Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/QdjW07CEpQoxEPHswRp54ZisLbY.roa
File: QdjW07CEpQoxEPHswRp54ZisLbY.roa (raw, json)
Hash identifier: maTIFbGKEx/4+wAPPfjMpkdrKVMDBcrWXjBSFr3MEf0=
Subject key identifier: 41:D8:D6:D3:B0:84:A5:0A:31:10:F1:EC:C1:1A:79:E1:98:AC:2D:B6
Certificate issuer: /CN=bf84113545d9000760f66062a4221933a2e959d8
Certificate serial: 01856BC0F187C8E5EC42A229FDD61C04CB7B
Authority key identifier: BF:84:11:35:45:D9:00:07:60:F6:60:62:A4:22:19:33:A2:E9:59:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v4QRNUXZAAdg9mBipCIZM6LpWdg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/QdjW07CEpQoxEPHswRp54ZisLbY.roa
Signing time: Sun 01 Jan 2023 05:14:44 +0000
ROA not before: Sun 01 Jan 2023 05:14:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 52000
IP address blocks: 45.150.65.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:c0:f1:87:c8:e5:ec:42:a2:29:fd:d6:1c:04:cb:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf84113545d9000760f66062a4221933a2e959d8
Validity
Not Before: Jan 1 05:14:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=41d8d6d3b084a50a3110f1ecc11a79e198ac2db6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:ab:93:8e:1f:44:ca:18:ad:b7:f5:aa:45:5b:
6f:8b:76:83:1a:52:c7:ea:4c:5d:be:58:d1:35:34:
b2:a4:f9:5c:67:6a:18:1c:d4:3a:8c:36:b1:06:99:
0e:ef:bf:65:b2:fe:11:be:6f:74:d6:f8:0e:c9:5f:
8f:7c:d2:c0:e0:5b:2a:6b:a9:44:e7:d0:3b:b7:6d:
60:e1:be:41:b3:00:da:17:ae:4a:39:83:3d:1b:71:
16:b5:95:f7:e0:f4:a2:d8:5b:0a:73:74:4c:1c:a2:
f2:99:ea:9a:7d:c6:1e:17:15:73:85:16:7b:78:c2:
9f:18:a8:6a:f5:51:73:b7:b5:8e:61:f5:8c:ae:92:
c1:39:35:72:f9:7a:4a:37:0d:f1:2e:79:c7:f1:dd:
27:08:7f:7a:77:39:78:f8:a8:8d:12:0f:96:aa:c2:
96:c0:4b:24:5b:c9:55:b3:b1:ec:fa:1f:05:5d:ae:
cb:8d:3d:bf:0c:ca:82:17:2a:e0:91:5e:42:2f:f2:
49:b8:81:66:83:0f:b5:65:d8:bc:83:e4:0b:a1:53:
fa:97:6c:af:bf:97:07:e8:a2:61:d5:44:39:ba:98:
48:81:6e:f7:1b:cd:bc:1c:4e:82:c0:76:99:80:48:
3e:98:45:b0:b9:e1:4d:c3:f4:d9:47:0b:6d:c1:f5:
74:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:D8:D6:D3:B0:84:A5:0A:31:10:F1:EC:C1:1A:79:E1:98:AC:2D:B6
X509v3 Authority Key Identifier:
keyid:BF:84:11:35:45:D9:00:07:60:F6:60:62:A4:22:19:33:A2:E9:59:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v4QRNUXZAAdg9mBipCIZM6LpWdg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/QdjW07CEpQoxEPHswRp54ZisLbY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/v4QRNUXZAAdg9mBipCIZM6LpWdg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.150.65.0/24
Signature Algorithm: sha256WithRSAEncryption
