Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/9db4d3-f78d-4430-87c0-6cbd581d317c/1/qEK6meb4cixLzY6ZrCpIh15LbGM.roa
File: qEK6meb4cixLzY6ZrCpIh15LbGM.roa (raw, json)
Hash identifier: 7ZT3Z+L1PVKy/gT9zsJ4XBl2Kei/J1nttkxZZ23FyUo=
Subject key identifier: A8:42:BA:99:E6:F8:72:2C:4B:CD:8E:99:AC:2A:48:87:5E:4B:6C:63
Certificate issuer: /CN=81bb78be41e48337997c8fe91d8e2f24f7b49eaf
Certificate serial: 018A085507CFCFC4D1A408C763922CBDFF23
Authority key identifier: 81:BB:78:BE:41:E4:83:37:99:7C:8F:E9:1D:8E:2F:24:F7:B4:9E:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gbt4vkHkgzeZfI_pHY4vJPe0nq8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/9db4d3-f78d-4430-87c0-6cbd581d317c/1/qEK6meb4cixLzY6ZrCpIh15LbGM.roa
Signing time: Fri 18 Aug 2023 11:08:24 +0000
ROA not before: Fri 18 Aug 2023 11:08:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5377
IP address blocks: 92.43.224.0/21 maxlen: 21
Validation: Failed, certificate revoked on Thu 24 Aug 2023 08:02:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:08:55:07:cf:cf:c4:d1:a4:08:c7:63:92:2c:bd:ff:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81bb78be41e48337997c8fe91d8e2f24f7b49eaf
Validity
Not Before: Aug 18 11:08:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a842ba99e6f8722c4bcd8e99ac2a48875e4b6c63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:29:f3:9a:01:a7:b2:40:65:ae:7e:aa:0c:6a:
af:3f:d9:ba:bb:3f:d8:68:4a:c4:dc:05:50:44:ab:
41:f6:dc:34:c6:73:ae:d5:7c:12:fd:ef:71:1d:bc:
2d:ee:2c:4c:72:4d:60:3b:40:97:e4:5d:21:e9:53:
ad:4c:80:9b:6b:f1:3d:c0:9e:20:a8:52:1c:de:01:
9e:51:77:30:9c:ea:19:3c:d7:6f:be:f2:92:87:4d:
f4:3f:9b:ad:0a:e1:7e:88:de:71:cf:b9:d8:e4:38:
ec:dc:02:83:e4:a0:e5:cd:64:96:0f:21:58:3a:8e:
03:e9:11:e3:f5:c3:0e:ca:e2:2a:f4:4f:63:de:b3:
17:c4:e8:e9:a5:d1:31:4f:d7:f6:42:22:32:a0:c0:
1e:cf:64:65:85:dc:b4:ad:d0:ff:9e:fd:e9:53:5f:
3d:65:fb:b5:5e:0a:99:e9:41:34:09:51:4d:95:47:
99:1e:d8:3a:53:16:1c:c5:73:c2:10:92:c5:63:40:
3d:1c:17:14:71:e6:4c:c2:d5:0a:7c:0e:ea:2f:dd:
b3:8a:a1:31:3b:23:6e:94:96:08:4c:bb:69:e6:6a:
b9:79:89:d1:a5:b6:20:7a:06:8e:f2:6c:37:75:45:
2d:5f:50:42:e4:a9:c9:27:85:f0:92:20:94:65:60:
c3:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:42:BA:99:E6:F8:72:2C:4B:CD:8E:99:AC:2A:48:87:5E:4B:6C:63
X509v3 Authority Key Identifier:
keyid:81:BB:78:BE:41:E4:83:37:99:7C:8F:E9:1D:8E:2F:24:F7:B4:9E:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gbt4vkHkgzeZfI_pHY4vJPe0nq8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/9db4d3-f78d-4430-87c0-6cbd581d317c/1/qEK6meb4cixLzY6ZrCpIh15LbGM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/9db4d3-f78d-4430-87c0-6cbd581d317c/1/gbt4vkHkgzeZfI_pHY4vJPe0nq8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.43.224.0/21
