Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/40cb9c-c426-48ab-9968-a56bdfadb81e/1/qNOMXQAsqZroBZTtbby843VINqU.roa
File: qNOMXQAsqZroBZTtbby843VINqU.roa (raw, json)
Hash identifier: rqV6u5Uy9cgWGbImDfdXXU51v1alXn8P3sfmADrVejQ=
Subject key identifier: A8:D3:8C:5D:00:2C:A9:9A:E8:05:94:ED:6D:BC:BC:E3:75:48:36:A5
Certificate issuer: /CN=9d6b9774c94876c98321de3201b11b75a1358d19
Certificate serial: 018ABC407BDBF6B260046A09F2D84C68590E
Authority key identifier: 9D:6B:97:74:C9:48:76:C9:83:21:DE:32:01:B1:1B:75:A1:35:8D:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nWuXdMlIdsmDId4yAbEbdaE1jRk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/40cb9c-c426-48ab-9968-a56bdfadb81e/1/qNOMXQAsqZroBZTtbby843VINqU.roa
Signing time: Fri 22 Sep 2023 09:37:37 +0000
ROA not before: Fri 22 Sep 2023 09:37:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211462
IP address blocks: 193.32.87.0/24 maxlen: 24
2a0d:8140::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 29 Dec 2023 16:35:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:bc:40:7b:db:f6:b2:60:04:6a:09:f2:d8:4c:68:59:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d6b9774c94876c98321de3201b11b75a1358d19
Validity
Not Before: Sep 22 09:37:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a8d38c5d002ca99ae80594ed6dbcbce3754836a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:5f:ea:a6:05:12:94:4d:c9:cb:e1:9d:6f:12:
3d:fd:7e:75:b9:bc:ed:7f:b2:e6:c3:8a:e3:74:ab:
5c:85:51:ca:5d:cb:26:8e:d4:e1:40:e5:f5:2c:43:
31:e7:61:6e:b5:92:a1:1d:e9:72:eb:8f:42:3d:fd:
ef:99:15:3f:66:69:dc:d6:71:11:7b:9a:1e:f4:02:
21:44:19:a1:b7:7a:83:42:e5:d3:21:08:68:50:11:
10:52:e6:df:93:24:fb:fb:6e:58:83:f3:ed:c5:c2:
94:07:4a:5c:ef:15:7e:c8:6d:35:e3:d4:f7:e7:35:
26:ab:f9:85:0e:b5:bd:e6:52:3d:06:3a:fb:79:12:
b1:ad:ef:e0:b8:a5:c9:6c:ab:87:6c:11:01:79:61:
a4:c9:c8:95:5f:46:7f:c5:6c:75:e0:40:d2:db:60:
2a:f0:d9:3e:bc:a8:03:51:8b:67:37:73:5a:16:9e:
54:f0:a6:dd:74:5b:72:22:70:fb:91:f7:1e:9f:e6:
9a:92:d6:dd:13:75:c6:66:aa:db:b2:d3:11:db:99:
46:60:d4:df:56:65:26:e1:b4:16:e9:ca:d2:12:29:
18:41:8c:52:fb:4f:ce:8d:e7:e3:47:4b:62:37:53:
01:0a:3c:53:db:5f:f3:9d:56:1d:72:9c:bc:16:49:
f2:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:D3:8C:5D:00:2C:A9:9A:E8:05:94:ED:6D:BC:BC:E3:75:48:36:A5
X509v3 Authority Key Identifier:
keyid:9D:6B:97:74:C9:48:76:C9:83:21:DE:32:01:B1:1B:75:A1:35:8D:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nWuXdMlIdsmDId4yAbEbdaE1jRk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/40cb9c-c426-48ab-9968-a56bdfadb81e/1/qNOMXQAsqZroBZTtbby843VINqU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/40cb9c-c426-48ab-9968-a56bdfadb81e/1/nWuXdMlIdsmDId4yAbEbdaE1jRk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.32.87.0/24
