Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/da5e3b-ca0b-4fce-b1e2-5dd336f38060/1/Q7DxqUYD1ZC7clD97IWxhes8yFs.roa
File: Q7DxqUYD1ZC7clD97IWxhes8yFs.roa (raw, json)
Hash identifier: sMn1d/FcaLIq6hN/4OnOriROKs5+6ap6ztzBZwV/0/c=
Subject key identifier: 43:B0:F1:A9:46:03:D5:90:BB:72:50:FD:EC:85:B1:85:EB:3C:C8:5B
Certificate issuer: /CN=d0c3d358812e60b680e4e11632f139560bf525fb
Certificate serial: 01896FD351FD1D19B84E28B0073B206B31A3
Authority key identifier: D0:C3:D3:58:81:2E:60:B6:80:E4:E1:16:32:F1:39:56:0B:F5:25:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0MPTWIEuYLaA5OEWMvE5Vgv1Jfs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/da5e3b-ca0b-4fce-b1e2-5dd336f38060/1/Q7DxqUYD1ZC7clD97IWxhes8yFs.roa
Signing time: Wed 19 Jul 2023 20:24:27 +0000
ROA not before: Wed 19 Jul 2023 20:24:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210644
IP address blocks: 194.50.153.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:6f:d3:51:fd:1d:19:b8:4e:28:b0:07:3b:20:6b:31:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0c3d358812e60b680e4e11632f139560bf525fb
Validity
Not Before: Jul 19 20:24:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=43b0f1a94603d590bb7250fdec85b185eb3cc85b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:e5:5c:4f:d5:29:b9:0c:5b:06:86:66:ef:82:
a4:8c:dc:62:6d:88:07:2f:14:26:98:73:c2:92:4a:
f7:df:c3:60:bb:bf:d7:bf:e2:53:97:35:f2:7b:d9:
5c:b4:74:3d:b8:87:77:55:31:ae:11:be:0d:81:ca:
00:a3:00:88:0f:e2:98:ff:3b:e3:1e:2f:9d:1a:d5:
a4:78:c5:d2:d4:3f:11:8b:98:b6:23:41:47:61:e6:
6a:9b:8e:18:94:45:f3:e2:c7:7c:07:f0:b9:6a:ab:
f0:07:aa:40:21:5f:10:61:a3:67:12:ff:c4:56:79:
9b:6a:2b:a3:df:ca:8d:f5:90:09:26:25:2b:a4:2d:
66:49:83:4a:3b:fb:cc:08:60:07:5c:de:88:2e:0d:
43:53:55:b8:e3:99:3d:1a:28:6f:bb:6d:2c:bb:26:
7b:a5:72:6a:59:cf:cb:47:0e:cd:9c:b7:0f:2d:f6:
88:6a:66:f5:1c:07:5c:d0:e6:1f:1b:f0:b1:6d:ce:
b1:c3:4f:b2:db:c5:86:4b:9c:9c:96:92:66:88:38:
2c:6c:27:6d:84:81:a1:33:1a:4b:8e:8d:20:52:21:
87:c2:71:03:c9:5b:dc:80:a5:5b:52:87:07:a7:2a:
36:2a:62:be:ea:2a:08:5b:b4:9f:d4:2c:e6:6a:95:
92:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:B0:F1:A9:46:03:D5:90:BB:72:50:FD:EC:85:B1:85:EB:3C:C8:5B
X509v3 Authority Key Identifier:
keyid:D0:C3:D3:58:81:2E:60:B6:80:E4:E1:16:32:F1:39:56:0B:F5:25:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0MPTWIEuYLaA5OEWMvE5Vgv1Jfs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/da5e3b-ca0b-4fce-b1e2-5dd336f38060/1/Q7DxqUYD1ZC7clD97IWxhes8yFs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/da5e3b-ca0b-4fce-b1e2-5dd336f38060/1/0MPTWIEuYLaA5OEWMvE5Vgv1Jfs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.50.153.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:08:d4:5d:e0:0c:e9:3c:34:60:69:d5:1d:a5:62:bb:40:90:
2a:78:86:74:c5:d7:5d:58:3b:32:d0:75:ab:05:e4:b9:f5:27:
75:90:4a:af:93:26:b3:08:2f:18:82:d7:98:c8:69:6a:38:1c:
d0:c6:a2:30:d3:d7:f3:b2:b2:e5:05:18:29:c7:9d:cc:88:9b:
d8:1e:19:5e:e8:af:4c:51:da:c8:54:c8:e1:eb:bc:e7:51:fd:
a0:72:86:c7:c0:a5:4d:3f:b0:a3:87:54:08:2d:df:61:67:0e:
74:9a:8d:12:b6:b8:d0:51:e0:fa:0f:3b:08:77:2f:10:f6:16:
db:e5:e7:35:65:0e:2a:5b:fc:6c:aa:85:d8:78:a4:a7:78:c3:
bd:da:03:64:c3:df:f4:c4:3f:8b:ba:a6:10:68:11:60:2e:de:
8c:e9:3c:cb:39:d8:7a:0e:f8:8f:d4:3a:43:63:13:71:2c:77:
b5:25:04:ad:cd:9f:e5:c2:60:d7:73:81:bb:34:b0:33:95:75:
07:15:24:49:36:1d:ed:14:3f:d9:a4:56:20:6d:5b:fb:01:fa:
81:78:a9:f9:28:97:f5:c0:0f:96:d8:7a:0a:e7:27:66:98:1b:
e6:d5:57:39:98:68:aa:bd:b8:20:26:c9:ca:8e:22:f4:10:63:
df:59:8b:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 9 18:51:24 2023 by rpki-client on console-fra.rpki-client.org