Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/QlbTwByqkuq2j3VSAcN0TbX2qmE.roa
File: QlbTwByqkuq2j3VSAcN0TbX2qmE.roa (raw, json)
Hash identifier: GhiFFeO5GNVG7iW8V2gkjTq94zZ+vdGR6WZnCfRMnIw=
Subject key identifier: 42:56:D3:C0:1C:AA:92:EA:B6:8F:75:52:01:C3:74:4D:B5:F6:AA:61
Certificate issuer: /CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Certificate serial: 018CC50120112E3D733E07362E1558C2EF54
Authority key identifier: B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/QlbTwByqkuq2j3VSAcN0TbX2qmE.roa
Signing time: Mon 01 Jan 2024 12:30:34 +0000
ROA not before: Mon 01 Jan 2024 12:30:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211743
IP address blocks: 195.26.6.0/24 maxlen: 24
2a0e:cbc3::/32 maxlen: 32
Validation: Failed, certificate revoked on Fri 02 Feb 2024 11:56:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:01:20:11:2e:3d:73:3e:07:36:2e:15:58:c2:ef:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Validity
Not Before: Jan 1 12:30:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4256d3c01caa92eab68f755201c3744db5f6aa61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:7a:a5:37:21:db:77:4e:95:c9:fe:ef:43:ff:
f0:96:ae:51:c8:35:99:cf:d4:0e:ec:f4:95:9e:08:
f3:52:f9:fa:37:d3:65:6a:80:dd:31:5b:96:b5:f6:
11:d5:7d:e0:cc:2f:5d:e7:8d:51:c7:4c:65:3a:22:
50:42:9e:50:80:a3:d6:61:fd:0b:51:0a:e1:3b:d9:
c3:59:c0:a1:3d:ce:92:8f:ab:c1:a2:64:41:73:33:
a5:aa:da:16:4d:7a:95:a2:36:df:b5:f4:2f:58:db:
b5:46:f0:e5:4e:08:2e:2d:01:66:4b:c3:c4:36:20:
ba:65:5d:8d:8f:31:48:5a:d9:3f:fa:10:6a:31:35:
50:78:e2:82:4d:37:39:0b:be:87:6a:41:96:8a:f5:
c7:92:47:c4:ff:a5:f0:9e:7a:5e:b2:25:5f:d0:13:
1e:fc:c6:73:74:98:1f:95:d1:73:ab:83:01:5e:f2:
5c:6f:31:d8:de:75:43:ee:a3:54:cb:81:5a:17:bf:
28:2d:64:11:50:a3:0a:df:45:54:08:fc:3e:81:63:
85:43:26:80:58:ad:b0:d7:0b:05:d6:44:66:06:21:
d7:f3:85:93:cc:4a:59:9c:9a:34:bd:d2:da:f2:a2:
90:86:8b:cf:7d:4e:e9:9f:b7:99:85:12:69:64:70:
aa:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:56:D3:C0:1C:AA:92:EA:B6:8F:75:52:01:C3:74:4D:B5:F6:AA:61
X509v3 Authority Key Identifier:
keyid:B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/QlbTwByqkuq2j3VSAcN0TbX2qmE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.26.6.0/24
IPv6:
2a0e:cbc3::/32
Signature Algorithm: sha256WithRSAEncryption
a6:fa:9c:41:22:aa:07:cf:8f:cd:62:5d:84:05:86:c3:ee:0a:
6d:76:2f:09:88:9a:a1:83:24:1b:42:39:7d:4f:30:bb:e8:e9:
7a:07:f3:37:8b:11:d4:1d:92:b2:9f:e1:fb:da:d3:89:32:88:
