Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/94c919-e6ea-4e18-af12-ed5b01d2528c/1/qz_RJm_N4o65rDMNe0HB_gEC4CE.roa
File: qz_RJm_N4o65rDMNe0HB_gEC4CE.roa (raw, json)
Hash identifier: 4qf24rgbU+391cpyk9amsDiVYewZzG9ynJ4KlVKik2A=
Subject key identifier: AB:3F:D1:26:6F:CD:E2:8E:B9:AC:33:0D:7B:41:C1:FE:01:02:E0:21
Certificate issuer: /CN=5ab1996515884434b87882b5b972a6e529ffb00b
Certificate serial: 018570FBCDAB25E75B506AF1C9F05DDB130A
Authority key identifier: 5A:B1:99:65:15:88:44:34:B8:78:82:B5:B9:72:A6:E5:29:FF:B0:0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WrGZZRWIRDS4eIK1uXKm5Sn_sAs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/94c919-e6ea-4e18-af12-ed5b01d2528c/1/qz_RJm_N4o65rDMNe0HB_gEC4CE.roa
Signing time: Mon 02 Jan 2023 05:37:08 +0000
ROA not before: Mon 02 Jan 2023 05:37:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56704
IP address blocks: 185.159.158.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:29:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:fb:cd:ab:25:e7:5b:50:6a:f1:c9:f0:5d:db:13:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ab1996515884434b87882b5b972a6e529ffb00b
Validity
Not Before: Jan 2 05:37:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ab3fd1266fcde28eb9ac330d7b41c1fe0102e021
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:21:bf:bb:da:1b:90:d0:5e:bf:42:f0:24:d4:
7f:26:0e:d2:56:39:3b:a0:c6:e0:33:f4:7c:13:ae:
9f:14:23:fb:29:c5:c0:a2:1b:f4:01:04:3c:d7:5f:
33:7d:cb:33:49:fc:3e:c6:21:3e:98:1f:88:56:f3:
19:ac:39:d5:c6:fb:41:1b:82:49:e1:ed:38:07:b4:
0d:1b:75:36:ea:a3:be:4c:86:a0:88:79:f8:2b:45:
38:01:ae:37:06:fb:21:95:fd:5c:fc:e3:e8:08:87:
98:e1:f1:84:0d:69:fa:8d:dd:e5:f2:da:dd:0b:cf:
5b:41:ca:4a:51:54:cb:f8:11:28:8c:02:ae:0c:89:
d0:e7:29:38:a7:11:f7:01:f9:d7:d0:9c:27:5f:25:
4a:db:00:27:bb:10:98:1b:e2:bc:92:30:36:30:13:
3a:55:44:41:5d:71:df:50:0c:fb:a7:2c:d5:61:62:
1d:fa:42:e6:c6:12:da:dc:5b:05:75:55:a5:03:d1:
7e:4d:ca:c0:1d:cf:5a:4d:e1:89:04:7b:28:86:db:
b2:03:57:c1:44:f3:10:7a:06:76:58:4f:fb:2a:ef:
0a:d5:8f:44:21:47:57:21:c0:50:e3:9b:e6:6a:fd:
2c:92:44:f5:de:b7:c4:9e:0b:1d:72:10:1a:58:bf:
de:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:3F:D1:26:6F:CD:E2:8E:B9:AC:33:0D:7B:41:C1:FE:01:02:E0:21
X509v3 Authority Key Identifier:
keyid:5A:B1:99:65:15:88:44:34:B8:78:82:B5:B9:72:A6:E5:29:FF:B0:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WrGZZRWIRDS4eIK1uXKm5Sn_sAs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/94c919-e6ea-4e18-af12-ed5b01d2528c/1/qz_RJm_N4o65rDMNe0HB_gEC4CE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/94c919-e6ea-4e18-af12-ed5b01d2528c/1/WrGZZRWIRDS4eIK1uXKm5Sn_sAs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.159.158.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:d5:4f:68:04:a2:1e:dd:e6:16:48:0c:29:af:99:b9:79:c2:
