Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/38c694-23a7-48b2-aaec-6c8fd0bc5b00/1/QQm0dDQfKC_qJgiJHABhVCHnPm4.roa
File: QQm0dDQfKC_qJgiJHABhVCHnPm4.roa (raw, json)
Hash identifier: qDnLHnpJmg9znMOdqz9MDIAVgqs0YYrwB2EBSdSouUA=
Subject key identifier: 41:09:B4:74:34:1F:28:2F:EA:26:08:89:1C:00:61:54:21:E7:3E:6E
Certificate issuer: /CN=3950303615aca6e5f6f5b5691c7c2c8dca5f234d
Certificate serial: 01856ED4A7A09110C33DA09E01D7682416AD
Authority key identifier: 39:50:30:36:15:AC:A6:E5:F6:F5:B5:69:1C:7C:2C:8D:CA:5F:23:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OVAwNhWspuX29bVpHHwsjcpfI00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/38c694-23a7-48b2-aaec-6c8fd0bc5b00/1/QQm0dDQfKC_qJgiJHABhVCHnPm4.roa
Signing time: Sun 01 Jan 2023 19:35:08 +0000
ROA not before: Sun 01 Jan 2023 19:35:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50979
IP address blocks: 2a02:27ac::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:d4:a7:a0:91:10:c3:3d:a0:9e:01:d7:68:24:16:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3950303615aca6e5f6f5b5691c7c2c8dca5f234d
Validity
Not Before: Jan 1 19:35:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4109b474341f282fea2608891c00615421e73e6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:a2:30:dc:99:b8:23:13:13:cc:e7:73:a2:bc:
81:b4:f9:bc:9b:44:ff:7f:34:e9:94:a7:05:8c:b2:
48:86:89:7f:ee:d5:41:35:e2:cf:10:3c:bc:f4:19:
c2:2f:5e:91:ae:c0:51:be:be:cd:48:39:95:f9:95:
b9:64:41:c5:a1:4f:7e:e6:96:8c:ef:1e:4a:a0:3f:
58:46:46:ae:19:31:c3:84:ce:c0:bf:c0:77:76:61:
63:13:1d:35:a3:02:74:f4:3b:34:c8:d8:ed:34:1a:
12:4a:ba:1f:51:62:4b:60:ba:aa:f7:36:a4:81:3c:
b4:db:ed:f5:2d:d0:d6:fd:ee:92:b5:22:ac:e9:d0:
ae:a6:0d:93:06:d5:72:3d:83:b8:b5:02:8e:3f:28:
0f:5e:c2:59:6f:43:1d:ea:20:60:c9:d2:ae:ac:87:
18:ad:6a:0a:39:52:6b:12:16:61:77:d0:3b:00:3f:
2c:a3:52:c3:00:29:5b:04:58:f9:1f:e7:b4:6e:6f:
41:67:6c:1b:9a:d1:df:e3:64:90:fb:15:f1:45:24:
dd:a8:76:cb:18:fc:9b:97:78:34:89:1e:62:04:7e:
90:b2:76:df:81:d9:58:98:6a:8f:e4:7a:91:30:53:
e6:09:74:42:5b:42:ad:0b:23:a4:14:98:e5:10:09:
d2:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:09:B4:74:34:1F:28:2F:EA:26:08:89:1C:00:61:54:21:E7:3E:6E
X509v3 Authority Key Identifier:
keyid:39:50:30:36:15:AC:A6:E5:F6:F5:B5:69:1C:7C:2C:8D:CA:5F:23:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OVAwNhWspuX29bVpHHwsjcpfI00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/38c694-23a7-48b2-aaec-6c8fd0bc5b00/1/QQm0dDQfKC_qJgiJHABhVCHnPm4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/38c694-23a7-48b2-aaec-6c8fd0bc5b00/1/OVAwNhWspuX29bVpHHwsjcpfI00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:27ac::/32
