Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/qeci-TDyXzW6VJiSxFwjZ4BRPN4.roa
File: qeci-TDyXzW6VJiSxFwjZ4BRPN4.roa (raw, json)
Hash identifier: DMsbtPO3yKiXBHfyngetTVx+cE1dZFSs2iBsX9+XAg4=
Subject key identifier: A9:E7:22:F9:30:F2:5F:35:BA:54:98:92:C4:5C:23:67:80:51:3C:DE
Certificate issuer: /CN=3af09ba33b5ae581b0d29323249314f76aa10511
Certificate serial: 01856CB8446D023949E576A881C416BCC030
Authority key identifier: 3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/qeci-TDyXzW6VJiSxFwjZ4BRPN4.roa
Signing time: Sun 01 Jan 2023 09:44:53 +0000
ROA not before: Sun 01 Jan 2023 09:44:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25113
IP address blocks: 193.251.158.0/24 maxlen: 24
193.252.152.0/23 maxlen: 24
193.252.150.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:30:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:b8:44:6d:02:39:49:e5:76:a8:81:c4:16:bc:c0:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3af09ba33b5ae581b0d29323249314f76aa10511
Validity
Not Before: Jan 1 09:44:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a9e722f930f25f35ba549892c45c236780513cde
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:d9:de:19:b6:ab:92:ea:d9:5b:21:14:d8:1e:
b3:98:a3:1f:7a:ca:a6:00:bc:e3:73:9e:1c:c9:05:
e2:42:78:75:85:42:12:24:fe:85:53:6e:24:65:ec:
92:b5:49:62:54:0a:db:7a:15:19:5d:70:a1:ad:65:
5e:e8:b4:f6:2f:b0:59:98:1f:97:53:b1:80:43:37:
ee:00:1f:e5:31:c6:f2:d5:c6:00:d7:3e:78:42:cf:
ba:e0:a2:54:36:9f:60:7e:24:21:25:65:14:ed:2c:
b8:b4:e8:52:7a:ad:83:1f:02:de:fa:e1:31:52:25:
d8:08:bb:05:0f:e3:cc:e1:e3:93:9b:5e:83:5d:c9:
75:42:eb:9c:39:d2:40:2d:07:50:bc:61:7e:5c:78:
6d:13:a7:c2:a4:3c:60:8f:8a:7c:65:a1:01:f6:5e:
0e:2c:1f:c3:35:51:41:61:df:1c:67:98:0b:fa:c3:
db:b2:ed:a2:3e:1e:00:75:3c:20:aa:2d:71:0e:a8:
11:67:d9:0b:5f:93:c7:1e:b4:45:6c:0d:5e:32:57:
07:72:ab:a7:23:eb:fb:93:35:9f:55:a5:36:c1:48:
63:b2:06:1e:31:e6:c9:ce:3b:9c:e3:aa:7a:ca:a3:
54:4e:67:34:c0:14:a5:97:c6:91:b1:09:70:35:e1:
86:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:E7:22:F9:30:F2:5F:35:BA:54:98:92:C4:5C:23:67:80:51:3C:DE
X509v3 Authority Key Identifier:
keyid:3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/qeci-TDyXzW6VJiSxFwjZ4BRPN4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/OvCbozta5YGw0pMjJJMU92qhBRE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.251.158.0/24
193.252.150.0-193.252.153.255
Signature Algorithm: sha256WithRSAEncryption
05:37:7a:d3:ba:ad:a0:ef:e0:8c:0b:e8:c5:31:35:1a:d4:86:
ba:eb:40:f3:3e:5c:a4:c0:91:94:73:8c:72:ef:ff:ea:f2:0a:
44:ea:48:28:ac:73:a4:a9:c8:da:e9:e3:ab:06:6a:d0:3c:1b:
c0:66:25:23:a9:73:20:f5:cc:ae:e1:ad:95:d7:85:43:dc:2c:
8f:9d:26:12:77:08:e2:65:4a:b2:07:7b:12:06:f1:10:b6:98:
7e:b1:11:b9:d8:5d:d3:f6:3d:30:f7:6e:d4:60:85:6f:e3:93:
60:b4:75:ec:ce:e9:97:8b:34:58:fe:94:50:db:c1:17:05:ac:
0c:dc:3e:3a:0b:60:a7:05:7d:62:b4:21:ea:c0:f1:ec:f2:61:
be:34:93:5f:40:f2:69:03:1f:e4:b9:fb:2d:bb:cb:a2:36:33:
dd:09:93:f3:c6:4f:d0:75:f9:a5:61:6f:63:a2:ca:c4:7d:d9:
57:f4:1b:16:79:46:d3:1a:0f:a8:f8:6c:c2:20:a9:60:24:21:
5a:0e:54:8e:1a:5a:70:1e:b9:f7:d6:31:83:14:1a:74:f7:32:
87:37:b0:6b:8b:bd:0f:83:2b:6f:d8:73:db:88:2f:71:ea:0d:
3b:d5:82:af:56:e8:7a:0c:68:cc:83:db:16:80:cd:3d:b4:1c:
86:fc:b8:10
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:20 2024 by rpki-client on console-ams.rpki-client.org