Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/e718e4-53b7-47bb-a336-5a17719d449e/1/qeEzbQI0fCEC5pK3JeveshGqSGU.roa
File: qeEzbQI0fCEC5pK3JeveshGqSGU.roa (raw, json)
Hash identifier: VPM+Xm6M0YBrxPrM3mFwJi2xUwSEgAH2i0leV6VP9js=
Subject key identifier: A9:E1:33:6D:02:34:7C:21:02:E6:92:B7:25:EB:DE:B2:11:AA:48:65
Certificate issuer: /CN=330e640f9d63ba943a97b3dc10d4c6844a5d3dc1
Certificate serial: 018972E6AD25B0C51531584600C197A240FB
Authority key identifier: 33:0E:64:0F:9D:63:BA:94:3A:97:B3:DC:10:D4:C6:84:4A:5D:3D:C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Mw5kD51jupQ6l7PcENTGhEpdPcE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/e718e4-53b7-47bb-a336-5a17719d449e/1/qeEzbQI0fCEC5pK3JeveshGqSGU.roa
Signing time: Thu 20 Jul 2023 10:44:27 +0000
ROA not before: Thu 20 Jul 2023 10:44:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210278
IP address blocks: 101.60.0.0/15 maxlen: 15
101.56.192.0/18 maxlen: 18
101.56.128.0/18 maxlen: 18
101.59.0.0/16 maxlen: 16
195.162.92.0/22 maxlen: 22
101.56.64.0/18 maxlen: 18
101.58.0.0/16 maxlen: 16
101.58.0.0/15 maxlen: 15
101.56.0.0/18 maxlen: 18
101.62.194.0/23 maxlen: 23
101.62.196.0/23 maxlen: 23
101.56.0.0/15 maxlen: 15
101.62.0.0/15 maxlen: 15
101.57.0.0/16 maxlen: 16
2a0e:400::/25 maxlen: 25
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:72:e6:ad:25:b0:c5:15:31:58:46:00:c1:97:a2:40:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=330e640f9d63ba943a97b3dc10d4c6844a5d3dc1
Validity
Not Before: Jul 20 10:44:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a9e1336d02347c2102e692b725ebdeb211aa4865
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:9b:b3:51:95:f4:b1:bb:13:77:ee:ff:74:6e:
9d:51:84:ca:bc:d9:2f:d4:10:49:9b:0f:e6:a8:a2:
64:8f:3d:a2:b4:70:2b:10:a1:a9:be:c7:49:96:ad:
30:f7:82:2b:f1:cc:91:c9:a3:f3:84:06:39:28:4b:
9f:ef:c5:5f:9f:ef:7d:13:a4:04:e3:6d:31:f9:54:
d8:38:2c:55:44:0a:6e:76:27:22:2e:2b:67:97:f5:
04:3a:bc:f1:02:0b:49:a2:d4:25:da:c2:45:57:fc:
1a:21:96:9f:d7:bb:5e:6f:bb:ca:aa:19:6b:4c:2e:
9b:70:39:bd:b4:61:d6:d1:e8:db:3f:2d:6b:b0:0f:
ec:89:f9:41:0d:cb:0a:e8:27:76:34:f2:23:93:bf:
0c:b4:cc:a7:e7:c3:fb:6c:db:a1:6c:63:9a:61:8d:
ef:f7:42:77:fb:bc:3c:c3:0b:cb:79:4b:9e:c0:d7:
56:30:cf:db:aa:6f:2a:10:21:fc:e1:76:11:84:22:
ba:95:f9:8a:a1:63:8a:1a:fb:85:29:4f:6d:c4:c8:
b4:57:73:b4:62:d1:e7:62:f4:2d:0b:d9:6a:75:0f:
16:73:fc:27:ca:bc:f5:90:12:76:e8:3f:3d:f7:10:
48:33:24:3f:de:76:51:a5:0b:50:bb:ad:2e:e7:71:
5e:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:E1:33:6D:02:34:7C:21:02:E6:92:B7:25:EB:DE:B2:11:AA:48:65
X509v3 Authority Key Identifier:
keyid:33:0E:64:0F:9D:63:BA:94:3A:97:B3:DC:10:D4:C6:84:4A:5D:3D:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Mw5kD51jupQ6l7PcENTGhEpdPcE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/e718e4-53b7-47bb-a336-5a17719d449e/1/qeEzbQI0fCEC5pK3JeveshGqSGU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/e718e4-53b7-47bb-a336-5a17719d449e/1/Mw5kD51jupQ6l7PcENTGhEpdPcE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
101.56.0.0/13
195.162.92.0/22
IPv6:
2a0e:400::/25
Signature Algorithm: sha256WithRSAEncryption
68:08:6b:08:e1:6e:f3:d8:ec:fb:e8:8c:2e:ed:87:5b:ce:63:
ac:4e:91:b9:38:11:f8:16:e3:5c:6e:9f:ee:24:72:42:6a:89:
40:c6:ac:0a:75:1c:cd:40:a5:a4:b7:9c:12:87:ac:29:62:d1:
a7:dd:20:73:58:39:54:ef:62:fd:41:51:e8:5f:89:60:f1:d9:
37:d8:cf:72:b0:a4:3f:7a:70:34:82:01:c6:cf:05:66:66:4a:
1d:28:86:be:65:b7:85:c2:35:03:2b:2c:e4:39:d7:5e:96:9a:
7a:a7:63:86:6d:49:19:00:04:76:04:ce:89:1c:e8:8a:cb:6a:
6c:7b:6b:f7:8e:8f:93:0f:46:83:8e:28:cd:9d:04:ed:bd:30:
6e:c7:c9:a5:e8:fd:5b:52:fb:37:8d:06:95:5f:5b:e0:60:92:
4a:cb:77:cd:99:76:f5:f1:2f:c4:58:51:1b:94:f2:b5:7e:c4:
15:8b:ba:73:a0:55:b0:bf:13:62:7a:48:b6:ac:fc:b3:db:54:
b4:99:12:71:db:37:35:99:79:43:19:b2:27:49:f0:04:07:12:
2f:e0:da:35:9e:4e:53:96:93:63:9c:74:59:8f:42:65:10:b5:
0c:6f:be:c3:a8:40:f5:87:30:e7:95:43:92:f3:0b:c9:d6:f0:
16:01:97:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 26 11:46:47 2023 by rpki-client on console-ams.rpki-client.org