2:1f:46:09:aa:ba:4e:98:10:28:d0:5f:
c1:e5:95:be:7a:82:91:5f:ee:11:40:6c:a0:0a:a0:
f9:b8:77:2f:bc:8b:4d:65:6f:2b:d3:38:b0:40:3d:
41:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:4B:85:21:33:DA:64:2C:66:C3:47:65:89:27:97:0D:B9:43:CD:37
X509v3 Authority Key Identifier:
keyid:9A:97:51:56:57:17:5A:94:6C:C8:DB:61:96:CA:1B:21:54:E3:81:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mpdRVlcXWpRsyNthlsobIVTjgRQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/b09f74-179b-4ed2-acf8-56e6e2dc8885/1/QEuFITPaZCxmw0dliSeXDblDzTc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/b09f74-179b-4ed2-acf8-56e6e2dc8885/1/mpdRVlcXWpRsyNthlsobIVTjgRQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.40.28.0/24
Signature Algorithm: sha256WithRSAEncryption
60:be:f1:fb:f7:ae:ac:6e:1d:f2:74:3f:7e:57:e5:0e:f6:4f:
e6:22:2f:0f:83:22:ed:22:e4:7f:69:0b:91:ef:81:21:08:df:
7e:bd:60:38:84:2c:44:9a:b9:b2:48:f7:3e:d8:e4:ef:c5:4b:
94:8e:48:31:9d:cc:e9:1a:90:14:4a:b7:17:59:80:85:4c:28:
c6:fa:77:41:4d:d5:a0:42:e6:65:49:c9:94:ee:a0:5e:74:c7:
1b:91:39:d5:7c:7a:1f:ec:26:30:01:e3:44:d6:c3:ec:87:a6:
33:f0:4b:c4:1c:54:fc:c8:58:77:a1:96:87:b8:5d:dc:26:e7:
e8:46:5b:d3:23:67:ed:9c:ff:44:84:88:db:ee:87:5e:e9:9c:
df:43:ec:e5:49:d3:1f:b2:89:23:78:11:0c:ea:b7:62:85:71:
5a:11:39:c8:4a:c7:bf:96:62:f8:8a:e1:9d:ab:e2:ad:b1:95:
c4:31:1e:a2:b3:e1:9d:c7:ba:94:f0:1f:80:b9:2a:9b:f1:ca:
44:13:7e:f6:5a:99:48:8e:24:2c:6d:2b:1d:f0:ae:d1:2e:8f:
8c:63:f5:54:b3:e4:e1:b5:f4:a9:70:f2:05:3a:7a:75:90:0d:
d0:5a:02:1e:e7:7e:3c:c0:24:f7:b0:e3:00:ff:5a:7f:13:fe:
40:aa:fa:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 18 17:22:18 2024 by rpki-client on console.sobornost.net