Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/c90ef8-cc7f-45df-8eac-e8604439407f/1/Qrn_OrdzSX3WgZII2tGXXp0JGTE.roa
File: Qrn_OrdzSX3WgZII2tGXXp0JGTE.roa (raw, json)
Hash identifier: doQOWA/945ww8hbp5uC4qhFo20Duwk2oT2HaXnuzWQE=
Subject key identifier: 42:B9:FF:3A:B7:73:49:7D:D6:81:92:08:DA:D1:97:5E:9D:09:19:31
Certificate issuer: /CN=99ca313ce344d7a1fde65bc4a43219a0b376120c
Certificate serial: 01856FF0300ED125C1569576A010917E8425
Authority key identifier: 99:CA:31:3C:E3:44:D7:A1:FD:E6:5B:C4:A4:32:19:A0:B3:76:12:0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mcoxPONE16H95lvEpDIZoLN2Egw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/c90ef8-cc7f-45df-8eac-e8604439407f/1/Qrn_OrdzSX3WgZII2tGXXp0JGTE.roa
Signing time: Mon 02 Jan 2023 00:44:49 +0000
ROA not before: Mon 02 Jan 2023 00:44:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57468
IP address blocks: 194.56.183.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:f0:30:0e:d1:25:c1:56:95:76:a0:10:91:7e:84:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99ca313ce344d7a1fde65bc4a43219a0b376120c
Validity
Not Before: Jan 2 00:44:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=42b9ff3ab773497dd6819208dad1975e9d091931
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:e6:7f:9e:33:64:01:a8:41:86:92:e7:46:23:
f3:36:2b:f4:fc:a5:07:70:47:94:0b:ed:f8:0f:6f:
71:6e:a4:f5:3b:27:57:4e:b3:37:96:ba:3c:5d:d9:
38:4e:c5:aa:90:41:e5:fa:00:99:ee:19:9f:23:da:
4b:51:43:61:55:70:ad:34:e7:17:b2:5d:ef:11:34:
85:d5:18:bb:96:bb:72:fe:74:2c:53:5d:ec:a3:f9:
eb:73:d3:52:03:6d:87:db:6c:9f:0b:91:97:43:3f:
c5:9b:40:56:b0:80:1a:be:18:f5:c1:27:c0:8d:df:
f7:4d:48:65:de:04:b7:a5:0e:e4:2d:e8:4c:88:1d:
49:b8:df:c4:f9:a4:60:6d:5f:78:c3:24:da:41:6a:
84:fb:2b:f8:c4:3f:c7:ab:21:78:ff:c6:79:cc:b3:
d7:9f:d7:ca:11:fb:2f:fd:02:91:c7:54:9b:2b:0e:
e9:bf:98:22:d7:91:c4:ae:cb:7a:71:48:4f:35:7f:
c6:6c:cf:ef:53:53:a7:fb:b1:37:2f:07:4c:d7:b1:
31:3b:c6:8c:1a:0e:e4:a2:ae:e6:6a:1d:f1:a2:fc:
c2:85:d6:f2:ca:7b:44:9b:1c:37:c2:6c:75:e2:6d:
4c:ae:87:81:fb:0b:43:cc:33:bb:90:4a:f5:2d:77:
99:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:B9:FF:3A:B7:73:49:7D:D6:81:92:08:DA:D1:97:5E:9D:09:19:31
X509v3 Authority Key Identifier:
keyid:99:CA:31:3C:E3:44:D7:A1:FD:E6:5B:C4:A4:32:19:A0:B3:76:12:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mcoxPONE16H95lvEpDIZoLN2Egw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/c90ef8-cc7f-45df-8eac-e8604439407f/1/Qrn_OrdzSX3WgZII2tGXXp0JGTE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/c90ef8-cc7f-45df-8eac-e8604439407f/1/mcoxPONE16H95lvEpDIZoLN2Egw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.56.183.0/24
