Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/2be7bb-ab98-4ed3-b5ee-10cf65948a56/1/qsWY2MHM5VDz7kH-HUg5kU4lsoA.roa
File: qsWY2MHM5VDz7kH-HUg5kU4lsoA.roa (raw, json)
Hash identifier: pf41AoT3c+KTbvi7bZEIUubBhrvJIcT8gElSaxLNpoE=
Subject key identifier: AA:C5:98:D8:C1:CC:E5:50:F3:EE:41:FE:1D:48:39:91:4E:25:B2:80
Certificate issuer: /CN=73d0a3ab299a6598d32bc75450021888795b3d2b
Certificate serial: 0188BB201A8F10DCAD375CB23004F1CD808A
Authority key identifier: 73:D0:A3:AB:29:9A:65:98:D3:2B:C7:54:50:02:18:88:79:5B:3D:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c9CjqymaZZjTK8dUUAIYiHlbPSs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/2be7bb-ab98-4ed3-b5ee-10cf65948a56/1/qsWY2MHM5VDz7kH-HUg5kU4lsoA.roa
Signing time: Wed 14 Jun 2023 18:17:03 +0000
ROA not before: Wed 14 Jun 2023 18:17:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 11938
IP address blocks: 193.33.157.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 27 Jul 2023 19:48:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:bb:20:1a:8f:10:dc:ad:37:5c:b2:30:04:f1:cd:80:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73d0a3ab299a6598d32bc75450021888795b3d2b
Validity
Not Before: Jun 14 18:17:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=aac598d8c1cce550f3ee41fe1d4839914e25b280
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:fc:f0:10:c4:e7:04:fe:5c:51:f3:c1:08:69:
32:c8:60:2e:f9:5c:9a:4f:53:1e:89:c1:26:f1:3f:
e1:37:1e:36:bf:7f:46:ad:de:8c:f2:d9:ed:56:60:
76:73:50:3b:94:f0:31:dc:f9:09:ce:f7:64:a6:8b:
7d:44:07:4a:cb:78:2a:53:dd:18:d8:09:de:b2:f2:
f9:b1:83:b4:4b:43:40:2c:ab:2d:48:9d:af:de:d0:
41:96:ba:7a:40:0e:b0:28:3a:42:b4:7a:85:bc:0c:
fa:7f:65:d3:9c:9e:ff:2f:71:d8:d0:24:04:66:9d:
ca:15:fa:08:06:0e:c7:f6:6e:0b:09:a1:cb:0f:31:
16:ea:fe:fb:ae:ef:e1:7e:b7:9f:36:0e:8b:f7:db:
09:0f:62:8f:e1:ea:dc:42:27:00:31:95:72:eb:0f:
22:83:d4:d6:27:19:ec:1b:d4:32:af:55:67:61:cb:
79:cb:35:3c:3b:4e:c8:08:04:94:0f:1e:96:7e:b9:
e8:55:46:fc:2b:f0:16:89:8d:1d:73:d6:bf:81:29:
32:0e:67:26:cb:31:09:5a:f6:31:4b:25:ee:5a:79:
d0:10:d2:99:b1:27:cb:c6:7d:42:17:ea:a6:b3:54:
01:bb:c9:86:ea:cd:36:65:76:41:08:52:91:c0:bd:
ef:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:C5:98:D8:C1:CC:E5:50:F3:EE:41:FE:1D:48:39:91:4E:25:B2:80
X509v3 Authority Key Identifier:
keyid:73:D0:A3:AB:29:9A:65:98:D3:2B:C7:54:50:02:18:88:79:5B:3D:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9CjqymaZZjTK8dUUAIYiHlbPSs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/2be7bb-ab98-4ed3-b5ee-10cf65948a56/1/qsWY2MHM5VDz7kH-HUg5kU4lsoA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/2be7bb-ab98-4ed3-b5ee-10cf65948a56/1/c9CjqymaZZjTK8dUUAIYiHlbPSs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.33.157.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:4b:f6:4f:11:5c:78:17:49:44:b9:db:0d:c1:4d:86:fe:af:
3e:e6:f7:94:18:bb:74:18:2c:a9:ca:fb:6a:aa:c3:2a:b5:be:
3c:bb:40:82:9c:c7:6c:7f:0b:a0:04:7a:eb:7b:cb:fa:04:de:
b4:d5:33:0b:f1:d3:05:11:3d:75:26:68:9f:24:a6:d8:a4:76:
4e:2b:26:b5:a0:8f:a4:3c:b4:f2:20:4e:78:04:42:65:a4:05:
01:ab:6c:52:70:07:be:ed:8f:31:81:a2:59:87:e4:b6:31:21:
0e:ab:44:69:e2:e5:69:02:4a:23:41:04:10:a8:60:cd:5f:cd:
f2:f8:36:ba:dd:15:a5:bc:8a:b1:b8:5f:08:27:ab:d2:e8:06:
b3:8b:26:bf:50:8d:2c:b1:39:65:f9:53:72:d1:3a:d8:44:42:
de:1d:b8:d1:ba:f7:c1:cc:27:71:74:97:61:91:5e:de:ab:22:
03:ca:f3:15:0e:60:c5:4b:a0:a7:0d:68:8e:12:b9:c4:9b:60:
d8:2d:0a:1e:ff:00:28:8c:a5:3d:58:bd:51:33:02:3c:be:50:
62:96:a5:82:3a:42:ff:da:f6:48:8f:64:2b:10:8b:ff:69:ae:
a1:d9:fc:a6:b1:b7:d9:b3:ab:1c:37:13:e7:28:a9:91:bc:32:
97:01:3d:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:23 2024 by rpki-client on console-fra.rpki-client.org