Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/584a46-3fdc-425b-b2b6-f03aae13032f/1/pqRUbWkkAm54TUN0fHZ3TB9yScU.roa
File: pqRUbWkkAm54TUN0fHZ3TB9yScU.roa (raw, json)
Hash identifier: c9OREw4RGy8kTYdJXg2rAyL7IolGiRAK+tiyAoR7mw4=
Subject key identifier: A6:A4:54:6D:69:24:02:6E:78:4D:43:74:7C:76:77:4C:1F:72:49:C5
Certificate issuer: /CN=0c10137944e887ad07569ed4d412846732d0af70
Certificate serial: 01856F0B7159CD68E6F7753EB2D7B608FD76
Authority key identifier: 0C:10:13:79:44:E8:87:AD:07:56:9E:D4:D4:12:84:67:32:D0:AF:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DBATeUToh60HVp7U1BKEZzLQr3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/584a46-3fdc-425b-b2b6-f03aae13032f/1/pqRUbWkkAm54TUN0fHZ3TB9yScU.roa
Signing time: Sun 01 Jan 2023 20:34:58 +0000
ROA not before: Sun 01 Jan 2023 20:34:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9163
IP address blocks: 213.208.54.0/24 maxlen: 24
213.208.57.0/24 maxlen: 24
213.208.55.0/24 maxlen: 24
213.208.58.0/24 maxlen: 24
213.208.56.0/24 maxlen: 24
213.208.52.0/24 maxlen: 24
213.208.53.0/24 maxlen: 24
213.208.61.0/24 maxlen: 24
213.208.62.0/24 maxlen: 24
213.208.63.0/24 maxlen: 24
213.208.59.0/24 maxlen: 24
213.208.60.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:30:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:0b:71:59:cd:68:e6:f7:75:3e:b2:d7:b6:08:fd:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c10137944e887ad07569ed4d412846732d0af70
Validity
Not Before: Jan 1 20:34:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a6a4546d6924026e784d43747c76774c1f7249c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:fb:b0:7c:9d:cd:01:46:41:6e:2e:1e:87:75:
b5:2a:7f:66:8d:5b:1f:c8:cb:ac:cb:be:24:50:0d:
f5:0e:4d:4e:e1:ff:9c:86:07:49:67:43:65:6e:70:
c9:96:fd:67:30:b0:fb:27:63:41:2a:f4:1d:e2:87:
df:71:52:72:5a:62:cd:12:57:3e:58:1c:e3:f1:d1:
4c:67:97:2d:32:11:f9:88:15:90:87:ba:7b:f9:4d:
45:a7:af:1e:89:3f:7b:4f:b1:b4:ab:a9:a9:61:33:
c2:67:c0:fb:99:60:0d:b8:e3:58:aa:17:b7:20:55:
11:c2:0c:d4:ea:dc:b4:3f:82:cc:2d:f8:c1:6e:18:
be:d5:65:81:35:37:8a:25:f0:39:d5:66:43:93:8a:
5b:7c:62:12:8f:2a:3f:1a:fd:ce:28:7a:56:83:b8:
62:30:86:8a:71:92:dc:99:b6:7d:d4:1b:08:e2:01:
9c:32:70:90:d3:72:a8:e7:98:82:27:13:24:e1:68:
54:da:0d:8d:89:87:9b:c4:7d:02:ec:ad:74:b0:11:
07:12:32:ea:85:a0:2f:8a:9e:af:7d:f4:0f:f7:fc:
52:e7:7f:9d:ba:a6:b5:9f:73:15:00:00:51:e4:bd:
13:d0:f7:e2:5f:0f:4d:7a:8b:5a:f8:8a:a8:ef:51:
91:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:A4:54:6D:69:24:02:6E:78:4D:43:74:7C:76:77:4C:1F:72:49:C5
X509v3 Authority Key Identifier:
keyid:0C:10:13:79:44:E8:87:AD:07:56:9E:D4:D4:12:84:67:32:D0:AF:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DBATeUToh60HVp7U1BKEZzLQr3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/584a46-3fdc-425b-b2b6-f03aae13032f/1/pqRUbWkkAm54TUN0fHZ3TB9yScU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/584a46-3fdc-425b-b2b6-f03aae13032f/1/DBATeUToh60HVp7U1BKEZzLQr3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.208.52.0-213.208.63.255
Signature Algorithm: sha256WithRSAEncryption
08:4e:3f:62:40:6d:55:45:a1:5d:35:9d:58:fe:bf:73:06:04:
9d:87:af:4c:e4:97:0c:49:71:81:9e:d2:29:e0:0f:6f:b6:9b:
5c:2f:07:86:ce:dd:f9:95:8a:56:b8:71:e9:02:01:25:53:38:
f8:d3:f7:ab:eb:6e:03:01:81:15:aa:ae:9a:84:e8:c9:cd:5f:
c6:53:39:9e:2b:ed:92:5a:87:9c:f8:24:c6:95:d6:d3:d0:9c:
ba:fb:e0:3b:09:bc:59:75:a3:52:c9:ee:2a:af:f6:06:66:dc:
cc:62:9c:e6:12:6e:0b:76:b6:f8:4c:93:05:86:84:5b:87:aa:
99:e0:a6:24:0e:d7:53:62:b3:43:9e:46:ef:00:a6:c7:99:4c:
15:c0:5d:94:2a:4d:68:ab:0a:96:7e:32:44:32:a7:41:1e:6b:
77:51:b7:b8:73:36:7a:f0:94:07:6b:50:8e:df:0a:46:d4:fc:
e9:59:9c:b6:9f:3d:09:6f:04:0e:42:df:21:0b:61:db:6a:a6:
88:c3:c7:b6:23:ff:6c:83:40:de:17:5f:db:46:c2:f5:c2:55:
2a:cf:bf:eb:de:fd:1b:e9:8e:0b:7a:16:5f:b5:bd:95:ad:bd:
ac:77:65:19:0d:d1:37:f3:e5:6b:26:a6:a9:02:5c:71:8a:2a:
c3:0a:72:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:17 2024 by rpki-client on console-ams.rpki-client.org