Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/13ea1f-0bc1-457c-8ab5-04e812d48e72/1/QFWVNFpYJ2dvvhbqRoPFPa4L8Rw.roa
File: QFWVNFpYJ2dvvhbqRoPFPa4L8Rw.roa (raw, json)
Hash identifier: rNvkGUaYG30XIbhwmLwtu1IleREnZaz1PYz06cUTdjI=
Subject key identifier: 40:55:95:34:5A:58:27:67:6F:BE:16:EA:46:83:C5:3D:AE:0B:F1:1C
Certificate issuer: /CN=0fe39b41074c7d6adc8ee274e239f7b8eb3585e9
Certificate serial: 018AB6D77508BABCA91FECF100640077A41B
Authority key identifier: 0F:E3:9B:41:07:4C:7D:6A:DC:8E:E2:74:E2:39:F7:B8:EB:35:85:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D-ObQQdMfWrcjuJ04jn3uOs1hek.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/13ea1f-0bc1-457c-8ab5-04e812d48e72/1/QFWVNFpYJ2dvvhbqRoPFPa4L8Rw.roa
Signing time: Thu 21 Sep 2023 08:24:48 +0000
ROA not before: Thu 21 Sep 2023 08:24:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12338
IP address blocks: 212.55.0.0/19 maxlen: 19
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:b6:d7:75:08:ba:bc:a9:1f:ec:f1:00:64:00:77:a4:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0fe39b41074c7d6adc8ee274e239f7b8eb3585e9
Validity
Not Before: Sep 21 08:24:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=405595345a5827676fbe16ea4683c53dae0bf11c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:db:0d:5c:bf:ce:1a:55:89:1c:dc:9e:54:52:
44:8f:80:ef:53:5c:c4:54:68:84:70:25:f0:66:3d:
bc:8f:58:b3:a2:a5:89:93:5a:5a:c1:d6:09:3b:0c:
74:1c:2b:fb:c0:2b:65:65:fa:06:77:d0:9e:ba:e6:
b3:0c:70:70:48:ec:18:f4:7d:df:f4:cf:02:ce:31:
cb:7e:54:ae:cf:c1:78:97:60:38:eb:68:a2:bd:d7:
6b:7a:fa:2b:97:e9:99:ff:9d:f2:1d:20:4c:6f:4c:
ab:3f:15:8e:ac:49:37:c6:52:66:3b:74:79:ce:67:
7e:34:89:f5:af:fb:b5:8f:72:86:d3:88:36:64:d2:
a3:b5:62:1a:01:3d:c7:1d:85:cd:1c:6d:ce:ff:23:
87:c1:50:8a:26:e1:4a:e0:df:b9:4e:49:94:bb:fc:
f1:52:e0:17:eb:94:36:c7:1a:ad:05:39:5f:fd:2b:
05:f9:3c:2f:5a:b6:fa:5e:3c:c1:d2:3b:92:0b:63:
1e:36:57:53:89:e0:33:21:77:aa:74:c0:e7:47:2a:
a3:62:66:c0:b8:e7:8c:60:5a:92:03:aa:31:b1:d1:
e8:8a:b4:dc:93:e0:2b:b2:44:69:e7:3b:71:69:dc:
9d:fa:ad:0f:72:31:85:62:7f:2e:e7:ee:47:04:b2:
03:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:55:95:34:5A:58:27:67:6F:BE:16:EA:46:83:C5:3D:AE:0B:F1:1C
X509v3 Authority Key Identifier:
keyid:0F:E3:9B:41:07:4C:7D:6A:DC:8E:E2:74:E2:39:F7:B8:EB:35:85:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D-ObQQdMfWrcjuJ04jn3uOs1hek.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/13ea1f-0bc1-457c-8ab5-04e812d48e72/1/QFWVNFpYJ2dvvhbqRoPFPa4L8Rw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/13ea1f-0bc1-457c-8ab5-04e812d48e72/1/D-ObQQdMfWrcjuJ04jn3uOs1hek.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.55.0.0/19
