Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/pqo7rD2s4S6K59Hy_fGIvjEGz_A.roa
File: pqo7rD2s4S6K59Hy_fGIvjEGz_A.roa (raw, json)
Hash identifier: vDkevRL3MnaqF4AMcYkrQFaFL9p0JrwiobjA5gHPcYE=
Subject key identifier: A6:AA:3B:AC:3D:AC:E1:2E:8A:E7:D1:F2:FD:F1:88:BE:31:06:CF:F0
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 01870D53C69E5787724C18242AC5CDF6CDC9
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/pqo7rD2s4S6K59Hy_fGIvjEGz_A.roa
Signing time: Thu 23 Mar 2023 07:16:46 +0000
ROA not before: Thu 23 Mar 2023 07:16:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202485
IP address blocks: 92.52.217.0/24 maxlen: 24
83.137.156.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 04 Apr 2023 14:44:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:0d:53:c6:9e:57:87:72:4c:18:24:2a:c5:cd:f6:cd:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: Mar 23 07:16:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a6aa3bac3dace12e8ae7d1f2fdf188be3106cff0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:21:7e:15:e3:4c:1c:08:49:82:ee:2b:c7:92:
be:1d:0a:26:5f:e8:92:3d:a1:bc:7b:35:50:63:7d:
60:76:97:60:da:01:de:69:4b:0f:14:93:51:80:9a:
d0:3b:d6:ec:10:98:9a:02:70:14:5d:f1:fa:6c:69:
46:a7:db:97:4e:05:73:d1:4c:ab:59:18:11:56:e9:
24:6f:ac:01:85:2a:32:d7:52:9e:a4:79:55:0f:a7:
7e:fd:50:29:09:2a:69:ca:a8:62:20:6f:fe:eb:21:
4a:1c:c0:d2:1d:3d:9d:fc:eb:13:72:ef:0f:8d:ea:
61:8d:06:18:85:37:b0:01:d0:14:1b:92:d4:03:d0:
c4:30:da:92:fc:29:b4:50:a8:75:73:b3:a7:0d:58:
c3:6d:bf:6c:41:18:8e:5a:84:e7:2f:cb:1b:1e:79:
96:aa:57:07:62:24:d5:5d:b5:4a:57:73:84:1b:c9:
b5:3f:cf:39:4f:33:5a:5a:c7:d6:aa:b9:2a:b6:5f:
79:9c:0b:4d:03:f6:2f:1b:cb:bb:b4:39:a0:80:e9:
2e:c7:57:ee:fb:f2:45:de:96:2e:17:e5:15:af:6e:
59:39:0d:a7:26:b3:73:f9:76:c3:1c:e7:66:34:c9:
7d:6b:6e:0a:23:4c:cd:6e:70:42:91:51:30:26:e7:
89:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:AA:3B:AC:3D:AC:E1:2E:8A:E7:D1:F2:FD:F1:88:BE:31:06:CF:F0
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/pqo7rD2s4S6K59Hy_fGIvjEGz_A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.137.156.0/24
92.52.217.0/24
Signature Algorithm: sha256WithRSAEncryption
74:ba:44:2e:1d:c0:0c:8c:99:57:6a:f0:1e:6d:4f:57:5c:a1:
f6:bd:6e:9c:dd:88:2a:3e:9d:d4:40:ca:5d:46:77:71:33:0c:
55:58:08:6a:ef:d8:93:f7:58:49:92:03:fa:66:c3:9f:af:90:
30:eb:a4:00:b2:bb:11:79:c6:05:4d:47:62:73:c1:3e:92:b7:
ad:01:8b:27:fa:ff:7c:04:4e:e7:a4:62:87:80:58:7b:ce:b5:
a9:bf:fc:df:40:d5:5d:99:b3:09:8d:9d:f3:e3:4b:07:74:3e:
1a:90:e7:a8:7b:cf:b2:c6:ed:fd:ab:11:79:7b:ce:c6:9a:a6:
99:f1:54:38:b5:b1:32:a4:cf:f7:59:be:d1:2f:91:cd:e8:35:
91:8b:41:02:87:95:bb:53:7b:af:ea:24:97:57:c7:ac:3a:c4:
94:39:68:93:49:09:20:dd:6e:cb:a3:34:bf:35:a4:8d:bd:d1:
f1:0b:98:16:68:f4:7c:e8:6a:44:01:c5:f5:a1:8f:a2:21:71:
2a:9e:83:c6:b4:bf:cc:ab:00:94:4d:dd:b8:36:39:e6:90:dd:
97:55:9a:94:c0:01:15:60:93:7b:bb:20:8f:99:2d:b1:5e:c7:
6f:ea:d4:dc:36:ed:65:08:9b:6b:fd:30:45:8c:97:bf:2f:1d:
28:92:50:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:28 2024 by rpki-client on console-fra.rpki-client.org