Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7739dc-1132-4837-9b85-e9ac2b00316a/1/QGoRPOSi3P0xXEr6FMJE4Kr6gHY.roa
File: QGoRPOSi3P0xXEr6FMJE4Kr6gHY.roa (raw, json)
Hash identifier: DklRE+7RkbNKwI3Y0V4YsbrlsuFCFNiJcDkSJbmkOhE=
Subject key identifier: 40:6A:11:3C:E4:A2:DC:FD:31:5C:4A:FA:14:C2:44:E0:AA:FA:80:76
Certificate issuer: /CN=f71d4a4374df222ac3235b9602206d96bf1dac82
Certificate serial: 01856CCAD19B691DB9225AD54BCDF0E632A9
Authority key identifier: F7:1D:4A:43:74:DF:22:2A:C3:23:5B:96:02:20:6D:96:BF:1D:AC:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9x1KQ3TfIirDI1uWAiBtlr8drII.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7739dc-1132-4837-9b85-e9ac2b00316a/1/QGoRPOSi3P0xXEr6FMJE4Kr6gHY.roa
Signing time: Sun 01 Jan 2023 10:05:09 +0000
ROA not before: Sun 01 Jan 2023 10:05:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60772
IP address blocks: 185.32.40.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:ca:d1:9b:69:1d:b9:22:5a:d5:4b:cd:f0:e6:32:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f71d4a4374df222ac3235b9602206d96bf1dac82
Validity
Not Before: Jan 1 10:05:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=406a113ce4a2dcfd315c4afa14c244e0aafa8076
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:cb:d5:e1:db:09:a0:31:1b:ed:f9:9f:ef:3c:
8d:a7:78:8f:6e:60:15:ee:f5:19:7b:38:16:20:06:
69:34:3d:be:8f:23:f1:f4:49:ff:68:75:a6:e1:b1:
f0:9c:84:67:12:19:ee:43:4c:a4:14:44:52:ad:df:
e4:1f:5c:d4:01:30:d1:d4:b4:6d:4f:20:23:ab:06:
3a:0f:03:bf:57:93:ad:1a:52:56:8b:e8:e2:bb:86:
ac:4e:46:cc:67:dd:e9:02:3a:b5:34:a9:d6:db:2e:
f5:2e:ec:24:5a:1c:aa:34:d1:cf:c2:aa:27:0c:96:
76:bf:7b:11:c7:e7:3e:fb:04:ac:fd:a5:09:3c:6b:
06:60:95:9a:fa:b2:d6:cb:bb:da:c8:83:bc:95:eb:
88:6c:e7:45:0c:8f:da:96:b6:34:21:52:fe:1f:20:
50:bd:63:68:a9:c2:38:79:bf:cb:bb:ae:27:e8:59:
78:70:7a:dd:7b:68:a2:2e:6b:c4:ab:1a:eb:9b:af:
14:2b:55:44:d7:ec:ae:1e:90:14:dd:c4:5a:d1:02:
9d:b5:69:28:4c:13:f2:73:64:35:5f:4d:10:e8:d4:
23:33:85:1d:34:23:3a:bb:fa:65:8d:51:db:5b:cf:
f1:0e:35:14:28:60:59:10:43:9e:d3:ff:8b:96:d1:
03:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:6A:11:3C:E4:A2:DC:FD:31:5C:4A:FA:14:C2:44:E0:AA:FA:80:76
X509v3 Authority Key Identifier:
keyid:F7:1D:4A:43:74:DF:22:2A:C3:23:5B:96:02:20:6D:96:BF:1D:AC:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9x1KQ3TfIirDI1uWAiBtlr8drII.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7739dc-1132-4837-9b85-e9ac2b00316a/1/QGoRPOSi3P0xXEr6FMJE4Kr6gHY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7739dc-1132-4837-9b85-e9ac2b00316a/1/9x1KQ3TfIirDI1uWAiBtlr8drII.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.32.40.0/22
