Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/QiJPvXEe20qdkVQIdQs5TP6qRWM.roa
File: QiJPvXEe20qdkVQIdQs5TP6qRWM.roa (raw, json)
Hash identifier: VS3SJRbe3HlSPwfObzi4RZGYMgNNP4NRswnsFBKU1oo=
Subject key identifier: 42:22:4F:BD:71:1E:DB:4A:9D:91:54:08:75:0B:39:4C:FE:AA:45:63
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018CB032F419A96FD7403CB11C52242F8989
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/QiJPvXEe20qdkVQIdQs5TP6qRWM.roa
Signing time: Thu 28 Dec 2023 11:32:58 +0000
ROA not before: Thu 28 Dec 2023 11:32:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212755
IP address blocks: 84.54.50.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:b0:32:f4:19:a9:6f:d7:40:3c:b1:1c:52:24:2f:89:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Dec 28 11:32:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=42224fbd711edb4a9d915408750b394cfeaa4563
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:35:3c:55:88:df:15:fe:9c:db:a6:0f:5b:ab:
55:f0:62:56:ba:0b:98:94:e8:e7:ae:d4:b4:d0:f6:
41:d4:61:5c:14:dc:87:35:b3:f1:73:d2:9f:a2:74:
86:a6:72:64:b0:ad:a1:a2:79:9b:6f:91:fc:f6:66:
26:2f:e4:cf:bb:4d:74:7d:a2:64:e7:23:e0:88:c9:
54:ac:b9:6e:82:01:ca:71:5d:d5:d9:2f:12:6b:bb:
e6:a9:18:19:26:d4:5b:4c:b2:9f:0d:5f:b8:38:c2:
80:ba:0e:bd:ae:27:e3:8e:7d:10:40:5e:4d:e3:82:
78:a0:6a:cf:30:f5:71:f5:4e:bb:c3:c5:a5:99:ac:
3c:cd:7b:cc:31:07:bc:33:aa:44:cf:0b:02:70:76:
32:cd:0a:c8:72:5a:90:cf:81:d9:d8:ef:6d:fd:3d:
46:a2:df:48:8d:36:82:9f:f7:a8:d3:ad:c9:1f:17:
10:ab:3f:36:b3:d2:1b:d3:5b:0c:73:3e:b9:0e:e2:
9c:03:92:09:69:37:e3:c0:c7:76:5c:c2:b1:42:0e:
fa:70:eb:c5:26:8b:60:65:63:e1:5a:6d:a0:50:de:
55:14:ec:5b:c7:54:74:bd:92:8c:a4:0b:c6:68:38:
9d:f3:6c:90:82:84:ea:89:f2:02:6a:51:31:fc:81:
d8:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:22:4F:BD:71:1E:DB:4A:9D:91:54:08:75:0B:39:4C:FE:AA:45:63
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/QiJPvXEe20qdkVQIdQs5TP6qRWM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.54.50.0/24
Signature Algorithm: sha256WithRSAEncryption
40:e4:0c:4c:5e:ed:10:be:f5:b1:5b:7f:dd:7a:13:78:15:60:
e9:87:2b:a2:f0:06:a9:d0:65:97:55:ef:48:60:d4:8c:04:e7:
3a:52:ac:2b:37:69:d4:4d:34:24:00:dd:16:6b:72:2b:02:ee:
9d:34:30:05:c8:7e:7a:32:4c:e0:a3:1d:93:3a:d3:56:7f:c4:
2f:84:7f:f4:d5:36:1d:f1:7e:6e:64:ae:1d:00:90:94:9f:45:
bb:81:de:92:d6:28:7f:af:ac:f7:7a:36:63:88:70:06:43:46:
7c:56:3f:93:13:c4:97:86:98:11:ff:a4:95:d3:22:9c:ff:ca:
3b:00:d9:a5:b2:05:14:55:ec:2d:a9:28:46:d8:1a:e7:07:af:
ba:cc:bf:46:b9:ce:75:89:4e:61:58:8f:e4:c1:06:5d:0c:db:
8e:50:9d:8f:16:e6:06:dc:3e:f4:92:08:4c:ac:35:fe:4a:88:
80:8f:1d:4e:06:1b:90:36:ed:5d:69:58:7a:5c:d8:d1:78:e1:
f0:4c:78:89:ac:8d:33:bd:06:eb:e8:01:ec:a3:dd:49:cd:24:
69:65:1a:74:f6:7d:11:f0:74:54:b2:5b:e6:40:03:6c:e2:9b:
e1:5d:94:9a:db:ea:63:69:23:11:7a:f3:f5:cf:51:46:31:e8:
ff:35:fa:a9
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYywMvQZqW/XQDyxHFIkL4mJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyYzRhYzNlM2M0M2Q3MGQwNTM0OWM4MTViYWFkZDM4YWQ3
NzVlOWQwHhcNMjMxMjI4MTEzMjU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0MjIyNGZiZDcxMWVkYjRhOWQ5MTU0MDg3NTBiMzk0Y2ZlYWE0NTYzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiTU8VYjfFf6c26YPW6tV8GJWuguY
lOjnrtS00PZB1GFcFNyHNbPxc9KfonSGpnJksK2honmbb5H89mYmL+TPu010faJk
5yPgiMlUrLluggHKcV3V2S8Sa7vmqRgZJtRbTLKfDV+4OMKAug69rifjjn0QQF5N
44J4oGrPMPVx9U67w8Wlmaw8zXvMMQe8M6pEzwsCcHYyzQrIclqQz4HZ2O9t/T1G
ot9IjTaCn/eo063JHxcQqz82s9Ib01sMcz65DuKcA5IJaTfjwMd2XMKxQg76cOvF
JotgZWPhWm2gUN5VFOxbx1R0vZKMpAvGaDid82yQgoTqifICalEx/IHYzQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEIiT71xHttKnZFUCHULOUz+qkVjMB8GA1UdIwQY
MBaAFCLErD48Q9cNBTScgVuq3Titd16dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzct
Y2QzY2E1OTc1NzEyLzEvUWlKUHZYRWUyMHFka1ZRSWRRczVUUDZxUldNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzctY2QzY2E1OTc1NzEy
LzEvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVDYyMA0G
CSqGSIb3DQEBCwUAA4IBAQBA5AxMXu0QvvWxW3/dehN4FWDphyui8Aap0GWXVe9I
YNSMBOc6UqwrN2nUTTQkAN0Wa3IrAu6dNDAFyH56Mkzgox2TOtNWf8QvhH/01TYd
8X5uZK4dAJCUn0W7gd6S1ih/r6z3ejZjiHAGQ0Z8Vj+TE8SXhpgR/6SV0yKc/8o7
ANmlsgUUVewtqShG2BrnB6+6zL9Guc51iU5hWI/kwQZdDNuOUJ2PFuYG3D70kghM
rDX+SoiAjx1OBhuQNu1daVh6XNjReOHwTHiJrI0zvQbr6AHso91JzSRpZRp09n0R
8HRUslvmQANs4pvhXZSa2+pjaSMRevP1z1FGMej/Nfqp
-----END CERTIFICATE-----
Generated at Tue Jan 2 08:59:10 2024 by rpki-client on console-ams.rpki-client.org