Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/QpHfGtAu82wqsOHx88IlcNQJCIM.roa
File: QpHfGtAu82wqsOHx88IlcNQJCIM.roa (raw, json)
Hash identifier: O9QFKxxuO7fC/PMbCOLWZYzx2Cx4PW22VNvRMPHO/Hc=
Subject key identifier: 42:91:DF:1A:D0:2E:F3:6C:2A:B0:E1:F1:F3:C2:25:70:D4:09:08:83
Certificate issuer: /CN=52cd9a6512dbf25a5f19b827d7a2c7e22a2ee8dd
Certificate serial: 0188C115617EE0D10AAB412C9CC1803EDCD3
Authority key identifier: 52:CD:9A:65:12:DB:F2:5A:5F:19:B8:27:D7:A2:C7:E2:2A:2E:E8:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Us2aZRLb8lpfGbgn16LH4iou6N0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/QpHfGtAu82wqsOHx88IlcNQJCIM.roa
Signing time: Thu 15 Jun 2023 22:03:03 +0000
ROA not before: Thu 15 Jun 2023 22:03:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 36454
IP address blocks: 192.243.98.0/24 maxlen: 24
192.243.97.0/24 maxlen: 24
192.243.96.0/24 maxlen: 24
162.208.9.0/24 maxlen: 24
162.208.11.0/24 maxlen: 24
162.208.10.0/24 maxlen: 24
162.208.8.0/24 maxlen: 24
192.243.105.0/24 maxlen: 24
192.243.102.0/24 maxlen: 24
192.243.101.0/24 maxlen: 24
192.243.104.0/24 maxlen: 24
192.243.99.0/24 maxlen: 24
192.243.100.0/24 maxlen: 24
192.243.103.0/24 maxlen: 24
192.243.109.0/24 maxlen: 24
192.243.108.0/24 maxlen: 24
192.243.111.0/24 maxlen: 24
192.243.106.0/24 maxlen: 24
192.243.107.0/24 maxlen: 24
192.250.224.0/20 maxlen: 20
192.250.236.0/24 maxlen: 24
199.175.51.0/24 maxlen: 24
199.175.48.0/24 maxlen: 24
199.175.50.0/24 maxlen: 24
199.175.49.0/24 maxlen: 24
199.175.55.0/24 maxlen: 24
199.175.54.0/24 maxlen: 24
199.175.52.0/24 maxlen: 24
199.175.53.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 21 Sep 2023 09:35:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:c1:15:61:7e:e0:d1:0a:ab:41:2c:9c:c1:80:3e:dc:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52cd9a6512dbf25a5f19b827d7a2c7e22a2ee8dd
Validity
Not Before: Jun 15 22:03:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4291df1ad02ef36c2ab0e1f1f3c22570d4090883
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:ae:e4:ab:b3:b0:86:bc:3f:11:2e:6c:52:ab:
62:fd:2e:9f:ae:d0:12:87:4c:ec:d1:6f:98:ac:a6:
d0:a6:98:2d:59:36:e1:69:82:94:ad:30:2f:68:67:
c8:3c:83:7d:9c:03:96:27:8a:67:40:d6:98:9b:36:
01:d7:0b:95:85:28:12:ce:ef:50:8c:ca:fc:d0:50:
2c:1e:f4:73:9b:5f:ce:91:7f:fa:9d:6c:0c:5b:0c:
f8:5d:bb:0e:4a:73:1f:d5:26:32:b8:b3:b0:95:50:
b4:7e:11:58:21:7f:68:0f:6a:b8:51:a5:d0:78:0c:
a7:1b:3e:ae:c9:59:d7:1d:91:f9:82:0c:6d:55:ea:
9c:6b:41:ee:e7:0b:44:ad:e4:af:46:8c:f7:b2:40:
b7:3a:0b:1b:d2:d9:37:1f:e9:eb:ef:d8:37:4c:bf:
f6:7a:41:4e:b9:ca:26:b9:f6:a2:88:53:37:ea:43:
87:d0:67:d5:69:59:21:12:83:55:a5:4a:38:8a:5e:
9e:6e:36:8c:bf:53:c2:48:c2:8a:6f:89:e9:59:b4:
9f:cb:10:c2:e5:ba:62:a0:12:ff:0b:ae:7b:88:7e:
0c:3e:16:be:3c:13:ff:a7:d0:aa:37:f5:8c:0f:fa:
cc:55:b6:a5:7e:e1:e4:50:a0:ea:7c:a5:13:cb:f0:
a4:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:91:DF:1A:D0:2E:F3:6C:2A:B0:E1:F1:F3:C2:25:70:D4:09:08:83
X509v3 Authority Key Identifier:
keyid:52:CD:9A:65:12:DB:F2:5A:5F:19:B8:27:D7:A2:C7:E2:2A:2E:E8:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Us2aZRLb8lpfGbgn16LH4iou6N0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/QpHfGtAu82wqsOHx88IlcNQJCIM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
162.208.8.0/22
192.243.96.0-192.243.109.255
192.243.111.0/24
192.250.224.0/20
199.175.48.0/21
Signature Algorithm: sha256WithRSAEncryption
88:b2:fc:b7:d5:d3:08:93:fe:38:70:f5:96:b7:4a:9d:76:af:
d9:cc:c2:b0:b4:f1:07:8c:d6:68:ee:b6:f9:d1:ae:62:a5:99:
de:22:ab:b7:5d:1f:41:f5:3b:1e:e9:11:65:03:06:68:48:19:
38:5d:e4:1e:78:29:66:1a:b5:f9:65:70:75:06:57:39:ff:8b:
2f:9c:e1:bc:00:c8:10:66:fe:ff:c9:07:2a:62:bf:a9:e4:aa:
34:cd:8f:d3:46:b9:3e:5d:46:a1:1b:5d:11:e3:29:e0:72:56:
32:15:6c:64:9a:ed:12:17:93:25:a6:aa:43:fc:a8:74:26:e5:
cc:ec:30:5d:01:bd:05:8b:7f:27:04:45:21:5e:d1:de:b2:7d:
22:db:e8:b1:f2:eb:fa:d8:ec:bf:4f:c6:b8:b8:0c:d4:c3:3e:
5d:41:dd:f8:a1:65:18:93:14:36:ba:2d:15:2e:12:8e:51:dd:
75:5d:fc:30:71:8d:eb:ba:37:36:be:80:c8:ed:9a:36:b9:dc:
00:55:7c:00:c1:4f:16:3d:02:92:64:bc:7f:8d:b7:89:67:4e:
38:e0:af:50:bc:cc:ec:19:75:53:6b:e5:bd:3a:3c:9c:b2:2b:
dd:23:58:12:4a:91:3f:20:e3:e5:ed:6a:8f:b6:b6:98:28:38:
ca:a5:9c:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:27 2024 by rpki-client on console-ams.rpki-client.org