Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/4429a4-0b36-4ced-846f-e20a654fca95/1/IQZjo8HoZZXrRqjCJqBmprsW3QI.roa
File: IQZjo8HoZZXrRqjCJqBmprsW3QI.roa (raw, json)
Hash identifier: tvMiIF4R1Bh9jgUZ8REelblCDUhCZWSHVNjKhsBefUo=
Subject key identifier: 21:06:63:A3:C1:E8:65:95:EB:46:A8:C2:26:A0:66:A6:BB:16:DD:02
Certificate issuer: /CN=731d9ad404ecdafa70ea9a4c9d10b9801829ea1f
Certificate serial: 01856D93F87B0F390A03428151E69978DE64
Authority key identifier: 73:1D:9A:D4:04:EC:DA:FA:70:EA:9A:4C:9D:10:B9:80:18:29:EA:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cx2a1ATs2vpw6ppMnRC5gBgp6h8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/4429a4-0b36-4ced-846f-e20a654fca95/1/IQZjo8HoZZXrRqjCJqBmprsW3QI.roa
Signing time: Sun 01 Jan 2023 13:44:51 +0000
ROA not before: Sun 01 Jan 2023 13:44:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9119
IP address blocks: 46.54.240.0/20 maxlen: 20
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:93:f8:7b:0f:39:0a:03:42:81:51:e6:99:78:de:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=731d9ad404ecdafa70ea9a4c9d10b9801829ea1f
Validity
Not Before: Jan 1 13:44:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=210663a3c1e86595eb46a8c226a066a6bb16dd02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:d2:ce:f8:a1:a7:40:9d:f9:1c:7a:0d:22:4d:
6b:e9:59:ae:1d:14:99:c6:29:eb:dd:dd:40:6d:c0:
8f:4c:d5:78:12:b1:52:0d:b1:a7:60:0a:56:58:f9:
f3:2a:6e:1b:b4:51:7e:d5:30:9d:02:d6:1f:5a:ce:
1c:78:aa:e9:47:e0:78:15:98:57:70:49:9b:ef:28:
ab:0b:0b:d9:1a:87:7a:15:11:77:61:fd:ff:0d:34:
47:51:ee:2b:45:f1:59:45:68:23:6d:a7:1f:f6:8a:
1a:8f:2c:f2:b4:07:e5:6c:72:a6:72:95:04:6e:9f:
07:2c:a6:47:85:fd:51:c7:b1:7b:a4:1f:6e:8b:ff:
b3:a8:93:6f:5b:37:fc:bf:34:fd:09:e8:07:7e:e5:
e1:64:df:ed:05:c5:a2:e3:df:5f:66:cf:44:24:55:
84:3a:5f:be:fe:b1:cc:36:ef:60:29:86:ff:5a:83:
00:0b:58:a9:1a:42:3a:04:07:92:15:b9:c5:4d:a2:
0c:82:a7:38:ae:7e:e5:dc:11:1a:c6:f7:43:5b:0a:
de:17:85:ed:ea:3d:79:26:a3:e3:4e:7d:19:73:12:
c5:a5:82:47:22:cd:bf:49:14:0d:b5:90:be:65:9c:
5d:ba:0f:08:05:8e:d4:dd:70:41:24:aa:49:76:b0:
be:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:06:63:A3:C1:E8:65:95:EB:46:A8:C2:26:A0:66:A6:BB:16:DD:02
X509v3 Authority Key Identifier:
keyid:73:1D:9A:D4:04:EC:DA:FA:70:EA:9A:4C:9D:10:B9:80:18:29:EA:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cx2a1ATs2vpw6ppMnRC5gBgp6h8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/4429a4-0b36-4ced-846f-e20a654fca95/1/IQZjo8HoZZXrRqjCJqBmprsW3QI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/4429a4-0b36-4ced-846f-e20a654fca95/1/cx2a1ATs2vpw6ppMnRC5gBgp6h8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.54.240.0/20
