Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/QDpfnZTwPBIyCte2X5afLpxebyg.roa
File: QDpfnZTwPBIyCte2X5afLpxebyg.roa (raw, json)
Hash identifier: 2fV9XVTVJ+4kLW8LtmlEoHJhCfuRRBAwwE/uZTQc7ao=
Subject key identifier: 40:3A:5F:9D:94:F0:3C:12:32:0A:D7:B6:5F:96:9F:2E:9C:5E:6F:28
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 01930552A1AE9BC846ECA70946E1FEF4E5DC
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/QDpfnZTwPBIyCte2X5afLpxebyg.roa
Signing time: Thu 07 Nov 2024 06:32:01 +0000
ROA not before: Thu 07 Nov 2024 06:32:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 21022
IP address blocks: 80.96.70.0/23 maxlen: 24
Validation: Failed, certificate revoked on Wed 13 Nov 2024 05:55:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:05:52:a1:ae:9b:c8:46:ec:a7:09:46:e1:fe:f4:e5:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Nov 7 06:32:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=403a5f9d94f03c12320ad7b65f969f2e9c5e6f28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:df:87:59:b8:71:32:e8:a5:a7:9f:fd:e3:c0:
2d:b1:cb:23:be:c5:c1:d6:40:f3:46:7e:a5:64:bf:
1d:89:06:df:36:4a:cc:4d:45:77:31:48:86:05:e4:
bc:8d:48:5a:78:30:ef:6c:ea:b4:58:eb:b9:5e:16:
bc:9b:d9:be:27:a3:1a:82:88:e9:da:30:26:40:d3:
f4:18:8e:a9:d9:86:d8:92:55:ab:93:86:9d:ff:00:
23:b4:0b:68:e1:08:2c:a5:6d:63:f1:f9:c4:7f:79:
4b:6f:1e:81:f2:9c:03:42:7b:cb:4e:b1:5a:42:a1:
4e:81:fa:49:3e:91:d2:f3:f6:ca:30:3e:c7:d5:b0:
44:b5:b1:21:40:b1:cf:dd:a0:17:af:c9:ef:ef:38:
30:30:04:94:88:fc:d0:9d:4c:61:22:7a:7b:db:15:
19:7a:7e:01:e5:04:b2:76:59:77:0e:74:34:19:a0:
d5:67:f1:a9:03:79:64:63:d1:5f:44:7e:a2:4a:7f:
c5:c9:e8:e0:05:b0:7f:17:f2:f5:e7:e0:aa:04:94:
01:39:45:51:f0:f2:8d:75:34:c4:69:77:46:e8:bf:
d5:d4:20:5d:19:8e:2a:54:20:11:1a:79:d7:4a:05:
16:b9:06:c1:c5:35:0a:75:38:37:f5:c1:b2:02:40:
36:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:3A:5F:9D:94:F0:3C:12:32:0A:D7:B6:5F:96:9F:2E:9C:5E:6F:28
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/QDpfnZTwPBIyCte2X5afLpxebyg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.96.70.0/23
Signature Algorithm: sha256WithRSAEncryption
85:4b:a5:cc:b6:9b:34:1b:5f:c0:e8:f3:be:fb:23:e2:18:c8:
51:15:bb:fa:48:88:e9:d8:e9:cc:7b:86:92:d9:4b:4b:be:6e:
c0:dc:9b:38:20:e1:08:02:17:1c:76:2b:52:b3:a4:78:5c:77:
c8:d5:23:01:42:8e:58:e4:8d:03:eb:26:81:1a:5b:9b:d7:a7:
