Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/qQru2Y7hxnb7cZ5faK4Utkb3saI.roa
File: qQru2Y7hxnb7cZ5faK4Utkb3saI.roa (raw, json)
Hash identifier: ekCMTgxsrGCQmS2hjW1pjtouantU+A3awK4Y2eSy3Ck=
Subject key identifier: A9:0A:EE:D9:8E:E1:C6:76:FB:71:9E:5F:68:AE:14:B6:46:F7:B1:A2
Certificate issuer: /CN=c68c65e699b576ab113a79be8828948f1e6cc260
Certificate serial: 018CC7270E1C65286E8549AD95EA9EB4A5C8
Authority key identifier: C6:8C:65:E6:99:B5:76:AB:11:3A:79:BE:88:28:94:8F:1E:6C:C2:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xoxl5pm1dqsROnm-iCiUjx5swmA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/qQru2Y7hxnb7cZ5faK4Utkb3saI.roa
Signing time: Mon 01 Jan 2024 22:31:14 +0000
ROA not before: Mon 01 Jan 2024 22:31:14 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 82.115.217.0/24 maxlen: 24
45.140.211.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 01 Mar 2024 14:42:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:27:0e:1c:65:28:6e:85:49:ad:95:ea:9e:b4:a5:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c68c65e699b576ab113a79be8828948f1e6cc260
Validity
Not Before: Jan 1 22:31:14 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a90aeed98ee1c676fb719e5f68ae14b646f7b1a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:b8:5e:60:c3:9c:d9:74:84:08:c9:70:5a:ef:
2d:45:81:97:da:a1:53:3e:a5:c4:fb:37:f2:b6:5f:
0a:0e:8c:0b:24:b4:9e:12:84:8d:7c:3b:ca:71:5d:
f7:16:4c:c0:ee:c2:df:cc:2c:ad:a8:4d:74:06:52:
b4:7f:6a:e8:96:d7:76:97:37:7e:f6:4b:11:48:43:
3b:1a:f8:2f:0e:a3:8d:fc:56:6e:e2:4b:cf:2d:b6:
d4:d3:bb:60:ce:1e:92:3f:93:f2:96:7b:d0:d0:77:
fd:71:1b:9d:4b:59:63:d3:75:a4:aa:70:2c:51:86:
f8:4b:c2:16:29:b4:0c:d2:36:6c:ca:90:d4:24:4e:
5d:c8:32:00:63:7f:38:a8:c4:55:54:e7:c1:6b:d0:
b8:d0:da:b7:64:81:70:ce:34:27:eb:00:ff:0a:12:
20:9a:69:34:6a:01:de:65:9e:24:83:2e:21:9d:52:
34:74:74:5f:a1:95:3e:85:b0:66:18:22:92:8c:6b:
80:91:5c:66:7e:49:b5:b5:c5:26:7d:ba:96:50:48:
0a:0b:bf:1d:6a:0b:65:e6:e0:46:e9:05:f0:f8:6a:
4b:ea:9b:11:69:c2:41:f2:cb:db:d3:82:57:32:da:
db:9e:e1:74:e4:25:d8:79:a9:c5:fd:1f:0f:3c:a5:
a0:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:0A:EE:D9:8E:E1:C6:76:FB:71:9E:5F:68:AE:14:B6:46:F7:B1:A2
X509v3 Authority Key Identifier:
keyid:C6:8C:65:E6:99:B5:76:AB:11:3A:79:BE:88:28:94:8F:1E:6C:C2:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xoxl5pm1dqsROnm-iCiUjx5swmA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/qQru2Y7hxnb7cZ5faK4Utkb3saI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/xoxl5pm1dqsROnm-iCiUjx5swmA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.140.211.0/24
