Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/qJnoAWQKMjJBclsxyS2P8AMsK0U.roa
File: qJnoAWQKMjJBclsxyS2P8AMsK0U.roa (raw, json)
Hash identifier: qj+OBEcjKNzEAx8sN/NbL2I0LQJyHMJiS8PtDwBvYwY=
Subject key identifier: A8:99:E8:01:64:0A:32:32:41:72:5B:31:C9:2D:8F:F0:03:2C:2B:45
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018D9D24A927A1A7BFC1BA52580CEBFCF373
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/qJnoAWQKMjJBclsxyS2P8AMsK0U.roa
Signing time: Mon 12 Feb 2024 11:47:21 +0000
ROA not before: Mon 12 Feb 2024 11:47:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199760
IP address blocks: 195.133.84.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Apr 2024 15:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:9d:24:a9:27:a1:a7:bf:c1:ba:52:58:0c:eb:fc:f3:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Feb 12 11:47:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a899e801640a323241725b31c92d8ff0032c2b45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:05:55:e7:2b:d4:3f:8d:80:23:9c:9a:b9:40:
df:8f:3d:c4:2d:f9:6c:9a:df:1e:7f:72:85:01:71:
c1:5a:07:c6:42:b7:ac:b9:cb:b2:f8:63:2c:59:47:
de:8e:ac:78:c4:4e:fa:ad:c7:6c:95:95:10:e2:b2:
ed:28:2c:03:d4:94:b8:96:43:18:d2:00:56:aa:8a:
0f:a7:59:ee:3d:ac:22:43:94:22:6c:8a:5b:85:55:
86:90:da:fd:ac:a8:0e:3f:18:90:ea:53:2d:98:7f:
8e:f3:ce:fd:65:b1:62:0a:36:f2:34:95:68:37:c8:
23:d1:e6:b2:27:c0:6a:62:fc:bd:02:ae:48:b9:99:
97:68:4b:94:8e:24:88:ce:b7:7c:56:42:df:60:b9:
cb:5a:06:12:6b:11:eb:8d:5b:d7:50:34:a4:cc:d3:
03:de:b7:0f:41:1b:bc:70:91:8a:3d:77:9a:12:89:
3e:9d:2b:c0:5c:6b:11:48:14:e8:5c:41:9d:46:fc:
54:c3:c0:dd:85:9c:e8:21:8b:3f:c9:0b:3b:73:ac:
5f:c9:69:7a:fb:b7:2e:60:70:56:42:60:e2:22:04:
ed:20:5f:86:08:a2:8f:05:d6:ab:2f:35:3f:33:21:
ae:bd:26:b3:d4:50:09:60:f8:00:31:b7:60:0c:2c:
74:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:99:E8:01:64:0A:32:32:41:72:5B:31:C9:2D:8F:F0:03:2C:2B:45
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/qJnoAWQKMjJBclsxyS2P8AMsK0U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.133.84.0/24
Signature Algorithm: sha256WithRSAEncryption
00:59:c1:d2:21:c9:57:20:bf:89:30:66:69:cf:6f:4e:7f:1e:
f8:4e:92:40:2f:b1:83:93:13:3d:89:67:13:f6:78:d4:57:af:
dd:f9:86:ae:42:90:3c:a5:b1:59:05:77:43:0b:82:53:ab:15:
a7:5e:81:d2:17:93:67:30:0a:0d:e9:f4:5e:82:f7:7e:65:f9:
2b:ae:65:17:e4:02:fb:07:ae:ff:6c:c0:e5:d2:f0:11:a2:13:
4d:04:91:49:55:b7:77:e4:79:2d:a3:b7:af:22:8b:0e:59:d0:
80:72:af:62:2f:f3:f3:99:b7:f4:01:2a:4f:8c:ac:cc:2d:75:
84:18:8b:a8:09:fc:5f:31:5c:af:f9:fc:15:1c:54:d2:23:7f:
34:1b:18:c3:ad:78:dd:5c:1c:ab:b8:7c:2d:af:38:b4:3c:9f:
28:91:77:c9:be:62:f3:00:e7:eb:3d:82:54:d1:a2:71:75:5c:
57:ad:29:5e:50:01:cf:d1:4a:3e:78:43:8a:15:5b:f3:c9:d8:
dc:6d:7a:fe:5b:eb:79:69:42:64:fd:55:a1:42:a0:bf:da:42:
af:d3:41:ea:e5:05:8a:7f:93:8d:cd:d7:a6:bd:fe:94:64:ee:
a8:5e:f2:7a:5e:3d:87:39:78:cf:05:0f:b1:cb:22:22:a0:69:
21:c8:c8:ef
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY2dJKknoae/wbpSWAzr/PNzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1NjkwZjVlMzJkNWM4NmFmMWUxMzQ5ZGZkNGU4Y2VlYjcw
ZTFhYzcwHhcNMjQwMjEyMTE0NzIxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhODk5ZTgwMTY0MGEzMjMyNDE3MjViMzFjOTJkOGZmMDAzMmMyYjQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAugVV5yvUP42AI5yauUDfjz3ELfls
mt8ef3KFAXHBWgfGQresucuy+GMsWUfejqx4xE76rcdslZUQ4rLtKCwD1JS4lkMY
0gBWqooPp1nuPawiQ5QibIpbhVWGkNr9rKgOPxiQ6lMtmH+O8879ZbFiCjbyNJVo
N8gj0eayJ8BqYvy9Aq5IuZmXaEuUjiSIzrd8VkLfYLnLWgYSaxHrjVvXUDSkzNMD
3rcPQRu8cJGKPXeaEok+nSvAXGsRSBToXEGdRvxUw8DdhZzoIYs/yQs7c6xfyWl6
+7cuYHBWQmDiIgTtIF+GCKKPBdarLzU/MyGuvSaz1FAJYPgAMbdgDCx07wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKiZ6AFkCjIyQXJbMcktj/ADLCtFMB8GA1UdIwQY
MBaAFDVpD14y1chq8eE0nf1OjO63DhrHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjIt
NWE0MjQyOGYxMTQzLzEvcUpub0FXUUtNakpCY2xzeHlTMlA4QU1zSzBVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjItNWE0MjQyOGYxMTQz
LzEvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw4VUMA0G
CSqGSIb3DQEBCwUAA4IBAQAAWcHSIclXIL+JMGZpz29Ofx74TpJAL7GDkxM9iWcT
9njUV6/d+YauQpA8pbFZBXdDC4JTqxWnXoHSF5NnMAoN6fRegvd+ZfkrrmUX5AL7
B67/bMDl0vARohNNBJFJVbd35Hkto7evIosOWdCAcq9iL/Pzmbf0ASpPjKzMLXWE
GIuoCfxfMVyv+fwVHFTSI380GxjDrXjdXByruHwtrzi0PJ8okXfJvmLzAOfrPYJU
0aJxdVxXrSleUAHP0Uo+eEOKFVvzydjcbXr+W+t5aUJk/VWhQqC/2kKv00Hq5QWK
f5ONzdemvf6UZO6oXvJ6Xj2HOXjPBQ+xyyIioGkhyMjv
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:27 2024 by rpki-client on console-fra.rpki-client.org