Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/QnN0zbJu0wJ04bkk87MMIcBgj9o.roa
File: QnN0zbJu0wJ04bkk87MMIcBgj9o.roa (raw, json)
Hash identifier: I0pnxdabPkl+ivpy1FKBnwEtNM/iAXiZdZfu8WAf3WM=
Subject key identifier: 42:73:74:CD:B2:6E:D3:02:74:E1:B9:24:F3:B3:0C:21:C0:60:8F:DA
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 018726DE50E681EFAEF1FEB70ADFEF7FE949
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/QnN0zbJu0wJ04bkk87MMIcBgj9o.roa
Signing time: Tue 28 Mar 2023 06:18:36 +0000
ROA not before: Tue 28 Mar 2023 06:18:36 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208476
IP address blocks: 88.209.253.0/24 maxlen: 24
83.137.158.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:26:de:50:e6:81:ef:ae:f1:fe:b7:0a:df:ef:7f:e9:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: Mar 28 06:18:36 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=427374cdb26ed30274e1b924f3b30c21c0608fda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:ca:07:5f:86:37:30:9b:54:0f:44:29:3d:9d:
c0:31:da:ea:ac:79:36:24:9b:2a:dc:76:b5:8e:c0:
38:b8:96:5b:f0:08:1c:1e:6f:3a:0a:89:90:60:f2:
b6:96:a9:41:8e:7b:09:1f:4f:f0:54:09:43:e9:14:
fc:dd:26:18:50:29:6f:5a:69:9b:97:bd:85:ba:cb:
97:61:24:62:0b:b1:2e:de:12:c4:f4:1a:ee:64:17:
4f:f2:a4:3b:19:a3:f6:8f:d1:a4:21:c3:e4:0c:64:
31:6e:dc:fe:86:d8:9c:3d:1e:4a:b7:ad:09:37:06:
f7:98:49:12:94:84:cd:97:c1:cb:66:6e:57:27:06:
d9:08:49:a9:6b:45:22:30:de:d3:89:4c:3e:ee:94:
b0:49:39:ab:c3:e7:00:2a:d2:8d:97:c5:0a:10:96:
5e:42:41:80:77:c9:e1:6c:98:cc:0d:12:f8:ed:6a:
45:35:53:18:30:68:dd:db:b3:2c:79:5d:00:ac:70:
2f:fa:88:e3:6a:f2:03:e7:2e:7a:e5:b0:f6:c2:fa:
cf:ff:3a:87:39:b1:cd:89:d6:2b:79:2e:4d:27:46:
b7:58:d1:5b:09:ec:2b:7b:15:9a:af:a1:6a:45:9b:
ff:c7:c4:5c:80:af:86:2a:81:f0:1d:8e:3b:7c:93:
a9:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:73:74:CD:B2:6E:D3:02:74:E1:B9:24:F3:B3:0C:21:C0:60:8F:DA
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/QnN0zbJu0wJ04bkk87MMIcBgj9o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.137.158.0/24
88.209.253.0/24
Signature Algorithm: sha256WithRSAEncryption
89:64:9d:2f:e2:73:06:eb:fb:0a:35:e4:c3:b9:6c:89:4a:36:
d9:79:f3:0b:dc:d1:21:c3:86:ed:83:25:7f:5c:22:fa:55:61:
fc:0c:99:f4:cf:d2:8b:a9:4c:36:9d:97:ac:28:f5:15:09:4c:
80:63:6a:f1:42:fc:77:5b:9e:a2:45:2b:f1:71:32:55:d8:6d:
9e:61:56:ed:56:d5:42:02:87:c7:ce:e7:c4:dd:5e:51:25:29:
8e:8c:74:13:e0:45:97:82:53:a1:77:bd:3b:ff:23:d9:d4:5a:
02:b5:f0:99:d6:4c:ae:5e:01:a6:c6:eb:27:00:26:11:5a:08:
7c:01:25:db:2f:91:92:dd:79:44:a4:e9:f3:17:c9:fc:da:59:
77:bd:8b:72:42:6a:78:30:24:14:e0:c8:57:5f:27:a4:0a:81:
e8:8f:0a:08:b2:57:07:c5:13:72:7b:ff:04:54:1a:99:e5:e2:
6c:22:52:0d:fd:b7:8a:89:80:21:fa:04:d6:fe:a9:44:36:fe:
7d:af:cb:3d:4e:49:d1:79:1e:3f:3b:11:3c:11:b4:f9:51:29:
4f:48:92:b2:bb:04:70:b1:6c:9f:6a:3a:5e:f2:98:f5:02:72:
2d:52:ab:ee:9d:67:c1:b9:f9:14:ac:d2:9b:75:bf:11:8d:7d:
f8:85:a1:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:01 2023 by rpki-client on console-fra.rpki-client.org