Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/WQUw08mJARsRVA40dxa5oFyMxGg.roa
File: WQUw08mJARsRVA40dxa5oFyMxGg.roa (raw, json)
Hash identifier: 9Q25EfFnVON/TgUHiQwfJHtzICVYabM3+mScMS7kzRE=
Subject key identifier: 59:05:30:D3:C9:89:01:1B:11:54:0E:34:77:16:B9:A0:5C:8C:C4:68
Certificate issuer: /CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Certificate serial: 01856F42DDFD9873C4890B5E86307CA220D7
Authority key identifier: D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/WQUw08mJARsRVA40dxa5oFyMxGg.roa
Signing time: Sun 01 Jan 2023 21:35:31 +0000
ROA not before: Sun 01 Jan 2023 21:35:31 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211498
IP address blocks: 2a0e:8f02:f021::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:42:dd:fd:98:73:c4:89:0b:5e:86:30:7c:a2:20:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Validity
Not Before: Jan 1 21:35:31 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=590530d3c989011b11540e347716b9a05c8cc468
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:1e:6f:46:76:40:4d:d3:eb:f3:03:dd:2c:59:
ee:2d:f1:80:80:08:c3:d8:a8:0d:06:d6:cc:82:5b:
ee:80:45:20:c7:11:40:e2:01:2d:5b:e7:81:8e:56:
f2:e8:02:49:1e:32:61:12:12:10:c1:54:99:c2:0d:
10:9a:2d:fd:63:20:c0:5b:50:43:15:ee:0e:63:cb:
c7:af:53:b8:26:41:1c:10:ff:57:da:63:43:bf:d5:
84:67:01:06:75:88:42:fe:b1:48:9a:53:b4:b7:b4:
9d:90:55:54:ba:69:07:5f:e3:2c:fa:65:2e:8a:52:
03:2e:21:17:9b:b8:79:17:98:78:50:e5:51:da:f4:
fe:c3:c7:11:41:90:18:59:12:4b:ab:2e:17:b7:56:
3e:6c:2e:6e:79:9c:69:57:78:7d:27:f8:79:78:2b:
c6:af:df:b7:94:4b:2e:c3:0a:d3:8b:8b:9e:31:4c:
b5:77:03:24:e5:44:e1:a3:af:c1:3f:8a:21:ed:3a:
3c:f0:e7:62:65:7b:6b:d5:50:49:e0:f0:b3:3f:9c:
b7:72:5e:c1:79:53:a5:5c:bf:02:4f:ab:3c:17:9a:
0d:77:82:04:d8:19:54:b0:c9:8f:c4:9e:26:f9:f4:
eb:4a:b5:9d:06:ab:37:3d:71:6e:37:ca:76:1a:5d:
56:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:05:30:D3:C9:89:01:1B:11:54:0E:34:77:16:B9:A0:5C:8C:C4:68
X509v3 Authority Key Identifier:
keyid:D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/WQUw08mJARsRVA40dxa5oFyMxGg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/1W70jtYVXdeEPu02MkaauqMQC_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:8f02:f021::/48
Signature Algorithm: sha256WithRSAEncryption
1c:d9:d4:c2:ab:5c:d9:aa:17:f3:3a:32:ea:fe:1f:5b:a3:25:
67:b6:11:a5:21:5a:ec:27:fa:53:c7:e1:e4:bf:3d:c1:cc:b0:
26:3f:95:af:8b:0f:74:c8:38:e6:fe:4e:ad:f4:57:86:01:fb:
f1:9e:2d:73:de:1f:17:a9:23:d1:fc:50:70:b4:ce:42:10:fb:
0f:72:1f:26:40:b2:c1:71:c4:f3:2b:ea:90:0d:39:9b:c1:5c:
4d:78:33:7c:53:8f:e3:50:8e:b6:27:85:5f:93:af:db:eb:a2:
0d:92:53:7a:f7:d8:fe:d1:be:62:ee:f4:c7:c6:35:89:8f:2b:
1a:4a:57:eb:58:24:f7:d0:b9:bb:96:9f:e4:a2:36:18:08:ad:
c1:c7:b3:7a:49:ee:a8:b4:1f:87:30:64:c2:c7:11:aa:6c:64:
9c:6c:0b:7a:72:1f:1e:4d:89:a7:74:ca:8f:3c:38:04:76:3f:
78:90:97:3e:53:1f:1a:10:66:fd:a3:bf:a6:50:bb:19:88:7b:
7b:0e:39:ec:0f:64:36:5e:de:3a:07:ca:55:ac:16:ed:ad:34:
cf:b6:e9:5c:f5:b9:5b:2a:4c:3b:d6:34:7c:db:50:1e:2f:07:
33:cf:5f:b6:e4:e5:25:85:cc:67:01:25:3f:e7:59:7e:b5:f1:
93:1a:84:80
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVvQt39mHPEiQtehjB8oiDXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ1NmVmNDhlZDYxNTVkZDc4NDNlZWQzNjMyNDY5YWJhYTMx
MDBiZjMwHhcNMjMwMTAxMjEzNTMxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1OTA1MzBkM2M5ODkwMTFiMTE1NDBlMzQ3NzE2YjlhMDVjOGNjNDY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgx5vRnZATdPr8wPdLFnuLfGAgAjD
2KgNBtbMglvugEUgxxFA4gEtW+eBjlby6AJJHjJhEhIQwVSZwg0Qmi39YyDAW1BD
Fe4OY8vHr1O4JkEcEP9X2mNDv9WEZwEGdYhC/rFImlO0t7SdkFVUumkHX+Ms+mUu
ilIDLiEXm7h5F5h4UOVR2vT+w8cRQZAYWRJLqy4Xt1Y+bC5ueZxpV3h9J/h5eCvG
r9+3lEsuwwrTi4ueMUy1dwMk5UTho6/BP4oh7To88OdiZXtr1VBJ4PCzP5y3cl7B
eVOlXL8CT6s8F5oNd4IE2BlUsMmPxJ4m+fTrSrWdBqs3PXFuN8p2Gl1WPQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFFkFMNPJiQEbEVQONHcWuaBcjMRoMB8GA1UdIwQY
MBaAFNVu9I7WFV3XhD7tNjJGmrqjEAvzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMVc3MGp0WVZYZGVFUHUwMk1rYWF1cU1RQ19NLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS81OGZmNTQtMzQxMC00ZTQyLWFhYjgt
ZDJkN2YyYmI2NGRmLzEvV1FVdzA4bUpBUnNSVkE0MGR4YTVvRnlNeEdnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNS81OGZmNTQtMzQxMC00ZTQyLWFhYjgtZDJkN2YyYmI2NGRm
LzEvMVc3MGp0WVZYZGVFUHUwMk1rYWF1cU1RQ19NLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg6PAvAh
MA0GCSqGSIb3DQEBCwUAA4IBAQAc2dTCq1zZqhfzOjLq/h9boyVnthGlIVrsJ/pT
x+Hkvz3BzLAmP5Wviw90yDjm/k6t9FeGAfvxni1z3h8XqSPR/FBwtM5CEPsPch8m
QLLBccTzK+qQDTmbwVxNeDN8U4/jUI62J4Vfk6/b66INklN699j+0b5i7vTHxjWJ
jysaSlfrWCT30Lm7lp/kojYYCK3Bx7N6Se6otB+HMGTCxxGqbGScbAt6ch8eTYmn
dMqPPDgEdj94kJc+Ux8aEGb9o7+mULsZiHt7DjnsD2Q2Xt46B8pVrBbtrTTPtulc
9blbKkw71jR821AeLwczz1+25OUlhcxnASU/51l+tfGTGoSA
-----END CERTIFICATE-----
Generated at Tue Jan 2 15:20:00 2024 by rpki-client on console-ams.rpki-client.org