Signature Algorithm: sha256WithRSAEncryption
8f:5a:53:d7:79:74:91:27:6a:37:2f:2e:91:c4:e7:30:f1:8e:
21:a1:94:69:b4:c5:42:47:e7:83:e3:47:ee:35:a4:ec:11:28:
c9:f5:32:98:a1:f4:a0:c5:ef:1a:35:6f:cc:7b:d7:74:a4:d9:
bb:0f:49:49:21:9d:d0:b5:16:ca:38:85:25:b6:3b:f0:50:26:
36:88:e2:b7:02:f6:26:65:d6:88:b2:c9:eb:7d:0b:c2:b7:6d:
2e:33:f0:d2:7f:72:d1:65:fd:60:99:2e:32:bf:b5:46:69:69:
14:55:e0:bd:a1:87:19:01:5c:55:37:17:18:17:54:47:ec:c3:
de:49:f4:98:f3:a5:6d:e3:5d:0e:f4:75:5a:97:85:e3:c3:42:
63:74:ae:4d:d6:6e:46:d1:14:3a:4f:b7:85:ba:c6:00:da:8d:
48:13:8a:e4:2a:32:60:8a:e4:69:d9:c3:c0:3a:20:85:c6:12:
d8:b4:a6:ed:1e:00:73:af:31:e3:16:c2:3c:ee:7f:c9:9d:4f:
7a:b0:1d:bf:31:29:4c:5c:5c:70:4c:03:81:6b:29:17:70:73:
5f:5e:22:90:df:c2:c0:be:06:8f:6a:fd:72:3a:66:b5:b0:b0:
67:79:f2:bb:46:09:0b:83:ed:35:75:d7:99:73:07:f6:1c:93:
18:e8:9a:4c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYq213UIurypH+zxAGQAd6QbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBmZTM5YjQxMDc0YzdkNmFkYzhlZTI3NGUyMzlmN2I4ZWIz
NTg1ZTkwHhcNMjMwOTIxMDgyNDQ4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0MDU1OTUzNDVhNTgyNzY3NmZiZTE2ZWE0NjgzYzUzZGFlMGJmMTFjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoNsNXL/OGlWJHNyeVFJEj4DvU1zE
VGiEcCXwZj28j1izoqWJk1pawdYJOwx0HCv7wCtlZfoGd9CeuuazDHBwSOwY9H3f
9M8CzjHLflSuz8F4l2A462iivddrevorl+mZ/53yHSBMb0yrPxWOrEk3xlJmO3R5
zmd+NIn1r/u1j3KG04g2ZNKjtWIaAT3HHYXNHG3O/yOHwVCKJuFK4N+5TkmUu/zx
UuAX65Q2xxqtBTlf/SsF+TwvWrb6XjzB0juSC2MeNldTieAzIXeqdMDnRyqjYmbA
uOeMYFqSA6oxsdHoirTck+ArskRp5ztxadyd+q0PcjGFYn8u5+5HBLIDSwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEBVlTRaWCdnb74W6kaDxT2uC/EcMB8GA1UdIwQY
MBaAFA/jm0EHTH1q3I7idOI597jrNYXpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRC1PYlFRZE1mV3JjanVKMDRqbjN1T3MxaGVrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOS8xM2VhMWYtMGJjMS00NTdjLThhYjUt
MDRlODEyZDQ4ZTcyLzEvUUZXVk5GcFlKMmR2dmhicVJvUEZQYTRMOFJ3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xOS8xM2VhMWYtMGJjMS00NTdjLThhYjUtMDRlODEyZDQ4ZTcy
LzEvRC1PYlFRZE1mV3JjanVKMDRqbjN1T3MxaGVrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQF1DcAMA0G
CSqGSIb3DQEBCwUAA4IBAQCPWlPXeXSRJ2o3Ly6RxOcw8Y4hoZRptMVCR+eD40fu
NaTsESjJ9TKYofSgxe8aNW/Me9d0pNm7D0lJIZ3QtRbKOIUltjvwUCY2iOK3AvYm
ZdaIssnrfQvCt20uM/DSf3LRZf1gmS4yv7VGaWkUVeC9oYcZAVxVNxcYF1RH7MPe
SfSY86Vt410O9HVal4Xjw0JjdK5N1m5G0RQ6T7eFusYA2o1IE4rkKjJgiuRp2cPA
OiCFxhLYtKbtHgBzrzHjFsI87n/JnU96sB2/MSlMXFxwTAOBaykXcHNfXiKQ38LA
vgaPav1yOma1sLBnefK7RgkLg+01ddeZcwf2HJMY6JpM
-----END CERTIFICATE-----
Generated at Mon Jan 1 11:39:22 2024 by rpki-client on console-fra.rpki-client.org