d9:1b:ee:af:6c:b6:3d:c9:25:23:a5:64:22:8b:99:70:64:0e:
e1:68:26:cc:2a:b5:d3:8e:fa:3d:e8:39:75:19:37:b5:ce:19:
8f:51:0c:71:e2:41:1a:81:c0:e0:d6:98:ab:6f:09:01:db:6d:
53:0c:e2:fe:87:81:83:ab:f2:b9:76:20:66:5e:b5:f9:31:e3:
8f:f3:6b:f7:a6:01:32:21:83:59:38:3c:ad:49:b6:de:fe:9c:
e9:ce:8d:fa:33:e3:f0:90:f1:5f:2b:55:51:40:06:e5:b3:5f:
aa:0e:2d:d2:6f:d4:2e:1f:e4:e9:6c:39:55:aa:8e:2c:08:62:
63:d8:e3:d9:f7:9a:99:95:70:2a:9b:e1:ef:9c:f8:4b:7a:c4:
da:10:ed:4d:ec:cd:59:14:b8:4b:cb:34:0d:22:38:7a:d0:e4:
59:e4:d4:37:25:25:c8:2a:f1:57:99:6d:01:c8:ba:b5:ad:df:
d2:52:fb:bc:26:9e:9f:bf:dd:a6:72:df:f3:38:b3:7d:5b:92:
af:9e:e5:3d:2c:0e:b6:fe:f8:c3:f7:61:60:42:66:5d:9b:99:
e4:af:80:c7:fb:97:43:07:3a:87:f8:b2:d7:22:69:34:a2:cc:
37:c6:0b:d7
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVw+82rJedbUGrxyfBd2xMKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVhYjE5OTY1MTU4ODQ0MzRiODc4ODJiNWI5NzJhNmU1Mjlm
ZmIwMGIwHhcNMjMwMTAyMDUzNzA4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhYjNmZDEyNjZmY2RlMjhlYjlhYzMzMGQ3YjQxYzFmZTAxMDJlMDIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiiG/u9obkNBev0LwJNR/Jg7SVjk7
oMbgM/R8E66fFCP7KcXAohv0AQQ8118zfcszSfw+xiE+mB+IVvMZrDnVxvtBG4JJ
4e04B7QNG3U26qO+TIagiHn4K0U4Aa43Bvshlf1c/OPoCIeY4fGEDWn6jd3l8trd
C89bQcpKUVTL+BEojAKuDInQ5yk4pxH3AfnX0JwnXyVK2wAnuxCYG+K8kjA2MBM6
VURBXXHfUAz7pyzVYWId+kLmxhLa3FsFdVWlA9F+TcrAHc9aTeGJBHsohtuyA1fB
RPMQegZ2WE/7Ku8K1Y9EIUdXIcBQ45vmav0skkT13rfEngsdchAaWL/edwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKs/0SZvzeKOuawzDXtBwf4BAuAhMB8GA1UdIwQY
MBaAFFqxmWUViEQ0uHiCtblypuUp/7ALMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvV3JHWlpSV0lSRFM0ZUlLMXVYS201U25fc0FzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS85NGM5MTktZTZlYS00ZTE4LWFmMTIt
ZWQ1YjAxZDI1MjhjLzEvcXpfUkptX040bzY1ckRNTmUwSEJfZ0VDNENFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNS85NGM5MTktZTZlYS00ZTE4LWFmMTItZWQ1YjAxZDI1Mjhj
LzEvV3JHWlpSV0lSRFM0ZUlLMXVYS201U25fc0FzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuZ+eMA0G
CSqGSIb3DQEBCwUAA4IBAQB+1U9oBKIe3eYWSAwpr5m5ecLZG+6vbLY9ySUjpWQi
i5lwZA7haCbMKrXTjvo96Dl1GTe1zhmPUQxx4kEagcDg1pirbwkB221TDOL+h4GD
q/K5diBmXrX5MeOP82v3pgEyIYNZODytSbbe/pzpzo36M+PwkPFfK1VRQAbls1+q
Di3Sb9QuH+TpbDlVqo4sCGJj2OPZ95qZlXAqm+HvnPhLesTaEO1N7M1ZFLhLyzQN
Ijh60ORZ5NQ3JSXIKvFXmW0ByLq1rd/SUvu8Jp6fv92mct/zOLN9W5KvnuU9LA62
/vjD92FgQmZdm5nkr4DH+5dDBzqH+LLXImk0osw3xgvX
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:33 2024 by rpki-client on console-ams.rpki-client.org