Signature Algorithm: sha256WithRSAEncryption
04:9a:16:08:a2:e6:cb:a7:89:d2:5a:51:fb:42:6e:9b:2e:c1:
04:08:02:0e:52:a4:31:90:38:b7:cd:47:e4:0b:3a:02:44:62:
fe:93:79:7d:69:bb:fc:dc:d5:0c:09:ba:c6:3b:ba:ea:de:27:
6d:c6:4f:d8:51:62:bf:c3:b5:21:65:6a:41:63:45:63:08:bc:
19:86:14:20:2d:d3:ab:db:d4:b5:e2:01:00:4f:56:05:e7:1f:
33:2b:28:42:5e:35:69:1b:a6:09:45:1e:3b:05:69:de:40:9e:
af:49:59:4d:4a:2c:58:73:2a:3b:11:bc:b8:51:96:07:da:59:
a1:06:39:69:6c:94:71:f8:a7:cd:29:58:58:4c:eb:59:af:64:
3e:8b:b2:9e:40:5f:26:66:02:9b:e3:45:b5:0c:f2:dd:8b:aa:
04:2f:12:bc:dd:65:e0:8b:f4:c8:d1:39:91:9b:ac:17:d6:c3:
9d:0e:11:1c:99:f1:fd:b5:34:79:66:72:22:9a:35:34:28:a3:
ac:1a:70:89:e9:1b:b7:b6:93:9f:d5:42:e2:a4:45:4b:bf:21:
ec:34:de:19:3b:7a:e6:1b:b7:d5:01:c7:51:60:da:bc:85:9a:
9b:82:22:ae:3e:70:3f:79:55:8a:01:7b:60:0f:e1:a3:d3:7c:
98:d2:e0:f9
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYVu1KegkRDDPaCeAddoJBatMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM5NTAzMDM2MTVhY2E2ZTVmNmY1YjU2OTFjN2MyYzhkY2E1
ZjIzNGQwHhcNMjMwMTAxMTkzNTA4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0MTA5YjQ3NDM0MWYyODJmZWEyNjA4ODkxYzAwNjE1NDIxZTczZTZlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzKIw3Jm4IxMTzOdzoryBtPm8m0T/
fzTplKcFjLJIhol/7tVBNeLPEDy89BnCL16RrsBRvr7NSDmV+ZW5ZEHFoU9+5paM
7x5KoD9YRkauGTHDhM7Av8B3dmFjEx01owJ09Ds0yNjtNBoSSrofUWJLYLqq9zak
gTy02+31LdDW/e6StSKs6dCupg2TBtVyPYO4tQKOPygPXsJZb0Md6iBgydKurIcY
rWoKOVJrEhZhd9A7AD8so1LDAClbBFj5H+e0bm9BZ2wbmtHf42SQ+xXxRSTdqHbL
GPybl3g0iR5iBH6QsnbfgdlYmGqP5HqRMFPmCXRCW0KtCyOkFJjlEAnSiwIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFEEJtHQ0Hygv6iYIiRwAYVQh5z5uMB8GA1UdIwQY
MBaAFDlQMDYVrKbl9vW1aRx8LI3KXyNNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT1ZBd05oV3NwdVgyOWJWcEhId3NqY3BmSTAwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYi8zOGM2OTQtMjNhNy00OGIyLWFhZWMt
NmM4ZmQwYmM1YjAwLzEvUVFtMGREUWZLQ19xSmdpSkhBQmhWQ0huUG00LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYi8zOGM2OTQtMjNhNy00OGIyLWFhZWMtNmM4ZmQwYmM1YjAw
LzEvT1ZBd05oV3NwdVgyOWJWcEhId3NqY3BmSTAwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKgInrDAN
BgkqhkiG9w0BAQsFAAOCAQEABJoWCKLmy6eJ0lpR+0Jumy7BBAgCDlKkMZA4t81H
5As6AkRi/pN5fWm7/NzVDAm6xju66t4nbcZP2FFiv8O1IWVqQWNFYwi8GYYUIC3T
q9vUteIBAE9WBecfMysoQl41aRumCUUeOwVp3kCer0lZTUosWHMqOxG8uFGWB9pZ
oQY5aWyUcfinzSlYWEzrWa9kPouynkBfJmYCm+NFtQzy3YuqBC8SvN1l4Iv0yNE5
kZusF9bDnQ4RHJnx/bU0eWZyIpo1NCijrBpwiekbt7aTn9VC4qRFS78h7DTeGTt6
5hu31QHHUWDavIWam4Iirj5wP3lVigF7YA/ho9N8mNLg+Q==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:22 2024 by rpki-client on console-fra.rpki-client.org