Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/tqCDPedMcxAnyFetpOMR36can3E.roa
File: tqCDPedMcxAnyFetpOMR36can3E.roa (raw, json)
Hash identifier: S+HwoB/Wj+RLCzvfR3IpgsRjFfNGApTdAgMrpF2imgg=
Subject key identifier: B6:A0:83:3D:E7:4C:73:10:27:C8:57:AD:A4:E3:11:DF:A7:1A:9F:71
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018B5D889D85A744D733372CA64F31BDB068
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/tqCDPedMcxAnyFetpOMR36can3E.roa
Signing time: Mon 23 Oct 2023 17:15:16 +0000
ROA not before: Mon 23 Oct 2023 17:15:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21769
IP address blocks: 194.87.22.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:5d:88:9d:85:a7:44:d7:33:37:2c:a6:4f:31:bd:b0:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Oct 23 17:15:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b6a0833de74c731027c857ada4e311dfa71a9f71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:b1:fb:fd:63:6b:e8:38:9f:05:40:82:a5:ed:
b8:58:57:fb:97:da:d8:34:b6:20:ad:20:23:f5:b2:
e6:44:87:fe:48:92:c8:c8:f4:4d:39:06:53:72:2a:
a6:67:0b:87:cd:f5:25:a0:02:c4:e1:13:b4:2e:41:
7a:83:9a:d7:dd:6e:c3:e3:d4:8e:7d:a9:c3:9d:e4:
e4:8a:7d:fd:48:f8:69:f6:e2:e4:0c:c9:45:43:71:
b3:11:12:5f:5b:25:98:36:36:d0:15:f0:f4:e3:b3:
4d:86:1d:8f:ee:fa:47:db:0e:f5:76:9a:63:66:ba:
a9:58:c0:f7:47:ac:b8:83:59:be:f8:bd:e3:77:4a:
8d:61:1d:1e:88:8e:de:4c:f5:8d:07:ba:5f:a2:35:
5c:89:9c:88:f7:f2:86:51:34:97:ce:48:c5:06:17:
50:ae:5d:fe:bf:70:20:90:ca:d1:d2:78:7c:d2:45:
1e:4e:03:f6:f8:58:84:54:ae:33:b4:86:31:da:50:
42:30:dc:57:66:58:2e:11:8e:05:bc:60:a0:98:ee:
b5:31:ba:00:87:27:d3:70:45:29:ef:61:3c:eb:21:
02:f4:ba:22:98:28:29:e9:fa:97:6d:28:6e:f6:9d:
ef:d4:af:6e:fe:5b:d1:eb:81:5f:d0:1f:ce:46:19:
11:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:A0:83:3D:E7:4C:73:10:27:C8:57:AD:A4:E3:11:DF:A7:1A:9F:71
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/tqCDPedMcxAnyFetpOMR36can3E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.87.22.0/24
Signature Algorithm: sha256WithRSAEncryption
01:70:32:3d:f3:41:15:c6:a5:21:bc:4c:e3:af:ca:ea:36:77:
7b:19:1d:78:d1:b3:d3:48:87:dd:9f:75:19:4a:b5:4f:f0:e2:
a6:a8:d0:4b:a2:8a:c1:f8:24:28:92:86:1e:c3:79:f1:5a:2b:
e9:0e:b0:6b:d2:8f:61:aa:40:86:59:82:19:9d:77:ff:10:5e:
a6:0f:ae:29:72:f0:38:8e:44:66:33:d1:21:a3:fb:5b:d6:79:
e3:5c:43:8b:5f:0d:c4:47:71:13:29:b0:72:98:c1:e2:41:20:
db:ec:0b:5c:fe:1b:5e:9f:25:b5:21:6d:c3:01:2e:74:ef:4e:
25:c5:51:a0:06:12:e1:14:50:cf:e9:99:64:f0:96:b6:cb:a5:
f6:de:87:7c:98:1c:e3:ca:51:c8:75:47:0d:e5:86:8a:ec:60:
84:8a:7e:0b:0c:6d:5b:0c:38:76:2e:25:e4:e0:8f:b9:64:53:
b8:18:b3:2b:4c:5c:62:fd:66:57:9f:8e:ad:d6:79:f8:fc:80:
b3:33:ea:6c:bd:d2:a1:7f:11:37:02:b9:a1:e8:ae:e8:4f:b3:
3a:e8:01:05:c9:58:a1:dc:17:9e:29:e7:4d:30:0d:eb:e8:36:
e5:5d:93:8e:f6:e2:b0:44:1f:f0:e5:3c:78:76:bc:8b:c2:c0:
82:04:e3:7c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYtdiJ2Fp0TXMzcspk8xvbBoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1NjkwZjVlMzJkNWM4NmFmMWUxMzQ5ZGZkNGU4Y2VlYjcw
ZTFhYzcwHhcNMjMxMDIzMTcxNTE2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiNmEwODMzZGU3NGM3MzEwMjdjODU3YWRhNGUzMTFkZmE3MWE5ZjcxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvrH7/WNr6DifBUCCpe24WFf7l9rY
NLYgrSAj9bLmRIf+SJLIyPRNOQZTciqmZwuHzfUloALE4RO0LkF6g5rX3W7D49SO
fanDneTkin39SPhp9uLkDMlFQ3GzERJfWyWYNjbQFfD047NNhh2P7vpH2w71dppj
ZrqpWMD3R6y4g1m++L3jd0qNYR0eiI7eTPWNB7pfojVciZyI9/KGUTSXzkjFBhdQ
rl3+v3AgkMrR0nh80kUeTgP2+FiEVK4ztIYx2lBCMNxXZlguEY4FvGCgmO61MboA
hyfTcEUp72E86yEC9LoimCgp6fqXbShu9p3v1K9u/lvR64Ff0B/ORhkR+QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLaggz3nTHMQJ8hXraTjEd+nGp9xMB8GA1UdIwQY
MBaAFDVpD14y1chq8eE0nf1OjO63DhrHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjIt
NWE0MjQyOGYxMTQzLzEvdHFDRFBlZE1jeEFueUZldHBPTVIzNmNhbjNFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjItNWE0MjQyOGYxMTQz
LzEvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwlcWMA0G
CSqGSIb3DQEBCwUAA4IBAQABcDI980EVxqUhvEzjr8rqNnd7GR140bPTSIfdn3UZ
SrVP8OKmqNBLoorB+CQokoYew3nxWivpDrBr0o9hqkCGWYIZnXf/EF6mD64pcvA4
jkRmM9Eho/tb1nnjXEOLXw3ER3ETKbBymMHiQSDb7Atc/htenyW1IW3DAS50704l
xVGgBhLhFFDP6Zlk8Ja2y6X23od8mBzjylHIdUcN5YaK7GCEin4LDG1bDDh2LiXk
4I+5ZFO4GLMrTFxi/WZXn46t1nn4/ICzM+psvdKhfxE3Armh6K7oT7M66AEFyVih
3BeeKedNMA3r6DblXZOO9uKwRB/w5Tx4dryLwsCCBON8
-----END CERTIFICATE-----
Generated at Mon Oct 23 18:41:39 2023 by rpki-client on console-ams.rpki-client.org