IPv6:
2a0d:8140::/48
Signature Algorithm: sha256WithRSAEncryption
cf:21:9c:d6:d8:b3:df:4f:3d:90:26:9c:24:d3:64:54:0b:7a:
f8:01:eb:d0:c9:bd:a3:74:c9:33:1d:22:37:ca:c8:e8:1a:ef:
06:17:40:bf:65:fe:7d:77:c2:10:b5:b8:74:fe:0f:1e:90:92:
f5:f7:c6:b8:15:ca:c1:78:e7:a8:c0:5a:ac:14:86:5a:ad:0b:
66:25:ed:4c:6b:a5:7a:1c:35:cd:7e:61:cb:52:ef:88:11:cd:
3a:c0:28:35:97:8f:36:f4:a9:84:f8:ad:5f:03:c3:09:9d:ec:
cd:43:43:12:aa:88:81:e4:c6:d4:47:2a:ed:0e:60:36:60:c5:
b7:ad:b5:af:ee:37:20:15:ab:31:c4:05:3a:ea:5a:94:17:30:
b9:83:c3:c4:77:76:8d:62:01:e6:5d:99:3c:a9:7b:e1:33:d9:
60:59:31:98:1a:47:5c:ca:03:78:4a:5a:0c:7e:72:60:01:04:
ec:94:53:e8:15:dd:fc:08:4a:da:7c:75:90:f3:2a:cd:ba:91:
e5:3d:ff:58:97:d0:32:d9:18:65:b0:be:39:df:58:b0:ba:73:
80:9c:12:19:fb:45:6c:65:0f:b1:12:4f:b4:09:ca:09:5f:63:
f6:93:ec:24:3e:64:76:80:b6:a6:b4:64:a9:82:d7:ce:11:02:
97:bd:70:54
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAYq8QHvb9rJgBGoJ8thMaFkOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlkNmI5Nzc0Yzk0ODc2Yzk4MzIxZGUzMjAxYjExYjc1YTEz
NThkMTkwHhcNMjMwOTIyMDkzNzM3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhOGQzOGM1ZDAwMmNhOTlhZTgwNTk0ZWQ2ZGJjYmNlMzc1NDgzNmE1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr1/qpgUSlE3Jy+GdbxI9/X51ubzt
f7Lmw4rjdKtchVHKXcsmjtThQOX1LEMx52FutZKhHely649CPf3vmRU/Zmnc1nER
e5oe9AIhRBmht3qDQuXTIQhoUBEQUubfkyT7+25Yg/PtxcKUB0pc7xV+yG0149T3
5zUmq/mFDrW95lI9Bjr7eRKxre/guKXJbKuHbBEBeWGkyciVX0Z/xWx14EDS22Aq
8Nk+vKgDUYtnN3NaFp5U8KbddFtyInD7kfcen+aaktbdE3XGZqrbstMR25lGYNTf
VmUm4bQW6crSEikYQYxS+0/OjefjR0tiN1MBCjxT21/znVYdcpy8FknymQIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFKjTjF0ALKma6AWU7W28vON1SDalMB8GA1UdIwQY
MBaAFJ1rl3TJSHbJgyHeMgGxG3WhNY0ZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbld1WGRNbElkc21ESWQ0eUFiRWJkYUUxalJrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83ZS80MGNiOWMtYzQyNi00OGFiLTk5Njgt
YTU2YmRmYWRiODFlLzEvcU5PTVhRQXNxWnJvQlpUdGJieTg0M1ZJTnFVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83ZS80MGNiOWMtYzQyNi00OGFiLTk5NjgtYTU2YmRmYWRiODFl
LzEvbld1WGRNbElkc21ESWQ0eUFiRWJkYUUxalJrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAwSBXMA8E
AgACMAkDBwAqDYFAAAAwDQYJKoZIhvcNAQELBQADggEBAM8hnNbYs99PPZAmnCTT
ZFQLevgB69DJvaN0yTMdIjfKyOga7wYXQL9l/n13whC1uHT+Dx6QkvX3xrgVysF4
56jAWqwUhlqtC2Yl7UxrpXocNc1+YctS74gRzTrAKDWXjzb0qYT4rV8Dwwmd7M1D
QxKqiIHkxtRHKu0OYDZgxbetta/uNyAVqzHEBTrqWpQXMLmDw8R3do1iAeZdmTyp
e+Ez2WBZMZgaR1zKA3hKWgx+cmABBOyUU+gV3fwIStp8dZDzKs26keU9/1iX0DLZ
GGWwvjnfWLC6c4CcEhn7RWxlD7EST7QJyglfY/aT7CQ+ZHaAtqa0ZKmC184RApe9
cFQ=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:58 2024 by rpki-client on console-ams.rpki-client.org