Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/9ba38a-4852-413d-9cd2-9990e2d9eafe/1/EqyCG5U9kYjxrqDBet1pm9mskEM.roa
File: EqyCG5U9kYjxrqDBet1pm9mskEM.roa (raw, json)
Hash identifier: tX/foxNaUB9ET/J94GueYbjFByWcFibmEDxcE2jZ2nw=
Subject key identifier: 12:AC:82:1B:95:3D:91:88:F1:AE:A0:C1:7A:DD:69:9B:D9:AC:90:43
Certificate issuer: /CN=1e5b334965788794d6f147a2f004d13be3257dc4
Certificate serial: 018B4E74BFE1B826B923B45D840FBBB92A97
Authority key identifier: 1E:5B:33:49:65:78:87:94:D6:F1:47:A2:F0:04:D1:3B:E3:25:7D:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HlszSWV4h5TW8Uei8ATRO-MlfcQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/9ba38a-4852-413d-9cd2-9990e2d9eafe/1/EqyCG5U9kYjxrqDBet1pm9mskEM.roa
Signing time: Fri 20 Oct 2023 18:59:16 +0000
ROA not before: Fri 20 Oct 2023 18:59:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 152.89.192.0/24 maxlen: 24
152.89.193.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:35:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:4e:74:bf:e1:b8:26:b9:23:b4:5d:84:0f:bb:b9:2a:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e5b334965788794d6f147a2f004d13be3257dc4
Validity
Not Before: Oct 20 18:59:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=12ac821b953d9188f1aea0c17add699bd9ac9043
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:da:5b:ca:24:1c:73:bf:b9:99:43:d6:b9:96:
08:4e:b8:5f:73:ef:d1:45:59:b2:6b:f4:75:1d:5f:
46:02:04:21:9c:7d:3b:2d:a9:1e:87:a2:6c:a6:6a:
72:ea:68:ae:87:c4:5e:60:10:b7:98:47:8c:39:6e:
58:78:41:b6:83:f9:16:19:32:03:de:b5:d4:16:5a:
fc:b9:9c:f7:15:54:43:cf:8c:14:90:42:0f:c6:c7:
32:dd:92:54:29:0d:91:42:5e:aa:01:59:60:3b:09:
1b:f2:d7:2a:d6:f7:2d:57:ee:7c:f7:24:4e:a0:4f:
c6:ac:fc:7b:77:0e:1c:b8:a3:14:57:6e:51:73:b4:
59:5a:8e:3a:12:67:ec:21:e6:ae:4f:c0:82:9b:0d:
ac:be:13:5e:c4:bc:24:7a:e8:84:73:a3:7e:26:d7:
f5:58:59:fe:a6:2e:4d:7d:4e:43:61:a1:70:9a:4f:
cf:73:92:69:3b:3d:8b:40:61:a7:cb:25:09:d8:eb:
f2:dd:25:55:57:75:d2:78:c2:c7:6e:99:94:f3:bc:
03:6a:80:f9:c8:a0:ca:26:a3:6c:d8:aa:4d:48:f4:
fe:88:c5:1c:d9:44:6a:59:34:4f:b0:b7:c8:ff:f2:
94:c5:9e:24:cf:dc:ef:30:66:9e:4f:cd:f5:53:2e:
33:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:AC:82:1B:95:3D:91:88:F1:AE:A0:C1:7A:DD:69:9B:D9:AC:90:43
X509v3 Authority Key Identifier:
keyid:1E:5B:33:49:65:78:87:94:D6:F1:47:A2:F0:04:D1:3B:E3:25:7D:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HlszSWV4h5TW8Uei8ATRO-MlfcQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/9ba38a-4852-413d-9cd2-9990e2d9eafe/1/EqyCG5U9kYjxrqDBet1pm9mskEM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/9ba38a-4852-413d-9cd2-9990e2d9eafe/1/HlszSWV4h5TW8Uei8ATRO-MlfcQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
152.89.192.0/23
Signature Algorithm: sha256WithRSAEncryption
03:1e:7c:f8:95:8c:66:57:be:da:d5:89:1e:04:30:2c:8d:e5:
8f:02:55:6e:aa:79:8e:8b:2a:74:a7:ce:d0:84:06:3e:45:89:
d7:dc:ae:45:06:f8:55:73:cc:4f:42:a2:c3:41:de:4a:ad:61:
39:46:74:fa:b1:8d:42:2d:39:a2:05:68:41:86:34:27:02:68:
ce:fd:5f:83:16:7c:70:0e:d8:33:5a:59:91:1d:f0:40:a4:d7:
c9:d6:31:81:b4:b9:2c:d4:be:95:01:ae:52:e9:e2:4a:86:9c:
de:00:65:64:09:cc:0d:0f:33:de:d0:66:b4:26:0d:0b:e7:ba:
f8:21:d1:0b:f8:85:4f:e7:c0:47:c0:d9:59:66:3b:ff:30:3b:
1e:e4:f4:f5:68:22:20:1a:f1:46:00:ac:6a:26:8c:c2:f6:e8:
4d:c8:b1:49:29:19:e4:ae:47:65:c4:9e:65:c1:89:bf:63:15:
c4:8b:97:a6:ca:a6:07:2d:06:6a:17:82:6c:c1:d9:28:04:f5:
3e:31:34:f3:97:15:74:78:99:34:9c:c5:1f:a0:f3:37:76:5e:
61:da:cb:44:b4:08:15:f1:19:f9:27:23:3e:c2:aa:8c:ef:00:
e7:68:ed:bd:3b:87:20:a3:4a:55:ef:c0:6b:8f:c8:4e:0f:10:
34:50:e2:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:30 2024 by rpki-client on console-fra.rpki-client.org