Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/QND61Gg7GYcGyV0Wzlyz6G9QmSY.roa
File: QND61Gg7GYcGyV0Wzlyz6G9QmSY.roa (raw, json)
Hash identifier: MlWNINT7tle1s8xv6eH8v6skdw0fl4fAnlB74rNnPwM=
Subject key identifier: 40:D0:FA:D4:68:3B:19:87:06:C9:5D:16:CE:5C:B3:E8:6F:50:99:26
Certificate issuer: /CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5
Certificate serial: 0185729ECC209EC2139C54F357D9B8500B86
Authority key identifier: AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/QND61Gg7GYcGyV0Wzlyz6G9QmSY.roa
Signing time: Mon 02 Jan 2023 13:14:47 +0000
ROA not before: Mon 02 Jan 2023 13:14:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212322
IP address blocks: 185.148.240.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 05 Jan 2023 21:22:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:9e:cc:20:9e:c2:13:9c:54:f3:57:d9:b8:50:0b:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5
Validity
Not Before: Jan 2 13:14:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=40d0fad4683b198706c95d16ce5cb3e86f509926
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:d8:14:f6:37:eb:01:8b:c0:3f:9a:99:54:b4:
f4:ea:d1:69:38:96:f2:12:98:9f:a7:4a:b8:83:7b:
64:53:a4:83:81:56:32:54:5a:1b:c5:31:80:1d:7b:
cd:4e:67:dc:36:1a:f1:c3:44:76:95:e7:68:4f:3a:
03:94:61:25:4b:42:cb:f5:c7:95:d1:b6:9c:19:ec:
0b:80:82:90:4d:3d:d7:4d:ae:8c:8d:bb:27:32:42:
62:29:41:2a:76:98:7d:bd:90:b8:4b:bd:21:1d:88:
c8:a3:8a:e9:21:29:97:6a:12:7b:18:1a:92:71:5a:
b8:36:83:12:ca:11:24:7b:f5:4a:51:02:17:a6:0d:
f3:1d:19:5d:39:da:22:97:52:dd:90:f8:51:b1:82:
2f:40:8c:21:c6:13:4d:54:7e:4b:cc:9d:e5:ac:32:
7d:f4:01:b0:e9:6b:b0:90:3b:69:e3:99:d5:20:7e:
b3:a9:79:25:ed:2b:22:d8:fe:09:a9:54:ed:7f:bc:
b4:cb:ad:c5:b2:d2:8a:63:f0:4e:4d:c6:d0:1f:2f:
58:e6:ae:e2:cf:be:cf:2a:12:98:0b:f2:b9:99:1a:
88:62:69:96:f1:f3:9f:af:e4:b0:cf:c8:79:36:45:
1e:44:08:dc:d5:29:db:fa:3f:05:71:33:f1:7e:b2:
e5:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:D0:FA:D4:68:3B:19:87:06:C9:5D:16:CE:5C:B3:E8:6F:50:99:26
X509v3 Authority Key Identifier:
keyid:AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/QND61Gg7GYcGyV0Wzlyz6G9QmSY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.148.240.0/24
Signature Algorithm: sha256WithRSAEncryption
b9:56:9f:d1:f3:18:ee:89:fa:e6:77:44:f7:fd:93:0e:51:92:
cd:8d:0d:69:f3:bc:9b:47:7e:b0:44:3d:c1:cf:b8:d0:21:1b:
8e:91:d9:75:86:af:2e:31:fb:8a:94:42:86:bd:46:33:a9:85:
0d:9f:84:e3:2f:fe:83:0f:9f:1b:5e:bf:72:91:a9:65:34:1d:
ec:6c:3e:1b:c7:0a:a5:7b:2d:b0:51:01:df:c1:85:9e:d1:0e:
80:ed:9e:69:dd:91:fd:89:e1:a8:da:07:51:de:ed:4d:64:24:
3b:58:e9:0a:17:e9:5d:c8:da:6f:2c:6d:bc:7f:1b:2f:90:70:
86:54:89:e1:65:f0:d0:23:a0:f3:a3:44:e7:a7:74:6d:92:14:
99:39:f7:1e:56:da:ea:9b:d9:20:56:ca:e4:97:9d:06:45:b2:
87:72:9b:c1:fc:32:dc:74:4d:b3:dd:2f:69:aa:c8:c8:95:4a:
4a:c8:af:6b:39:4d:86:22:72:3f:16:5f:f6:c4:2f:1e:8e:ae:
98:6c:fb:ae:e1:3a:af:ff:90:9b:fd:ad:70:a2:9f:2c:60:26:
16:33:7c:26:c8:57:f4:2c:77:69:1d:96:88:78:ef:25:0e:4c:
06:75:cd:41:bf:54:a9:12:4c:51:c0:f9:ed:21:1b:55:3a:da:
2f:9a:58:67
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVynswgnsITnFTzV9m4UAuGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFkMGRhNDNiNGE1ZDNkYjc4YmEzZjc3NGU1YjMxYjc3MDM3
MjAyZDUwHhcNMjMwMTAyMTMxNDQ3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0MGQwZmFkNDY4M2IxOTg3MDZjOTVkMTZjZTVjYjNlODZmNTA5OTI2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkdgU9jfrAYvAP5qZVLT06tFpOJby
Epifp0q4g3tkU6SDgVYyVFobxTGAHXvNTmfcNhrxw0R2ledoTzoDlGElS0LL9ceV
0bacGewLgIKQTT3XTa6MjbsnMkJiKUEqdph9vZC4S70hHYjIo4rpISmXahJ7GBqS
cVq4NoMSyhEke/VKUQIXpg3zHRldOdoil1LdkPhRsYIvQIwhxhNNVH5LzJ3lrDJ9
9AGw6WuwkDtp45nVIH6zqXkl7Ssi2P4JqVTtf7y0y63FstKKY/BOTcbQHy9Y5q7i
z77PKhKYC/K5mRqIYmmW8fOfr+Swz8h5NkUeRAjc1Snb+j8FcTPxfrLl2QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEDQ+tRoOxmHBsldFs5cs+hvUJkmMB8GA1UdIwQY
MBaAFK0NpDtKXT23i6P3dOWzG3cDcgLVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvclEya08wcGRQYmVMb19kMDViTWJkd055QXRVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC9kZDgwOTYtMTRjYy00ODhkLTkyNTct
YzUxNWYzNTRjYzVhLzEvUU5ENjFHZzdHWWNHeVYwV3pseXo2RzlRbVNZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZC9kZDgwOTYtMTRjYy00ODhkLTkyNTctYzUxNWYzNTRjYzVh
LzEvclEya08wcGRQYmVMb19kMDViTWJkd055QXRVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuZTwMA0G
CSqGSIb3DQEBCwUAA4IBAQC5Vp/R8xjuifrmd0T3/ZMOUZLNjQ1p87ybR36wRD3B
z7jQIRuOkdl1hq8uMfuKlEKGvUYzqYUNn4TjL/6DD58bXr9ykallNB3sbD4bxwql
ey2wUQHfwYWe0Q6A7Z5p3ZH9ieGo2gdR3u1NZCQ7WOkKF+ldyNpvLG28fxsvkHCG
VInhZfDQI6Dzo0Tnp3RtkhSZOfceVtrqm9kgVsrkl50GRbKHcpvB/DLcdE2z3S9p
qsjIlUpKyK9rOU2GInI/Fl/2xC8ejq6YbPuu4Tqv/5Cb/a1wop8sYCYWM3wmyFf0
LHdpHZaIeO8lDkwGdc1Bv1SpEkxRwPntIRtVOtovmlhn
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:45 2024 by rpki-client on console-ams.rpki-client.org