55:22:10:0e:2f:90:21:ed:45:dc:3a:b9:41:f9:62:7a:65:0b:
c3:47:39:be:f9:d5:8f:ad:0f:22:bf:32:dd:eb:53:00:ce:4b:
aa:0c:7b:58:63:e8:78:6b:83:e6:5c:59:90:e1:42:39:57:18:
02:37:d8:96:81:6b:9d:af:c7:aa:51:80:a0:ff:4d:24:6a:70:
2d:17:ae:01:80:39:16:9d:a0:72:7f:a9:37:de:5e:b7:7e:4a:
c9:2a:25:93:d5:96:ae:58:03:ae:5d:87:3d:83:07:91:ff:b7:
fd:6d:39:17:ad:46:88:db:16:1b:9b:1b:f3:4e:39:47:c4:4c:
80:fc:46:6c:5b:23:cc:1d:79:b2:77:ce:c9:99:23:76:03:96:
47:b3:b3:08:61:8f:bd:31:d3:d1:7b:63:b7:15:70:9d:9d:01:
95:93:a9:93:78:06:de:62:16:18:d5:1e:4e:df:54:af:05:b4:
d4:e7:8f:14:ae:c5:07:3f:c4:8a:e1:0d:6f:dc:2a:96:93:41:
57:7a:a9:29:4a:17:a4:26:32:8f:64:17:dd:93:16:cd:d5:a5:
62:c3:a0:64:0e:c6:c8:5f:1e:ca:18:b3:a9:7c:6d:31:01:07:
68:e9:96:41:f1:04:da:00:77:fc:4d:72:44:1d:73:f9:47:29:
a1:3f:94:aa
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVrwPGHyOXsQqIp/dYcBMt7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJmODQxMTM1NDVkOTAwMDc2MGY2NjA2MmE0MjIxOTMzYTJl
OTU5ZDgwHhcNMjMwMTAxMDUxNDQ0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0MWQ4ZDZkM2IwODRhNTBhMzExMGYxZWNjMTFhNzllMTk4YWMyZGI2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhauTjh9Eyhitt/WqRVtvi3aDGlLH
6kxdvljRNTSypPlcZ2oYHNQ6jDaxBpkO779lsv4Rvm901vgOyV+PfNLA4Fsqa6lE
59A7t21g4b5BswDaF65KOYM9G3EWtZX34PSi2FsKc3RMHKLymeqafcYeFxVzhRZ7
eMKfGKhq9VFzt7WOYfWMrpLBOTVy+XpKNw3xLnnH8d0nCH96dzl4+KiNEg+WqsKW
wEskW8lVs7Hs+h8FXa7LjT2/DMqCFyrgkV5CL/JJuIFmgw+1Zdi8g+QLoVP6l2yv
v5cH6KJh1UQ5uphIgW73G828HE6CwHaZgEg+mEWwueFNw/TZRwttwfV03QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEHY1tOwhKUKMRDx7MEaeeGYrC22MB8GA1UdIwQY
MBaAFL+EETVF2QAHYPZgYqQiGTOi6VnYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdjRRUk5VWFpBQWRnOW1CaXBDSVpNNkxwV2RnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS8zMGRjODUtMmRkOC00YjFjLWIxNTEt
NGJkNjNhZGM3MzU0LzEvUWRqVzA3Q0VwUW94RVBIc3dScDU0WmlzTGJZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNS8zMGRjODUtMmRkOC00YjFjLWIxNTEtNGJkNjNhZGM3MzU0
LzEvdjRRUk5VWFpBQWRnOW1CaXBDSVpNNkxwV2RnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALZZBMA0G
CSqGSIb3DQEBCwUAA4IBAQBVIhAOL5Ah7UXcOrlB+WJ6ZQvDRzm++dWPrQ8ivzLd
61MAzkuqDHtYY+h4a4PmXFmQ4UI5VxgCN9iWgWudr8eqUYCg/00kanAtF64BgDkW
naByf6k33l63fkrJKiWT1ZauWAOuXYc9gweR/7f9bTkXrUaI2xYbmxvzTjlHxEyA
/EZsWyPMHXmyd87JmSN2A5ZHs7MIYY+9MdPRe2O3FXCdnQGVk6mTeAbeYhYY1R5O
31SvBbTU548UrsUHP8SK4Q1v3CqWk0FXeqkpShekJjKPZBfdkxbN1aViw6BkDsbI
Xx7KGLOpfG0xAQdo6ZZB8QTaAHf8TXJEHXP5RymhP5Sq
-----END CERTIFICATE-----
Generated at Mon Jan 1 15:14:36 2024 by rpki-client on console-fra.rpki-client.org