Signature Algorithm: sha256WithRSAEncryption
37:18:9d:25:49:43:f6:7a:9d:b6:8b:0a:eb:59:69:97:9b:bd:
ff:c4:a2:bc:5c:ff:8f:67:c1:5e:2f:93:54:aa:78:40:39:e4:
3b:38:45:1e:b2:c5:c3:b4:f3:5b:39:6a:7e:55:d1:8f:4a:f7:
9f:74:ef:51:b0:96:8e:0d:22:b0:61:7d:c8:a9:ee:b2:2b:b2:
6d:67:19:64:f3:cd:d3:c9:5d:d5:0f:19:d9:32:ae:7a:3b:c2:
22:53:f4:cf:ad:7a:b2:83:48:c4:dc:92:ae:c9:0c:fb:ea:c9:
2d:f4:a6:5c:d9:a3:b0:52:ef:4b:dd:64:df:bb:1b:c9:3d:d6:
e6:5b:6a:31:13:02:42:12:37:0f:3e:23:8a:c7:78:2f:70:e4:
1d:79:38:0a:87:bb:39:60:d2:b2:92:87:60:54:87:f7:53:18:
a3:12:e1:3c:d1:90:78:3a:b7:79:92:d0:cd:65:6e:b0:fb:5e:
a4:e0:98:de:f4:32:07:13:a4:9b:32:d9:b6:51:6c:91:65:91:
e7:b2:85:be:f2:73:52:01:a8:2f:94:f6:88:59:64:c3:81:bc:
1d:ac:3e:f6:30:38:b5:42:03:66:a3:92:d2:1f:2f:e3:a9:19:
7d:17:59:a8:f3:55:99:79:d6:08:64:3a:25:10:93:8c:f9:b2:
66:82:3a:2f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVtk/h7DzkKA0KBUeaZeN5kMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDczMWQ5YWQ0MDRlY2RhZmE3MGVhOWE0YzlkMTBiOTgwMTgy
OWVhMWYwHhcNMjMwMTAxMTM0NDUxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyMTA2NjNhM2MxZTg2NTk1ZWI0NmE4YzIyNmEwNjZhNmJiMTZkZDAyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo9LO+KGnQJ35HHoNIk1r6VmuHRSZ
xinr3d1AbcCPTNV4ErFSDbGnYApWWPnzKm4btFF+1TCdAtYfWs4ceKrpR+B4FZhX
cEmb7yirCwvZGod6FRF3Yf3/DTRHUe4rRfFZRWgjbacf9ooajyzytAflbHKmcpUE
bp8HLKZHhf1Rx7F7pB9ui/+zqJNvWzf8vzT9CegHfuXhZN/tBcWi499fZs9EJFWE
Ol++/rHMNu9gKYb/WoMAC1ipGkI6BAeSFbnFTaIMgqc4rn7l3BEaxvdDWwreF4Xt
6j15JqPjTn0ZcxLFpYJHIs2/SRQNtZC+ZZxdug8IBY7U3XBBJKpJdrC+PQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCEGY6PB6GWV60aowiagZqa7Ft0CMB8GA1UdIwQY
MBaAFHMdmtQE7Nr6cOqaTJ0QuYAYKeofMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY3gyYTFBVHMydnB3NnBwTW5SQzVnQmdwNmg4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC80NDI5YTQtMGIzNi00Y2VkLTg0NmYt
ZTIwYTY1NGZjYTk1LzEvSVFaam84SG9aWlhyUnFqQ0pxQm1wcnNXM1FJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMC80NDI5YTQtMGIzNi00Y2VkLTg0NmYtZTIwYTY1NGZjYTk1
LzEvY3gyYTFBVHMydnB3NnBwTW5SQzVnQmdwNmg4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQELjbwMA0G
CSqGSIb3DQEBCwUAA4IBAQA3GJ0lSUP2ep22iwrrWWmXm73/xKK8XP+PZ8FeL5NU
qnhAOeQ7OEUessXDtPNbOWp+VdGPSvefdO9RsJaODSKwYX3Iqe6yK7JtZxlk883T
yV3VDxnZMq56O8IiU/TPrXqyg0jE3JKuyQz76skt9KZc2aOwUu9L3WTfuxvJPdbm
W2oxEwJCEjcPPiOKx3gvcOQdeTgKh7s5YNKykodgVIf3UxijEuE80ZB4Ord5ktDN
ZW6w+16k4Jje9DIHE6SbMtm2UWyRZZHnsoW+8nNSAagvlPaIWWTDgbwdrD72MDi1
QgNmo5LSHy/jqRl9F1mo81WZedYIZDolEJOM+bJmgjov
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:03 2024 by rpki-client on console-fra.rpki-client.org