Signature Algorithm: sha256WithRSAEncryption
14:51:9b:1d:66:99:fd:a0:76:18:ac:07:ca:cd:5f:06:35:c5:
88:0b:5c:e1:7d:6e:07:c3:e8:06:84:41:da:da:6e:2f:5c:9a:
e0:58:0b:69:ee:4d:ef:4d:da:67:ed:47:4a:90:d7:78:0c:60:
7e:b3:aa:04:67:17:98:29:46:c7:5a:7f:ab:b4:65:76:16:b6:
79:08:e6:58:c1:bb:5b:28:27:2c:19:6e:e6:af:35:49:1d:0f:
67:56:bd:45:15:1d:d8:3f:ca:8d:04:c1:05:c7:8e:81:98:5f:
a5:39:78:ae:74:9c:5b:c9:f1:7e:3f:84:17:a1:3e:59:1c:a7:
21:1a:03:09:f8:04:54:71:d2:0e:93:dd:d8:ce:da:70:47:ed:
02:df:ad:60:62:17:e4:e7:81:98:90:18:16:9e:89:39:ac:d4:
30:03:2a:cf:38:1a:fd:ba:fc:ff:63:06:75:e1:e3:a7:80:07:
20:27:a4:b0:61:b3:33:20:68:04:7c:e2:35:ec:19:9d:65:0e:
d6:00:14:ab:27:e0:5f:82:0e:a3:ce:89:91:f7:89:3f:96:6f:
8b:b2:33:0f:a8:f0:14:e7:67:94:d4:c6:54:81:da:15:94:b9:
e2:b6:5f:39:7f:38:9a:01:46:4a:f8:a3:11:9d:79:0a:75:dc:
a0:b1:61:d4
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVv8DAO0SXBVpV2oBCRfoQlMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk5Y2EzMTNjZTM0NGQ3YTFmZGU2NWJjNGE0MzIxOWEwYjM3
NjEyMGMwHhcNMjMwMTAyMDA0NDQ5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0MmI5ZmYzYWI3NzM0OTdkZDY4MTkyMDhkYWQxOTc1ZTlkMDkxOTMxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkuZ/njNkAahBhpLnRiPzNiv0/KUH
cEeUC+34D29xbqT1OydXTrM3lro8Xdk4TsWqkEHl+gCZ7hmfI9pLUUNhVXCtNOcX
sl3vETSF1Ri7lrty/nQsU13so/nrc9NSA22H22yfC5GXQz/Fm0BWsIAavhj1wSfA
jd/3TUhl3gS3pQ7kLehMiB1JuN/E+aRgbV94wyTaQWqE+yv4xD/HqyF4/8Z5zLPX
n9fKEfsv/QKRx1SbKw7pv5gi15HErst6cUhPNX/GbM/vU1On+7E3LwdM17ExO8aM
Gg7koq7mah3xovzChdbyyntEmxw3wmx14m1MroeB+wtDzDO7kEr1LXeZ1wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEK5/zq3c0l91oGSCNrRl16dCRkxMB8GA1UdIwQY
MBaAFJnKMTzjRNeh/eZbxKQyGaCzdhIMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbWNveFBPTkUxNkg5NWx2RXBESVpvTE4yRWd3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOS9jOTBlZjgtY2M3Zi00NWRmLThlYWMt
ZTg2MDQ0Mzk0MDdmLzEvUXJuX09yZHpTWDNXZ1pJSTJ0R1hYcDBKR1RFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jOS9jOTBlZjgtY2M3Zi00NWRmLThlYWMtZTg2MDQ0Mzk0MDdm
LzEvbWNveFBPTkUxNkg5NWx2RXBESVpvTE4yRWd3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwji3MA0G
CSqGSIb3DQEBCwUAA4IBAQAUUZsdZpn9oHYYrAfKzV8GNcWIC1zhfW4Hw+gGhEHa
2m4vXJrgWAtp7k3vTdpn7UdKkNd4DGB+s6oEZxeYKUbHWn+rtGV2FrZ5COZYwbtb
KCcsGW7mrzVJHQ9nVr1FFR3YP8qNBMEFx46BmF+lOXiudJxbyfF+P4QXoT5ZHKch
GgMJ+ARUcdIOk93YztpwR+0C361gYhfk54GYkBgWnok5rNQwAyrPOBr9uvz/YwZ1
4eOngAcgJ6SwYbMzIGgEfOI17BmdZQ7WABSrJ+Bfgg6jzomR94k/lm+LsjMPqPAU
52eU1MZUgdoVlLnitl85fziaAUZK+KMRnXkKddygsWHU
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:48 2024 by rpki-client on console-fra.rpki-client.org