Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/qsmPLxSTBUuuVin5co82pcSeeQU.roa
File: qsmPLxSTBUuuVin5co82pcSeeQU.roa (raw, json)
Hash identifier: 1vtxtWt7mJrHBh6vFnSoZ74GEvX4utauBYfhd9raFtI=
Subject key identifier: AA:C9:8F:2F:14:93:05:4B:AE:56:29:F9:72:8F:36:A5:C4:9E:79:05
Certificate issuer: /CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Certificate serial: 018A4FC28C848136DA6AD0C648F61D60FC9B
Authority key identifier: 2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/qsmPLxSTBUuuVin5co82pcSeeQU.roa
Signing time: Fri 01 Sep 2023 08:01:04 +0000
ROA not before: Fri 01 Sep 2023 08:01:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 996
IP address blocks: 93.152.211.0/24 maxlen: 24
93.152.208.0/24 maxlen: 24
93.152.216.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:4f:c2:8c:84:81:36:da:6a:d0:c6:48:f6:1d:60:fc:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Validity
Not Before: Sep 1 08:01:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=aac98f2f1493054bae5629f9728f36a5c49e7905
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:ca:dd:5b:f8:e6:b7:f6:b9:43:22:7b:bc:37:
13:6d:ea:21:1f:dc:42:76:be:c0:45:b7:67:7c:49:
dc:62:ae:5c:f9:aa:2a:31:bd:67:61:c9:10:2b:ca:
37:6c:19:cb:32:69:9c:ce:f6:4b:71:ad:67:b2:20:
59:9b:0a:f9:29:9f:9c:89:04:0b:bd:4c:54:26:c2:
6a:ac:fe:8f:5c:75:00:ed:22:81:31:5d:80:b2:77:
05:27:f6:15:12:f0:4f:09:d9:b9:fa:4b:8d:cb:f1:
e6:ad:10:c8:cb:9b:29:26:13:42:f9:1b:73:8d:ef:
0b:bd:78:4b:fb:da:2f:d4:6b:12:d4:ec:71:71:00:
ef:85:21:33:8b:79:d1:d1:ff:1e:87:3f:2f:6e:c3:
1f:e0:78:a6:4f:6d:b0:a4:09:1e:ab:83:e8:c5:e2:
0f:68:0c:57:da:dd:07:7b:28:35:69:b7:75:20:dc:
e0:9c:61:90:a4:bb:aa:7d:42:51:e8:5a:61:11:3b:
d7:80:1c:36:ed:07:c8:97:cf:f1:7b:46:d4:8d:a3:
bb:42:5c:e0:f6:b5:a5:42:ac:32:6d:1d:7d:d2:3c:
af:32:11:10:b9:e7:b6:50:fd:67:c9:ad:42:e9:8c:
0b:e9:38:2a:99:21:70:e0:70:47:78:04:0d:e0:f5:
84:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:C9:8F:2F:14:93:05:4B:AE:56:29:F9:72:8F:36:A5:C4:9E:79:05
X509v3 Authority Key Identifier:
keyid:2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/qsmPLxSTBUuuVin5co82pcSeeQU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/LRyqaTWPjJj3pxnyWX1drdvQAYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.152.208.0/24
93.152.211.0/24
93.152.216.0/24
Signature Algorithm: sha256WithRSAEncryption
47:fa:ac:6d:ab:fc:b9:16:d6:8a:b6:cb:c8:0e:c0:9d:bf:0f:
61:50:d3:66:ba:15:8b:84:9a:67:50:b1:4a:5c:e9:22:1e:60:
ce:ba:cd:1d:2a:6b:bd:3a:0f:d6:e0:ed:59:0a:d8:bf:e7:da:
5b:a3:c3:5f:52:53:4b:a4:a1:d0:2e:f8:12:69:02:a2:60:b5:
19:9c:da:26:29:95:90:86:55:ba:5a:1e:b6:1d:ec:6b:b9:cf:
f3:67:1b:a7:21:e5:62:72:3d:3c:09:45:30:8a:b1:8a:a3:ce:
59:99:0a:76:6d:b0:56:d1:57:5e:54:00:83:f8:0d:22:d7:47:
ab:91:a0:52:fc:2d:ff:64:1f:27:79:17:61:4b:4f:df:d3:1e:
87:d6:02:f6:8b:07:ef:89:d6:97:6b:b4:a8:37:a4:d2:ff:71:
dc:a2:a0:f4:16:79:84:53:14:30:a0:c9:6a:bd:50:11:78:14:
a4:b4:ab:6b:24:3c:b8:57:b9:bf:0c:7e:4a:50:08:7c:2e:79:
94:58:25:aa:d6:f1:57:fb:22:be:3e:60:14:e4:f7:1b:b5:81:
ff:75:4e:ca:aa:bd:e6:ea:ac:21:c6:11:2d:07:52:99:74:29:
40:c6:40:6d:71:c0:87:20:99:ba:f8:5d:9c:49:b7:d3:20:63:
4a:85:db:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 08:54:36 2023 by rpki-client on console-ams.rpki-client.org