Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/406991-5be3-4a05-acb2-1ad47ccd2d9a/1/RQQOJCAIcd52N1doYMFknY43vDA.roa
File: RQQOJCAIcd52N1doYMFknY43vDA.roa (raw, json)
Hash identifier: xcI0T6P9yVfaAdJjTPqt5C+0qFomWhUUV7QgL0mekbA=
Subject key identifier: 45:04:0E:24:20:08:71:DE:76:37:57:68:60:C1:64:9D:8E:37:BC:30
Certificate issuer: /CN=89e21a2b8a25b971bdb741a0aae325992304194e
Certificate serial: 0189CC0AAAD8E94859A13EDADAA341CF184C
Authority key identifier: 89:E2:1A:2B:8A:25:B9:71:BD:B7:41:A0:AA:E3:25:99:23:04:19:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ieIaK4oluXG9t0GgquMlmSMEGU4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/406991-5be3-4a05-acb2-1ad47ccd2d9a/1/RQQOJCAIcd52N1doYMFknY43vDA.roa
Signing time: Sun 06 Aug 2023 18:09:58 +0000
ROA not before: Sun 06 Aug 2023 18:09:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 140543
IP address blocks: 193.25.253.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:cc:0a:aa:d8:e9:48:59:a1:3e:da:da:a3:41:cf:18:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89e21a2b8a25b971bdb741a0aae325992304194e
Validity
Not Before: Aug 6 18:09:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=45040e24200871de7637576860c1649d8e37bc30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:db:b7:62:c0:93:7e:dd:ce:d8:59:fd:7c:45:
8d:b5:fe:2b:c7:b1:fd:e6:bb:75:71:21:a6:f9:31:
b1:3f:47:24:59:a2:fa:98:86:5f:fe:0c:49:50:44:
6b:79:cb:ec:5b:35:f9:e5:ab:f1:1d:b7:dd:50:99:
32:cd:df:7d:31:a3:19:2a:82:d9:a3:22:95:0a:96:
67:1d:24:d1:23:a6:fd:62:f4:32:0d:2c:ab:a1:d1:
3f:bb:99:e7:ad:1f:af:ea:e0:18:e5:7a:e0:0c:87:
b2:df:d4:ee:ea:f0:6f:c2:6f:9a:a8:fc:c7:a6:36:
09:27:57:ed:bc:9f:3f:34:f1:d0:4b:8e:16:56:67:
4b:b9:ca:e9:b0:c2:a1:cf:f2:f3:de:8b:03:11:4c:
53:da:37:68:3a:25:74:5c:f6:dc:d0:f8:72:a9:a7:
f4:d9:00:2c:a2:06:53:d6:6d:81:5a:10:bc:9c:19:
b5:24:35:1e:98:c7:46:cf:89:f8:60:6c:33:67:2c:
aa:1e:3d:a2:a3:b1:cd:90:b2:da:68:15:16:af:98:
ca:9e:b6:e8:f8:db:49:8e:e1:8b:8d:c5:49:fe:d5:
ce:04:33:6a:22:dd:9a:17:da:0d:cc:f0:2d:a1:92:
68:78:bf:02:ef:0e:83:d3:1e:af:f0:12:b6:d7:44:
33:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:04:0E:24:20:08:71:DE:76:37:57:68:60:C1:64:9D:8E:37:BC:30
X509v3 Authority Key Identifier:
keyid:89:E2:1A:2B:8A:25:B9:71:BD:B7:41:A0:AA:E3:25:99:23:04:19:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ieIaK4oluXG9t0GgquMlmSMEGU4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/406991-5be3-4a05-acb2-1ad47ccd2d9a/1/RQQOJCAIcd52N1doYMFknY43vDA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/406991-5be3-4a05-acb2-1ad47ccd2d9a/1/ieIaK4oluXG9t0GgquMlmSMEGU4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.25.253.0/24
Signature Algorithm: sha256WithRSAEncryption
43:27:59:ea:a4:80:49:8f:ef:54:8d:a4:1e:b1:54:a7:c8:ff:
3a:57:55:5d:ce:7c:d4:c0:a6:f6:c3:cb:4f:25:9c:98:07:50:
59:2a:2e:63:43:0a:63:17:e5:f1:39:f5:ba:b4:d5:f4:1d:cb:
2b:ac:0a:85:50:ad:92:ae:19:43:db:17:6f:91:c3:05:d6:ad:
4c:60:a9:77:65:d4:52:d9:39:c3:59:2e:dc:b2:6c:84:ac:52:
bd:36:83:17:8a:10:4d:0d:4b:28:12:b0:c6:85:74:5f:c7:63:
4a:45:ad:1f:d3:c8:f9:98:60:59:c5:6a:2e:2a:d7:17:39:2c:
a7:50:ab:ac:8b:a9:92:04:0e:ed:14:29:0e:c8:2f:0e:23:69:
65:83:94:90:74:77:8c:be:e3:d3:74:a7:b6:3b:b7:21:0d:ee:
cc:ce:40:71:8d:9e:fb:92:19:a6:37:01:26:65:78:60:69:37:
e1:2e:71:22:5c:7a:6f:33:de:e9:bb:ca:4f:66:67:f7:c8:3f:
c7:ea:7f:da:6e:9c:a4:95:d8:b1:ba:b0:8f:46:f0:ab:fd:52:
ae:80:e9:82:75:b4:49:f1:56:4b:dd:63:bd:99:7e:a0:ca:c2:
bd:df:fc:87:dd:c0:74:8a:62:37:07:4e:26:9b:0f:6a:d1:f5:
f1:6e:d7:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 23:37:49 2024 by rpki-client on console-fra.rpki-client.org