Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/lscmzqRuw4Qbm_hR-NLnXkKFrYk.roa
File: lscmzqRuw4Qbm_hR-NLnXkKFrYk.roa (raw, json)
Hash identifier: 0IdHZZAgYZlIAHZWn0bTADgBhV8zsyJgwVL3sPr163w=
Subject key identifier: 96:C7:26:CE:A4:6E:C3:84:1B:9B:F8:51:F8:D2:E7:5E:42:85:AD:89
Certificate issuer: /CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Certificate serial: 01899C350369E98CBE127FD987F3F09920E3
Authority key identifier: AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/lscmzqRuw4Qbm_hR-NLnXkKFrYk.roa
Signing time: Fri 28 Jul 2023 11:14:27 +0000
ROA not before: Fri 28 Jul 2023 11:14:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202085
IP address blocks: 159.148.224.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:9c:35:03:69:e9:8c:be:12:7f:d9:87:f3:f0:99:20:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Validity
Not Before: Jul 28 11:14:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=96c726cea46ec3841b9bf851f8d2e75e4285ad89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:7e:0b:9d:00:bf:66:ec:f4:f2:35:ec:b7:da:
3d:b0:bf:8a:31:62:48:90:b0:cd:5b:b6:89:17:1c:
23:52:77:9a:26:5d:1f:a1:50:78:a3:94:52:24:d1:
5b:0b:71:47:47:c7:49:44:ca:8f:90:2a:1f:85:00:
7b:0f:77:e9:10:94:93:01:eb:62:ca:01:72:1b:4f:
3d:73:c6:c7:81:5e:c4:6f:09:4b:70:0b:e7:48:ee:
97:63:ad:61:f7:e9:10:e9:b3:b7:f8:c8:b2:7a:aa:
b3:0b:f9:43:7e:a5:e6:48:a6:85:0c:04:8f:c0:87:
86:fa:a3:f0:63:1e:34:3f:bc:de:31:7d:ad:c0:1e:
5e:31:fc:fb:e9:96:9a:84:fe:7d:84:3e:a4:73:d0:
7d:e3:a1:bd:07:f3:3d:c2:8a:29:88:2f:15:d5:5b:
f7:b9:37:f7:56:64:a5:7f:92:a8:a1:d1:c4:a3:0e:
d0:eb:b0:41:dd:e7:71:97:2c:17:5a:a1:0e:8a:88:
79:0d:7c:99:84:d1:13:0c:5c:ec:1d:06:ec:98:fa:
16:f9:b7:0d:a6:cc:d7:db:84:9c:cc:30:48:20:63:
c6:56:c1:81:b2:ab:ad:8c:79:16:e9:3e:23:2d:2b:
55:21:6b:e1:1a:71:4e:d1:b9:ef:67:45:43:9f:f0:
f6:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:C7:26:CE:A4:6E:C3:84:1B:9B:F8:51:F8:D2:E7:5E:42:85:AD:89
X509v3 Authority Key Identifier:
keyid:AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/lscmzqRuw4Qbm_hR-NLnXkKFrYk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
159.148.224.0/23
Signature Algorithm: sha256WithRSAEncryption
5b:73:7f:7e:9f:ca:16:bc:1d:9d:8b:90:02:e3:4c:3a:ea:ad:
16:09:11:85:37:f2:00:2e:c2:d5:f0:3c:88:7f:e1:4f:8a:96:
3c:a0:0a:be:15:63:cc:73:7b:78:e7:80:ae:17:70:10:4f:00:
70:43:57:73:a3:0b:e9:ef:74:56:b9:27:2e:97:e0:22:2b:01:
fb:62:5f:03:99:ba:f3:06:f1:9b:db:45:f3:07:7a:99:9f:ef:
4e:17:48:ae:c7:b6:5c:a4:dd:a8:6a:f6:59:36:4c:95:ac:27:
08:6e:8c:45:54:a4:44:45:76:34:bb:69:05:70:87:6f:da:52:
39:eb:5b:85:ef:f9:4e:75:86:4b:81:f3:de:a1:84:67:f4:18:
d5:e5:b6:38:25:4a:64:a6:9b:2d:5b:71:23:17:f7:cc:28:e6:
1b:a2:35:12:df:7d:3c:be:17:81:a0:e4:79:b5:94:6d:c1:6c:
b6:ec:96:b6:f4:e9:e8:cc:89:78:b7:e4:14:52:d3:53:60:bf:
e0:8d:5d:97:27:1f:8b:ff:b0:6d:c6:70:85:2b:7a:54:24:97:
54:84:bf:9f:2c:3b:ff:23:8c:c9:96:28:d4:63:b4:ff:12:43:
34:fb:b5:17:f5:6e:f6:b4:33:4b:ec:35:7b:4f:c7:bc:b5:50:
c9:e4:7f:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:31:48 2024 by rpki-client on console-ams.rpki-client.org