Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/qwQqL0JthJwcZPX-cHCUzLLRnX8.roa
File: qwQqL0JthJwcZPX-cHCUzLLRnX8.roa (raw, json)
Hash identifier: 6elpFV6KVEjhvKc4G4U9CxX4P8llQN7zUvCbe4P4bBA=
Subject key identifier: AB:04:2A:2F:42:6D:84:9C:1C:64:F5:FE:70:70:94:CC:B2:D1:9D:7F
Certificate issuer: /CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Certificate serial: 01856F42F5D7A62A55BF6EE7D18F9B9C3D7B
Authority key identifier: D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/qwQqL0JthJwcZPX-cHCUzLLRnX8.roa
Signing time: Sun 01 Jan 2023 21:35:37 +0000
ROA not before: Sun 01 Jan 2023 21:35:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213244
IP address blocks: 2a0e:8f02:f031::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:42:f5:d7:a6:2a:55:bf:6e:e7:d1:8f:9b:9c:3d:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Validity
Not Before: Jan 1 21:35:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ab042a2f426d849c1c64f5fe707094ccb2d19d7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:12:3a:04:5a:b1:4b:bf:37:e1:44:24:a4:ef:
20:59:af:b7:c3:9c:69:6a:3f:b4:ed:6f:b3:ec:bc:
cf:5e:2f:24:77:0c:92:11:4e:e1:77:c3:15:2b:a0:
a3:bf:0e:3d:f7:d0:c2:a1:42:ee:35:5a:cd:af:c2:
5d:c3:f6:97:fd:ab:22:69:74:1e:fd:6f:9e:e5:c2:
51:66:52:71:82:da:98:16:ee:e6:a7:ab:e1:23:33:
9a:29:3e:04:38:0b:89:d9:5b:d7:49:11:db:ac:5e:
5d:a5:db:fd:2d:a2:6e:d3:96:43:70:2b:db:4f:39:
9a:82:22:4d:01:3c:62:f3:76:81:7a:57:78:e1:a4:
36:3b:47:56:c7:f5:a7:e1:8f:a3:45:a8:5d:2f:85:
5f:b1:9a:f1:82:5d:a8:23:03:71:c5:6e:70:8e:2b:
36:24:9d:aa:d2:c5:93:9a:6b:8f:4a:f3:69:5a:a5:
51:89:dd:6e:eb:9e:ae:bd:05:a0:30:4e:2e:19:9f:
95:a5:bb:4a:77:69:7b:53:8b:d1:34:d8:18:3b:8d:
a5:4d:f4:d1:32:c8:cc:b2:41:7c:9c:16:ee:29:c5:
c6:6a:db:a5:8e:38:79:14:0c:20:fa:d0:23:e8:1e:
6d:6c:ef:8c:a9:90:9f:22:87:39:eb:f4:79:5e:a9:
de:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:04:2A:2F:42:6D:84:9C:1C:64:F5:FE:70:70:94:CC:B2:D1:9D:7F
X509v3 Authority Key Identifier:
keyid:D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/qwQqL0JthJwcZPX-cHCUzLLRnX8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/1W70jtYVXdeEPu02MkaauqMQC_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:8f02:f031::/48
Signature Algorithm: sha256WithRSAEncryption
7e:d2:b9:dc:1b:bf:27:19:f7:6d:1e:66:6d:15:5b:57:58:88:
f9:d7:c5:fe:12:34:99:fd:85:26:89:f4:c0:47:08:e9:d7:7d:
57:31:36:2d:ff:e0:6b:c9:4e:16:b3:a1:44:92:b9:37:1d:98:
02:aa:99:52:82:55:eb:8b:09:fb:cd:e4:c7:db:5d:fe:df:dc:
4c:34:92:df:96:d1:ad:d4:87:62:a2:13:47:bf:07:7a:51:b9:
24:bd:c7:1f:87:d9:79:bc:75:6c:93:6e:c8:b4:e8:7f:8f:62:
ce:cd:98:df:4b:4d:e9:d1:7a:e2:0f:4d:9f:4e:2b:45:24:63:
23:cb:f0:1d:cf:c7:5b:81:6a:f8:18:d3:cb:38:41:cb:27:3a:
60:8e:14:34:ca:bd:d4:c3:c1:b6:ec:5e:f5:67:62:02:dd:c4:
78:63:32:f3:1e:06:05:96:39:09:b9:6a:4d:37:bb:55:55:f9:
8c:9c:b1:e7:c8:ac:3f:e1:0d:39:46:53:65:b4:d8:b1:ce:4a:
a2:82:34:91:4e:3e:ea:3a:7f:98:71:9d:fd:8a:84:b1:f5:40:
a2:47:ef:fb:b2:62:b6:e7:bb:44:25:11:60:7e:39:6f:58:13:
12:2a:e5:bc:ad:8f:47:60:b5:99:f3:bb:b2:21:79:c6:72:0f:
53:e8:0f:94
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVvQvXXpipVv27n0Y+bnD17MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ1NmVmNDhlZDYxNTVkZDc4NDNlZWQzNjMyNDY5YWJhYTMx
MDBiZjMwHhcNMjMwMTAxMjEzNTM3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhYjA0MmEyZjQyNmQ4NDljMWM2NGY1ZmU3MDcwOTRjY2IyZDE5ZDdmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApRI6BFqxS7834UQkpO8gWa+3w5xp
aj+07W+z7LzPXi8kdwySEU7hd8MVK6Cjvw4999DCoULuNVrNr8Jdw/aX/asiaXQe
/W+e5cJRZlJxgtqYFu7mp6vhIzOaKT4EOAuJ2VvXSRHbrF5dpdv9LaJu05ZDcCvb
TzmagiJNATxi83aBeld44aQ2O0dWx/Wn4Y+jRahdL4VfsZrxgl2oIwNxxW5wjis2
JJ2q0sWTmmuPSvNpWqVRid1u656uvQWgME4uGZ+VpbtKd2l7U4vRNNgYO42lTfTR
MsjMskF8nBbuKcXGatuljjh5FAwg+tAj6B5tbO+MqZCfIoc56/R5XqnemwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFKsEKi9CbYScHGT1/nBwlMyy0Z1/MB8GA1UdIwQY
MBaAFNVu9I7WFV3XhD7tNjJGmrqjEAvzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMVc3MGp0WVZYZGVFUHUwMk1rYWF1cU1RQ19NLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS81OGZmNTQtMzQxMC00ZTQyLWFhYjgt
ZDJkN2YyYmI2NGRmLzEvcXdRcUwwSnRoSndjWlBYLWNIQ1V6TExSblg4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNS81OGZmNTQtMzQxMC00ZTQyLWFhYjgtZDJkN2YyYmI2NGRm
LzEvMVc3MGp0WVZYZGVFUHUwMk1rYWF1cU1RQ19NLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg6PAvAx
MA0GCSqGSIb3DQEBCwUAA4IBAQB+0rncG78nGfdtHmZtFVtXWIj518X+EjSZ/YUm
ifTARwjp131XMTYt/+BryU4Ws6FEkrk3HZgCqplSglXriwn7zeTH213+39xMNJLf
ltGt1IdiohNHvwd6Ubkkvccfh9l5vHVsk27ItOh/j2LOzZjfS03p0XriD02fTitF
JGMjy/Adz8dbgWr4GNPLOEHLJzpgjhQ0yr3Uw8G27F71Z2IC3cR4YzLzHgYFljkJ
uWpNN7tVVfmMnLHnyKw/4Q05RlNltNixzkqigjSRTj7qOn+YcZ39ioSx9UCiR+/7
smK257tEJRFgfjlvWBMSKuW8rY9HYLWZ87uyIXnGcg9T6A+U
-----END CERTIFICATE-----
Generated at Tue Jan 2 15:20:00 2024 by rpki-client on console-ams.rpki-client.org