Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/ac9af6-7fc3-4d13-a594-060a4738091d/1/qf1dz_IkwcVf6R13xrK2AiOXgqc.roa
File: qf1dz_IkwcVf6R13xrK2AiOXgqc.roa (raw, json)
Hash identifier: sWjmj3tdq1mVK39RoKKs38e/us5ksjN9b4Y89GrnAQY=
Subject key identifier: A9:FD:5D:CF:F2:24:C1:C5:5F:E9:1D:77:C6:B2:B6:02:23:97:82:A7
Certificate issuer: /CN=53b46ab79b9fc58f5dc4cf29d72dc5267ec3edde
Certificate serial: 018D8D707B9DC6A63C574C4F0CB84A455F92
Authority key identifier: 53:B4:6A:B7:9B:9F:C5:8F:5D:C4:CF:29:D7:2D:C5:26:7E:C3:ED:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U7Rqt5ufxY9dxM8p1y3FJn7D7d4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/ac9af6-7fc3-4d13-a594-060a4738091d/1/qf1dz_IkwcVf6R13xrK2AiOXgqc.roa
Signing time: Fri 09 Feb 2024 10:36:15 +0000
ROA not before: Fri 09 Feb 2024 10:36:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200712
IP address blocks: 80.254.231.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 05 Jun 2024 13:11:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:8d:70:7b:9d:c6:a6:3c:57:4c:4f:0c:b8:4a:45:5f:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53b46ab79b9fc58f5dc4cf29d72dc5267ec3edde
Validity
Not Before: Feb 9 10:36:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a9fd5dcff224c1c55fe91d77c6b2b602239782a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:5a:f6:4e:15:4f:6c:c9:fd:fc:c4:ec:e7:de:
c5:17:ae:21:ef:5b:f9:d5:50:c9:1a:cb:a1:05:d6:
ed:d8:87:a1:59:be:7b:67:6a:33:8e:1c:19:7f:57:
89:9d:fa:32:ea:33:b3:8a:4b:b9:a2:de:ad:22:f8:
e9:a8:a4:6a:e0:78:24:04:76:b9:7e:d0:ea:4d:e4:
ab:67:2f:4f:2a:4d:57:18:9e:1a:25:a9:5b:85:2f:
a3:57:33:c1:5b:4a:56:db:04:6e:75:98:6a:a9:7f:
87:ba:c0:6b:1c:2e:a7:15:90:cd:40:f9:14:94:31:
90:30:40:95:80:ea:78:ca:c1:f4:f7:ac:8a:02:a6:
74:0d:46:92:21:9d:5c:85:f5:20:e1:f8:ab:89:75:
02:0a:a1:0f:f5:5e:ff:ca:43:47:25:3e:9a:45:60:
74:ce:61:60:07:06:b3:6a:4a:83:0a:eb:b9:d4:85:
59:2f:e5:04:37:fc:e4:d5:17:ae:97:d3:ff:d2:46:
dc:4c:86:69:95:61:26:bd:a0:01:48:af:df:6a:e0:
c7:dd:b7:78:91:e9:c9:96:cd:6c:0d:92:22:af:c4:
f6:53:c5:02:8b:85:b9:89:6e:43:41:91:59:c2:62:
e5:25:55:11:6d:f6:a0:55:fe:01:ef:4e:29:08:7c:
f2:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:FD:5D:CF:F2:24:C1:C5:5F:E9:1D:77:C6:B2:B6:02:23:97:82:A7
X509v3 Authority Key Identifier:
keyid:53:B4:6A:B7:9B:9F:C5:8F:5D:C4:CF:29:D7:2D:C5:26:7E:C3:ED:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U7Rqt5ufxY9dxM8p1y3FJn7D7d4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/ac9af6-7fc3-4d13-a594-060a4738091d/1/qf1dz_IkwcVf6R13xrK2AiOXgqc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/ac9af6-7fc3-4d13-a594-060a4738091d/1/U7Rqt5ufxY9dxM8p1y3FJn7D7d4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.254.231.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:d0:d1:0c:15:25:a5:a7:53:08:37:16:33:e8:9c:2b:ee:3f:
f8:2b:5f:30:7c:9a:91:96:4b:e0:e7:60:ac:32:d2:63:a5:e8:
f9:ed:16:da:40:f4:41:af:dd:83:52:35:d6:56:c2:3e:77:64:
ef:05:62:fd:1f:4a:c4:48:14:4c:ea:dc:13:a1:30:1e:a0:4d:
c3:80:e9:0c:a1:e0:03:70:c6:d1:b4:f5:71:c6:d8:c4:f1:8b:
b7:67:ac:cb:8f:6b:29:f5:50:88:37:2c:e6:83:6a:68:3e:02:
24:e7:24:3f:e8:54:93:4a:e9:45:5f:52:44:01:14:45:87:9c:
a5:71:61:9b:cb:05:cb:67:93:3e:dc:1e:36:b7:ce:74:84:f1:
a0:86:54:53:75:fa:9d:3a:04:6a:a0:cf:bf:9e:03:79:68:fe:
b8:5a:fc:0a:2f:3e:7d:54:45:72:94:0b:57:7a:2d:62:0c:01:
af:3d:16:7d:eb:a5:28:b2:84:65:51:25:c9:d8:8d:e3:a1:6e:
ae:b6:37:14:3f:6c:13:de:21:35:54:b0:00:c1:cb:ba:a3:9b:
69:75:a9:b0:1d:21:72:54:34:91:18:11:4b:88:ea:b5:4a:1b:
2f:72:90:9f:92:25:90:6c:61:58:d6:69:b9:67:f5:e6:3c:0e:
d8:d3:42:3a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY2NcHudxqY8V0xPDLhKRV+SMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUzYjQ2YWI3OWI5ZmM1OGY1ZGM0Y2YyOWQ3MmRjNTI2N2Vj
M2VkZGUwHhcNMjQwMjA5MTAzNjE1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhOWZkNWRjZmYyMjRjMWM1NWZlOTFkNzdjNmIyYjYwMjIzOTc4MmE3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhlr2ThVPbMn9/MTs597FF64h71v5
1VDJGsuhBdbt2IehWb57Z2ozjhwZf1eJnfoy6jOziku5ot6tIvjpqKRq4HgkBHa5
ftDqTeSrZy9PKk1XGJ4aJalbhS+jVzPBW0pW2wRudZhqqX+HusBrHC6nFZDNQPkU
lDGQMECVgOp4ysH096yKAqZ0DUaSIZ1chfUg4firiXUCCqEP9V7/ykNHJT6aRWB0
zmFgBwazakqDCuu51IVZL+UEN/zk1Reul9P/0kbcTIZplWEmvaABSK/fauDH3bd4
kenJls1sDZIir8T2U8UCi4W5iW5DQZFZwmLlJVURbfagVf4B704pCHzyXQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKn9Xc/yJMHFX+kdd8aytgIjl4KnMB8GA1UdIwQY
MBaAFFO0arebn8WPXcTPKdctxSZ+w+3eMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVTdScXQ1dWZ4WTlkeE04cDF5M0ZKbjdEN2Q0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy9hYzlhZjYtN2ZjMy00ZDEzLWE1OTQt
MDYwYTQ3MzgwOTFkLzEvcWYxZHpfSWt3Y1ZmNlIxM3hySzJBaU9YZ3FjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYy9hYzlhZjYtN2ZjMy00ZDEzLWE1OTQtMDYwYTQ3MzgwOTFk
LzEvVTdScXQ1dWZ4WTlkeE04cDF5M0ZKbjdEN2Q0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAUP7nMA0G
CSqGSIb3DQEBCwUAA4IBAQAL0NEMFSWlp1MINxYz6Jwr7j/4K18wfJqRlkvg52Cs
MtJjpej57RbaQPRBr92DUjXWVsI+d2TvBWL9H0rESBRM6twToTAeoE3DgOkMoeAD
cMbRtPVxxtjE8Yu3Z6zLj2sp9VCINyzmg2poPgIk5yQ/6FSTSulFX1JEARRFh5yl
cWGbywXLZ5M+3B42t850hPGghlRTdfqdOgRqoM+/ngN5aP64WvwKLz59VEVylAtX
ei1iDAGvPRZ966UosoRlUSXJ2I3joW6utjcUP2wT3iE1VLAAwcu6o5tpdamwHSFy
VDSRGBFLiOq1ShsvcpCfkiWQbGFY1mm5Z/XmPA7Y00I6
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:03 2024 by rpki-client on console-ams.rpki-client.org