Signature Algorithm: sha256WithRSAEncryption
35:cb:de:09:53:03:c6:31:e1:86:7c:3c:0c:a6:aa:45:ee:56:
26:59:99:cf:54:0a:a8:c9:e3:7d:77:d7:16:bf:34:33:9b:2c:
a6:51:71:89:15:ce:ef:6b:a2:7f:42:95:da:47:ef:a0:bd:9f:
b1:65:24:71:6d:3e:d7:58:d1:66:35:ea:10:ea:7d:17:ba:94:
9d:d2:d1:66:e9:ed:a0:80:41:4f:5e:3e:97:53:43:c1:5b:e6:
6f:f8:33:af:fd:91:df:7e:11:ba:22:1d:16:9c:4e:7a:74:8b:
c5:5a:80:ed:c8:67:f6:a8:0f:89:38:69:70:72:78:ad:29:02:
91:85:59:27:7f:2a:9a:f4:be:1b:37:fd:75:07:a9:e9:09:0f:
88:ce:35:f8:0d:a7:12:49:ae:0d:0c:de:b2:95:26:40:fa:89:
c0:35:be:d7:bb:94:86:65:f6:b7:b5:a3:65:e7:f0:fd:28:68:
e9:1c:28:cb:16:bd:50:54:8e:d2:2f:cb:ce:32:77:69:6b:9c:
73:9b:97:7d:55:84:ff:13:40:ab:3f:9f:f1:57:28:cf:7d:d3:
0e:e6:40:b2:89:26:5f:99:b6:10:cf:54:12:2f:46:f6:50:f2:
5a:bb:92:86:01:62:9b:e8:40:e3:66:7c:c3:64:9a:84:87:17:
15:7e:54:1d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVsytGbaR25IlrVS83w5jKpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY3MWQ0YTQzNzRkZjIyMmFjMzIzNWI5NjAyMjA2ZDk2YmYx
ZGFjODIwHhcNMjMwMTAxMTAwNTA5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0MDZhMTEzY2U0YTJkY2ZkMzE1YzRhZmExNGMyNDRlMGFhZmE4MDc2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy8vV4dsJoDEb7fmf7zyNp3iPbmAV
7vUZezgWIAZpND2+jyPx9En/aHWm4bHwnIRnEhnuQ0ykFERSrd/kH1zUATDR1LRt
TyAjqwY6DwO/V5OtGlJWi+jiu4asTkbMZ93pAjq1NKnW2y71LuwkWhyqNNHPwqon
DJZ2v3sRx+c++wSs/aUJPGsGYJWa+rLWy7vayIO8leuIbOdFDI/alrY0IVL+HyBQ
vWNoqcI4eb/Lu64n6Fl4cHrde2iiLmvEqxrrm68UK1VE1+yuHpAU3cRa0QKdtWko
TBPyc2Q1X00Q6NQjM4UdNCM6u/pljVHbW8/xDjUUKGBZEEOe0/+LltEDuwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEBqETzkotz9MVxK+hTCROCq+oB2MB8GA1UdIwQY
MBaAFPcdSkN03yIqwyNblgIgbZa/HayCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOXgxS1EzVGZJaXJESTF1V0FpQnRscjhkcklJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS83NzM5ZGMtMTEzMi00ODM3LTliODUt
ZTlhYzJiMDAzMTZhLzEvUUdvUlBPU2kzUDB4WEVyNkZNSkU0S3I2Z0hZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNS83NzM5ZGMtMTEzMi00ODM3LTliODUtZTlhYzJiMDAzMTZh
LzEvOXgxS1EzVGZJaXJESTF1V0FpQnRscjhkcklJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuSAoMA0G
CSqGSIb3DQEBCwUAA4IBAQA1y94JUwPGMeGGfDwMpqpF7lYmWZnPVAqoyeN9d9cW
vzQzmyymUXGJFc7va6J/QpXaR++gvZ+xZSRxbT7XWNFmNeoQ6n0XupSd0tFm6e2g
gEFPXj6XU0PBW+Zv+DOv/ZHffhG6Ih0WnE56dIvFWoDtyGf2qA+JOGlwcnitKQKR
hVknfyqa9L4bN/11B6npCQ+IzjX4DacSSa4NDN6ylSZA+onANb7Xu5SGZfa3taNl
5/D9KGjpHCjLFr1QVI7SL8vOMndpa5xzm5d9VYT/E0CrP5/xVyjPfdMO5kCyiSZf
mbYQz1QSL0b2UPJau5KGAWKb6EDjZnzDZJqEhxcVflQd
-----END CERTIFICATE-----
Generated at Tue Jan 2 04:22:10 2024 by rpki-client on console-fra.rpki-client.org