Signature Algorithm: sha256WithRSAEncryption
32:41:bd:46:41:a9:c4:36:19:e0:b7:7c:37:7a:8c:bd:8d:e3:
94:76:f0:63:b1:fd:f2:ed:32:0b:45:76:79:3e:f8:98:83:d4:
83:20:e4:f2:0a:4d:bd:4e:02:7e:02:73:81:ee:37:75:dd:bd:
6d:71:d9:53:ed:f7:5f:2b:50:2f:12:5b:97:0f:0e:c2:b1:d7:
76:dc:8b:9b:80:36:07:aa:2c:11:80:2c:d4:b6:8a:66:2e:63:
fc:76:36:22:ed:fb:35:b4:83:5a:5e:38:46:40:83:3c:7f:a3:
d6:ce:3f:e4:a4:99:32:fd:1d:95:9d:d6:09:0c:a7:87:8e:c3:
33:51:d4:9c:86:b3:08:85:5e:c8:24:dc:d9:cd:75:43:dc:d1:
44:9a:63:d8:c1:71:e9:bc:06:f4:14:d1:0f:bf:cf:6b:9d:73:
69:31:78:8e:0c:c2:92:66:5c:b6:68:09:d1:e6:37:86:84:2d:
d3:8a:7a:26:86:f1:49:79:b6:3a:9a:1d:f4:08:87:17:4b:a3:
76:01:fd:1d:7a:fd:45:66:27:1c:58:39:4e:90:13:91:8c:bc:
ec:1f:80:e7:9e:40:cf:1c:05:13:b8:25:ac:e1:1b:e9:02:b9:
59:95:01:37:d1:59:16:98:2e:33:b0:fc:73:e0:cc:3c:04:e8:
87:17:44:4f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYoIVQfPz8TRpAjHY5Isvf8jMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgxYmI3OGJlNDFlNDgzMzc5OTdjOGZlOTFkOGUyZjI0Zjdi
NDllYWYwHhcNMjMwODE4MTEwODI0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhODQyYmE5OWU2Zjg3MjJjNGJjZDhlOTlhYzJhNDg4NzVlNGI2YzYzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhinzmgGnskBlrn6qDGqvP9m6uz/Y
aErE3AVQRKtB9tw0xnOu1XwS/e9xHbwt7ixMck1gO0CX5F0h6VOtTICba/E9wJ4g
qFIc3gGeUXcwnOoZPNdvvvKSh030P5utCuF+iN5xz7nY5Djs3AKD5KDlzWSWDyFY
Oo4D6RHj9cMOyuIq9E9j3rMXxOjppdExT9f2QiIyoMAez2Rlhdy0rdD/nv3pU189
Zfu1XgqZ6UE0CVFNlUeZHtg6UxYcxXPCEJLFY0A9HBcUceZMwtUKfA7qL92ziqEx
OyNulJYITLtp5mq5eYnRpbYgegaO8mw3dUUtX1BC5KnJJ4XwkiCUZWDD0QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKhCupnm+HIsS82OmawqSIdeS2xjMB8GA1UdIwQY
MBaAFIG7eL5B5IM3mXyP6R2OLyT3tJ6vMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ2J0NHZrSGtnemVaZklfcEhZNHZKUGUwbnE4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZC85ZGI0ZDMtZjc4ZC00NDMwLTg3YzAt
NmNiZDU4MWQzMTdjLzEvcUVLNm1lYjRjaXhMelk2WnJDcEloMTVMYkdNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZC85ZGI0ZDMtZjc4ZC00NDMwLTg3YzAtNmNiZDU4MWQzMTdj
LzEvZ2J0NHZrSGtnemVaZklfcEhZNHZKUGUwbnE4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDXCvgMA0G
CSqGSIb3DQEBCwUAA4IBAQAyQb1GQanENhngt3w3eoy9jeOUdvBjsf3y7TILRXZ5
PviYg9SDIOTyCk29TgJ+AnOB7jd13b1tcdlT7fdfK1AvEluXDw7Csdd23IubgDYH
qiwRgCzUtopmLmP8djYi7fs1tINaXjhGQIM8f6PWzj/kpJky/R2VndYJDKeHjsMz
UdSchrMIhV7IJNzZzXVD3NFEmmPYwXHpvAb0FNEPv89rnXNpMXiODMKSZly2aAnR
5jeGhC3TinomhvFJebY6mh30CIcXS6N2Af0dev1FZiccWDlOkBORjLzsH4DnnkDP
HAUTuCWs4RvpArlZlQE30VkWmC4zsPxz4Mw8BOiHF0RP
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:04 2024 by rpki-client on console-ams.rpki-client.org