82.115.217.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:bf:ad:bf:14:22:f3:1d:31:f2:a3:a5:b0:c8:84:39:dd:69:
46:e0:9f:1d:6e:a6:ec:a5:c7:96:38:dd:8e:a0:1f:5c:5f:b7:
f7:d7:dc:e3:45:de:81:53:0e:9b:2a:dd:25:ec:fd:64:d6:2f:
53:24:e0:7d:6d:70:02:62:36:df:ff:0d:50:fe:d6:b4:94:27:
22:8f:90:e8:a3:78:f3:8c:2e:23:27:43:0e:11:96:f3:47:c4:
49:03:63:5a:05:c6:3d:6e:4a:69:65:54:8b:9b:77:f3:fa:e3:
49:6c:13:37:bb:c9:2b:59:e3:4e:42:ea:d9:69:1d:07:47:c7:
fe:7a:d6:68:a3:2a:ed:4f:0b:5f:9e:b0:e8:86:87:db:44:24:
8d:c3:83:fa:23:d3:12:2c:a2:8c:8c:6d:98:72:8f:6c:ba:3f:
9e:52:18:72:04:2f:c0:ca:84:15:3e:9d:b5:8f:5a:3a:86:94:
08:cc:6c:70:83:64:84:92:92:e9:5f:fd:fa:c3:d5:62:6c:30:
dd:e3:78:a0:fc:8c:f0:9b:e6:f2:24:44:64:9e:4e:a9:f6:89:
21:11:92:8e:9e:fe:b6:1c:ba:16:b6:89:07:e5:33:14:69:55:
10:9a:5b:d2:27:00:0e:20:24:df:42:70:7b:96:30:ad:8a:94:
be:e6:4d:a7
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYzHJw4cZShuhUmtleqetKXIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM2OGM2NWU2OTliNTc2YWIxMTNhNzliZTg4Mjg5NDhmMWU2
Y2MyNjAwHhcNMjQwMTAxMjIzMTE0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhOTBhZWVkOThlZTFjNjc2ZmI3MTllNWY2OGFlMTRiNjQ2ZjdiMWEyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAprheYMOc2XSECMlwWu8tRYGX2qFT
PqXE+zfytl8KDowLJLSeEoSNfDvKcV33FkzA7sLfzCytqE10BlK0f2roltd2lzd+
9ksRSEM7GvgvDqON/FZu4kvPLbbU07tgzh6SP5PylnvQ0Hf9cRudS1lj03WkqnAs
UYb4S8IWKbQM0jZsypDUJE5dyDIAY384qMRVVOfBa9C40Nq3ZIFwzjQn6wD/ChIg
mmk0agHeZZ4kgy4hnVI0dHRfoZU+hbBmGCKSjGuAkVxmfkm1tcUmfbqWUEgKC78d
agtl5uBG6QXw+GpL6psRacJB8svb04JXMtrbnuF05CXYeanF/R8PPKWgpQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFKkK7tmO4cZ2+3GeX2iuFLZG97GiMB8GA1UdIwQY
MBaAFMaMZeaZtXarETp5vogolI8ebMJgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveG94bDVwbTFkcXNST25tLWlDaVVqeDVzd21BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOS8zNDBjNzMtNzllZS00OTI2LThlNGYt
NjA3ZDRmMzdmNTlmLzEvcVFydTJZN2h4bmI3Y1o1ZmFLNFV0a2Izc2FJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xOS8zNDBjNzMtNzllZS00OTI2LThlNGYtNjA3ZDRmMzdmNTlm
LzEveG94bDVwbTFkcXNST25tLWlDaVVqeDVzd21BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQALYzTAwQA
UnPZMA0GCSqGSIb3DQEBCwUAA4IBAQAcv62/FCLzHTHyo6WwyIQ53WlG4J8dbqbs
pceWON2OoB9cX7f319zjRd6BUw6bKt0l7P1k1i9TJOB9bXACYjbf/w1Q/ta0lCci
j5Doo3jzjC4jJ0MOEZbzR8RJA2NaBcY9bkppZVSLm3fz+uNJbBM3u8krWeNOQurZ
aR0HR8f+etZooyrtTwtfnrDohofbRCSNw4P6I9MSLKKMjG2Yco9suj+eUhhyBC/A
yoQVPp21j1o6hpQIzGxwg2SEkpLpX/36w9VibDDd43ig/Izwm+byJERknk6p9okh
EZKOnv62HLoWtokH5TMUaVUQmlvSJwAOICTfQnB7ljCtipS+5k2n
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:00 2024 by rpki-client on console-fra.rpki-client.org