03:91:bd:13:1a:81:bd:b7:83:2d:5e:d9:75:db:41:c8:bb:69:
9e:a4:ee:26:ed:19:d7:0e:2f:c5:b7:60:57:a5:9d:fa:25:38:
77:70:9f:95:ef:6b:e9:0d:e3:5d:ec:bc:0d:7e:5c:25:cb:e4:
af:e8:60:43:13:d1:78:07:1a:f6:00:24:5b:50:81:99:ad:bd:
38:1a:c7:7d:e5:1a:ed:20:4c:01:66:9e:1d:70:f8:78:03:d3:
12:22:9c:f9:85:cb:a3:2f:6e:7f:2e:3e:6c:0b:88:06:f3:31:
ed:55:8b:e4:d1:0a:47:ff:48:24:9d:32:ea:bc:39:a8:1a:02:
b3:22:ab:ce:b1:d6:32:88:56:bb:c1:63:26:50:7a:bd:e1:a3:
32:c7:b7:0e:c9:f7:28:86:7b:61:cc:e8:2e:d8:7a:c8:fb:70:
af:20:7c:66:80:8f:1d:b5:a2:c1:de:ad:7f:0e:75:99:3c:7d:
01:74:3b:e9
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZMFUqGum8hG7KcJRuH+9OXcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMxODM3ODU5MTZjZDk4ZDdjNzcwZDY4NTE0NTQ5OWE4YTBh
MTU3MjIwHhcNMjQxMTA3MDYzMjAxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0MDNhNWY5ZDk0ZjAzYzEyMzIwYWQ3YjY1Zjk2OWYyZTljNWU2ZjI4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApd+HWbhxMuilp5/948AtscsjvsXB
1kDzRn6lZL8diQbfNkrMTUV3MUiGBeS8jUhaeDDvbOq0WOu5Xha8m9m+J6Magojp
2jAmQNP0GI6p2YbYklWrk4ad/wAjtAto4QgspW1j8fnEf3lLbx6B8pwDQnvLTrFa
QqFOgfpJPpHS8/bKMD7H1bBEtbEhQLHP3aAXr8nv7zgwMASUiPzQnUxhInp72xUZ
en4B5QSydll3DnQ0GaDVZ/GpA3lkY9FfRH6iSn/FyejgBbB/F/L15+CqBJQBOUVR
8PKNdTTEaXdG6L/V1CBdGY4qVCARGnnXSgUWuQbBxTUKdTg39cGyAkA2lwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEA6X52U8DwSMgrXtl+Wny6cXm8oMB8GA1UdIwQY
MBaAFDGDeFkWzZjXx3DWhRRUmaigoVciMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTVlONFdSYk5tTmZIY05hRkZGU1pxS0NoVnlJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS83MTkzZGItN2Y4NS00MmJiLWIwOWEt
ZjUyYzQ3YzIyNWRiLzEvUURwZm5aVHdQQkl5Q3RlMlg1YWZMcHhlYnlnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNS83MTkzZGItN2Y4NS00MmJiLWIwOWEtZjUyYzQ3YzIyNWRi
LzEvTVlONFdSYk5tTmZIY05hRkZGU1pxS0NoVnlJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBUGBGMA0G
CSqGSIb3DQEBCwUAA4IBAQCFS6XMtps0G1/A6PO++yPiGMhRFbv6SIjp2OnMe4aS
2UtLvm7A3Js4IOEIAhccditSs6R4XHfI1SMBQo5Y5I0D6yaBGlub16cDkb0TGoG9
t4MtXtl120HIu2mepO4m7RnXDi/Ft2BXpZ36JTh3cJ+V72vpDeNd7LwNflwly+Sv
6GBDE9F4Bxr2ACRbUIGZrb04Gsd95RrtIEwBZp4dcPh4A9MSIpz5hcujL25/Lj5s
C4gG8zHtVYvk0QpH/0gknTLqvDmoGgKzIqvOsdYyiFa7wWMmUHq94aMyx7cOyfco
hnthzOgu2HrI+3CvIHxmgI8dtaLB3q1/DnWZPH0BdDvp
-----END CERTIFICATE-----
Generated at Wed Nov 13 07:04:41 2024 by rpki-client on console-fra.rpki-client.org