ff:55:cc:f0:55:53:97:22:de:28:04:19:80:f1:3f:63:05:97:
04:9c:f6:53:4e:b5:b8:fe:73:f8:88:7f:79:34:3e:e4:9e:f7:
67:a2:01:f9:b8:cb:fa:a4:36:2b:b7:9a:29:32:f2:f4:85:60:
49:3c:a2:40:3d:1e:c7:4d:3a:09:22:fc:e2:9c:91:46:95:89:
4d:2e:c8:eb:79:20:6e:8d:8a:e2:d1:7f:a7:f6:09:e5:f7:54:
f0:56:2e:be:f3:ba:91:8d:bf:4b:ce:d1:f7:f7:27:38:86:06:
71:8f:68:74:df:72:1a:2e:7f:f6:cf:82:e7:a9:55:39:07:e1:
43:a4:8e:a7:4a:5f:62:05:9e:46:a9:98:50:17:26:5d:cf:c3:
29:a1:b5:8e:48:31:cf:fa:59:8d:cc:75:e6:ee:87:b8:f8:ee:
db:7c:25:ae:01:2b:f5:30:af:2f:d2:77:6b:6d:fa:7a:fa:78:
4d:4e:b6:2c:6c:56:2b:a2:29:74:65:ec:ea:cc:b7:1b:1d:d7:
0c:45:90:14
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYzFASARLj1zPgc2LhVYwu9UMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI1NTdjY2Q0M2FmZTgxNmU0OTUzMjI4YmYxNGE3NWRjMjkw
MTRiOGQwHhcNMjQwMTAxMTIzMDM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0MjU2ZDNjMDFjYWE5MmVhYjY4Zjc1NTIwMWMzNzQ0ZGI1ZjZhYTYxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqXqlNyHbd06Vyf7vQ//wlq5RyDWZ
z9QO7PSVngjzUvn6N9NlaoDdMVuWtfYR1X3gzC9d541Rx0xlOiJQQp5QgKPWYf0L
UQrhO9nDWcChPc6Sj6vBomRBczOlqtoWTXqVojbftfQvWNu1RvDlTgguLQFmS8PE
NiC6ZV2NjzFIWtk/+hBqMTVQeOKCTTc5C76HakGWivXHkkfE/6XwnnpesiVf0BMe
/MZzdJgfldFzq4MBXvJcbzHY3nVD7qNUy4FaF78oLWQRUKMK30VUCPw+gWOFQyaA
WK2w1wsF1kRmBiHX84WTzEpZnJo0vdLa8qKQhovPfU7pn7eZhRJpZHCqPQIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFEJW08AcqpLqto91UgHDdE219qphMB8GA1UdIwQY
MBaAFLVXzNQ6/oFuSVMii/FKddwpAUuNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdFZmTTFEci1nVzVKVXlLTDhVcDEzQ2tCUzQwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi8xOTA4NDMtMTgwMy00NDYyLWE3OTUt
NmJjNzU1NzhiNGMzLzEvUWxiVHdCeXFrdXEyajNWU0FjTjBUYlgycW1FLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYi8xOTA4NDMtMTgwMy00NDYyLWE3OTUtNmJjNzU1NzhiNGMz
LzEvdFZmTTFEci1nVzVKVXlLTDhVcDEzQ2tCUzQwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAwxoGMA0E
AgACMAcDBQAqDsvDMA0GCSqGSIb3DQEBCwUAA4IBAQCm+pxBIqoHz4/NYl2EBYbD
7gptdi8JiJqhgyQbQjl9TzC76Ol6B/M3ixHUHZKyn+H72tOJMoj/VczwVVOXIt4o
BBmA8T9jBZcEnPZTTrW4/nP4iH95ND7knvdnogH5uMv6pDYrt5opMvL0hWBJPKJA
PR7HTToJIvzinJFGlYlNLsjreSBujYri0X+n9gnl91TwVi6+87qRjb9LztH39yc4
hgZxj2h033IaLn/2z4LnqVU5B+FDpI6nSl9iBZ5GqZhQFyZdz8MpobWOSDHP+lmN
zHXm7oe4+O7bfCWuASv1MK8v0ndrbfp6+nhNTrYsbFYroil0ZezqzLcbHdcMRZAU
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:25 2024 by rpki-client on console-fra.rpki-client.org