Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/hQ0HpgmsFJcyJ_6YwQUsIPfCPUU.roa
File: hQ0HpgmsFJcyJ_6YwQUsIPfCPUU.roa (raw, json)
Hash identifier: V5psxamHUkiJFAoNFQMkVdepcktJKQQ5xxc6mfJUDgM=
Subject key identifier: 85:0D:07:A6:09:AC:14:97:32:27:FE:98:C1:05:2C:20:F7:C2:3D:45
Certificate issuer: /CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Certificate serial: 01856F024A7C7EA5385ECBF4DB52F019FEED
Authority key identifier: AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/hQ0HpgmsFJcyJ_6YwQUsIPfCPUU.roa
Signing time: Sun 01 Jan 2023 20:24:59 +0000
ROA not before: Sun 01 Jan 2023 20:24:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60324
IP address blocks: 159.148.191.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:02:4a:7c:7e:a5:38:5e:cb:f4:db:52:f0:19:fe:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Validity
Not Before: Jan 1 20:24:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=850d07a609ac14973227fe98c1052c20f7c23d45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:4a:fa:66:36:d7:fb:88:e8:d7:96:24:fd:e8:
7b:24:d8:22:5a:37:6d:9f:a9:ec:87:59:d5:d0:fc:
ad:df:1e:b8:19:74:95:6c:9d:2b:97:6d:31:95:e0:
d1:14:cd:05:a1:5a:f5:66:1b:12:8e:bd:7f:7c:24:
fb:05:9e:ad:3a:f5:67:ff:81:78:ae:cf:7e:e8:e9:
17:4c:f2:2c:66:12:48:c5:5f:a9:48:3e:94:40:5c:
59:5e:c3:9e:1c:34:24:8e:ae:06:4b:25:4f:f3:07:
1d:79:1a:05:e2:8d:cf:17:c9:84:ef:21:ab:a8:3b:
85:7d:77:fc:b2:77:db:67:f7:86:df:43:59:f5:ec:
2b:fc:51:e1:cc:cf:30:44:16:42:12:0b:c8:94:e3:
d6:4e:09:c0:b0:32:de:7c:1c:e7:8d:43:49:40:36:
6a:79:f8:9d:be:65:8e:6a:8f:bd:b5:42:ad:bb:24:
7b:37:3a:70:54:4f:6b:0e:2e:2d:8f:8b:e5:ed:f6:
78:a4:a2:cb:64:f4:f8:95:49:fa:c2:48:2b:28:e2:
1f:b0:3d:1a:28:25:00:f5:49:94:41:67:c9:ea:88:
30:ab:27:c4:55:7c:a8:03:f1:75:ed:e1:aa:51:37:
5a:c2:c9:1c:c2:6f:52:bf:94:d8:56:fd:3f:95:46:
52:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:0D:07:A6:09:AC:14:97:32:27:FE:98:C1:05:2C:20:F7:C2:3D:45
X509v3 Authority Key Identifier:
keyid:AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/hQ0HpgmsFJcyJ_6YwQUsIPfCPUU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
159.148.191.0/24
Signature Algorithm: sha256WithRSAEncryption
78:93:aa:a0:fa:7c:e2:9a:2f:9d:d6:f5:6c:57:1a:3d:2f:3f:
6d:06:23:9f:3e:6b:2c:ac:55:27:65:d7:c0:06:6d:ca:39:2b:
85:04:38:60:ba:d9:01:e9:96:05:f4:7c:30:93:5a:8a:d0:0f:
3f:ee:d1:93:2a:c7:97:51:4c:58:ad:10:68:c3:3d:db:dc:83:
4f:23:74:ff:21:91:96:e0:fb:16:0f:7d:37:bc:67:5b:df:a1:
b0:31:53:6e:72:0f:7b:52:1b:86:90:31:1c:49:45:70:a0:d3:
88:3f:32:45:84:39:d7:65:7d:9c:7e:5e:67:db:31:ff:37:ab:
e0:d5:d3:70:41:89:d5:44:d4:fc:85:7c:bf:88:6a:a1:91:ac:
81:fb:48:b5:e5:58:47:f7:82:c9:81:f5:09:4e:09:54:44:03:
cf:16:df:fb:55:5b:9f:ea:ff:95:05:78:a7:10:9e:16:fa:a2:
05:5d:d7:90:b8:d5:72:14:9f:48:f6:7f:0d:c7:7a:a4:c9:45:
b0:99:65:2b:e4:1b:2d:83:27:40:29:2b:d8:af:6e:bd:1d:6b:
67:67:52:9a:6e:bc:57:24:b5:06:ff:40:3e:04:23:0d:12:92:
bc:62:2e:20:d1:83:c4:0a:48:66:d1:95:ec:ed:c3:d7:c9:98:
f1:8f:b6:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:49:38 2024 by rpki-client on console-fra.rpki-client.org