Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/9ba38a-4852-413d-9cd2-9990e2d9eafe/1/qcD1RwAmVcXookSCcjOKJMhOZUI.roa
File: qcD1RwAmVcXookSCcjOKJMhOZUI.roa (raw, json)
Hash identifier: XBHhQNtXqm6lElfhES6FahpqYimJZnXjRnmUgMW92+Y=
Subject key identifier: A9:C0:F5:47:00:26:55:C5:E8:A2:44:82:72:33:8A:24:C8:4E:65:42
Certificate issuer: /CN=1e5b334965788794d6f147a2f004d13be3257dc4
Certificate serial: 0189741123026846231D33548F6321EB7021
Authority key identifier: 1E:5B:33:49:65:78:87:94:D6:F1:47:A2:F0:04:D1:3B:E3:25:7D:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HlszSWV4h5TW8Uei8ATRO-MlfcQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/9ba38a-4852-413d-9cd2-9990e2d9eafe/1/qcD1RwAmVcXookSCcjOKJMhOZUI.roa
Signing time: Thu 20 Jul 2023 16:10:27 +0000
ROA not before: Thu 20 Jul 2023 16:10:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 152.89.192.0/24 maxlen: 24
152.89.193.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 18 Oct 2023 19:59:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:74:11:23:02:68:46:23:1d:33:54:8f:63:21:eb:70:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e5b334965788794d6f147a2f004d13be3257dc4
Validity
Not Before: Jul 20 16:10:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a9c0f547002655c5e8a2448272338a24c84e6542
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:db:de:75:22:91:f3:67:f2:b8:9d:59:53:3d:
93:d2:b9:ef:16:85:a0:70:a9:ce:6e:04:81:fb:e1:
41:c8:4f:82:f3:31:c8:a9:50:18:79:1d:90:1d:98:
1e:54:96:75:a5:d5:36:3d:f1:66:14:e7:a3:5c:2c:
2d:bd:13:af:0b:2f:9f:a5:ac:04:a0:ce:e9:c1:37:
3a:42:e9:82:d6:87:62:76:2b:ac:2f:60:9c:89:03:
37:21:5f:f1:ca:12:84:0b:77:5b:ba:28:e6:30:52:
b2:78:32:57:d8:2d:99:ef:1d:8f:34:4b:6e:f6:82:
a9:7b:32:1e:a3:1f:48:76:24:09:40:40:19:1f:e1:
97:43:fd:39:dc:a7:06:af:f5:88:84:3d:93:cc:c8:
6e:f2:f0:ad:33:49:a8:2c:9a:43:2d:47:42:d4:d9:
00:64:6f:ca:4d:3d:20:01:c3:c5:53:f8:32:bf:4c:
a9:0c:b2:21:02:a4:84:e8:20:d2:1d:09:58:68:e4:
5d:7a:cc:3c:6e:39:54:04:ba:fb:76:e2:ed:fe:4c:
08:b4:75:9b:1a:70:d0:92:3b:e2:90:2a:06:61:b4:
3e:96:9a:47:13:78:0c:3e:78:97:54:67:7d:78:47:
a2:ad:14:d1:03:f6:1d:db:e7:3e:db:83:af:0f:ae:
87:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:C0:F5:47:00:26:55:C5:E8:A2:44:82:72:33:8A:24:C8:4E:65:42
X509v3 Authority Key Identifier:
keyid:1E:5B:33:49:65:78:87:94:D6:F1:47:A2:F0:04:D1:3B:E3:25:7D:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HlszSWV4h5TW8Uei8ATRO-MlfcQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/9ba38a-4852-413d-9cd2-9990e2d9eafe/1/qcD1RwAmVcXookSCcjOKJMhOZUI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/9ba38a-4852-413d-9cd2-9990e2d9eafe/1/HlszSWV4h5TW8Uei8ATRO-MlfcQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
152.89.192.0/23
Signature Algorithm: sha256WithRSAEncryption
2d:cf:ec:78:e7:e4:cc:c8:f3:27:6c:57:56:81:3a:cc:c0:31:
9c:7c:8a:6c:ff:34:06:19:87:9d:d0:21:2c:0d:2a:16:9d:fc:
f4:db:56:a7:7a:b6:25:12:4f:6a:5b:7c:19:32:c1:ba:0b:d9:
65:0f:24:ed:9e:f3:26:b1:6d:f6:b3:ea:91:8b:65:e4:d2:f4:
f4:d1:41:9f:ac:81:e2:07:0b:36:a7:6f:78:87:70:3e:50:a9:
a9:d2:39:a4:5c:9a:7e:d1:ac:44:30:bf:4b:9c:1e:7e:23:2f:
ea:88:ff:b9:a2:a3:85:76:c8:e0:e6:ae:29:73:92:60:39:b5:
fe:2f:60:d5:38:bb:81:6e:b4:54:4a:7c:2b:e9:b6:d3:7f:7a:
27:7d:03:c2:67:a6:04:63:83:61:3c:c3:ea:a9:bd:09:18:49:
20:a4:83:5f:c5:c6:27:f4:ea:0d:24:fe:67:80:5a:40:4d:08:
ff:e0:53:98:9b:96:89:09:c9:cf:39:0a:b8:90:31:d1:01:84:
32:a8:13:c2:6b:d1:fe:ff:92:93:a7:a4:4c:9e:4b:4e:f5:2a:
99:bc:ca:73:dc:92:a8:00:e7:a0:84:32:27:5d:7c:11:30:aa:
5c:8b:fb:dd:ff:1d:6b:4d:76:0a:90:02:2d:8d:07:a6:a5:31:
81:60:47:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:30 2024 by rpki-client on console-fra.rpki-client.org