Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/9b60e5-f98f-4ac6-98a5-f2f426efe039/1/QVMTIcgoKcVnAeQAB6YY-MAqDac.roa
File: QVMTIcgoKcVnAeQAB6YY-MAqDac.roa (raw, json)
Hash identifier: tECujTVs+4lFUhzqQu7mR3jRTDT2zz1IN6o66T0OAbM=
Subject key identifier: 41:53:13:21:C8:28:29:C5:67:01:E4:00:07:A6:18:F8:C0:2A:0D:A7
Certificate issuer: /CN=8b7f81a6e782e211189c4f34e459b4226c75f4a6
Certificate serial: 018C62AE19E87DCAE49DB1BED5188868434B
Authority key identifier: 8B:7F:81:A6:E7:82:E2:11:18:9C:4F:34:E4:59:B4:22:6C:75:F4:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i3-BpueC4hEYnE805Fm0Imx19KY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/9b60e5-f98f-4ac6-98a5-f2f426efe039/1/QVMTIcgoKcVnAeQAB6YY-MAqDac.roa
Signing time: Wed 13 Dec 2023 10:17:06 +0000
ROA not before: Wed 13 Dec 2023 10:17:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 396982
IP address blocks: 45.128.172.0/24 maxlen: 24
45.128.173.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:62:ae:19:e8:7d:ca:e4:9d:b1:be:d5:18:88:68:43:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b7f81a6e782e211189c4f34e459b4226c75f4a6
Validity
Not Before: Dec 13 10:17:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=41531321c82829c56701e40007a618f8c02a0da7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:21:c5:a0:83:93:82:bc:ba:76:16:db:09:8c:
97:b3:fd:12:42:a6:16:09:fd:bf:58:5c:4c:5b:8b:
06:07:65:03:80:15:c1:90:13:dd:e5:db:c7:8a:e7:
f7:9e:6f:26:e6:e1:b3:d4:72:e4:a3:07:17:9a:08:
ed:14:ba:50:52:b8:7c:8b:37:6d:43:66:f7:e8:98:
e3:eb:9d:e0:a0:b6:44:92:a6:e7:d5:bc:ee:ba:b6:
e6:fc:d1:46:77:75:85:46:fb:00:6f:40:40:51:64:
c2:f3:63:07:42:f3:b1:26:c2:e3:65:68:66:34:f2:
cb:e7:4f:cc:6e:05:fb:69:c6:19:d8:7b:15:54:83:
e4:01:dd:d0:14:65:5a:72:3f:db:10:ec:48:e7:c7:
80:de:27:05:60:ea:39:40:90:af:18:03:dc:df:c5:
ca:fe:36:c6:2f:06:67:2d:d0:15:3f:e6:1c:03:07:
ff:f2:a6:cc:d0:cd:2d:f7:1d:98:64:bf:85:51:5f:
ab:2e:0c:31:58:9c:88:55:c0:f2:1c:63:8d:d9:36:
75:f1:0b:22:f7:58:36:d2:7e:15:3d:d7:73:97:08:
8f:92:2d:9d:e2:af:72:05:6e:e3:cb:00:c4:3d:15:
96:11:99:4d:63:85:08:31:dc:cb:41:f2:cf:a1:0b:
af:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:53:13:21:C8:28:29:C5:67:01:E4:00:07:A6:18:F8:C0:2A:0D:A7
X509v3 Authority Key Identifier:
keyid:8B:7F:81:A6:E7:82:E2:11:18:9C:4F:34:E4:59:B4:22:6C:75:F4:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i3-BpueC4hEYnE805Fm0Imx19KY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/9b60e5-f98f-4ac6-98a5-f2f426efe039/1/QVMTIcgoKcVnAeQAB6YY-MAqDac.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/9b60e5-f98f-4ac6-98a5-f2f426efe039/1/i3-BpueC4hEYnE805Fm0Imx19KY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.128.172.0/23
Signature Algorithm: sha256WithRSAEncryption
18:c9:78:8c:7e:16:5c:04:37:57:8b:26:39:4d:08:46:b6:84:
0b:5a:5c:c8:58:fe:f8:7c:3d:92:8b:73:18:42:6a:8d:18:41:
47:5b:22:f6:a5:ff:8b:6a:ec:f7:5b:a6:24:fe:2d:ec:ec:f0:
34:14:6c:08:56:f3:75:d1:6a:54:1a:02:10:12:d5:41:83:00:
c9:f7:76:fb:e7:52:5e:6f:96:92:f9:0f:7d:7e:53:3d:70:ad:
a6:0a:0a:66:19:af:0d:ea:43:b1:59:21:b1:30:3a:2a:e9:71:
06:d3:22:e5:ad:6c:ed:b1:01:be:79:a9:d5:63:76:56:09:cb:
18:11:65:99:72:33:f4:a1:72:04:86:73:aa:90:2f:8b:4e:51:
49:46:5e:f4:09:34:37:24:c0:36:17:48:60:ec:14:f3:9c:8c:
7a:c5:a5:0f:a3:10:24:c3:0f:63:cd:26:4b:17:d0:af:38:4c:
ed:de:d7:c0:d0:d5:c8:24:ff:52:86:87:4c:c0:f9:54:ab:a3:
30:c7:c7:44:c3:36:f4:36:af:3c:7b:a6:11:09:2d:92:74:c1:
7f:99:fd:31:f2:a2:b0:cb:3f:26:95:02:a9:bf:5c:3d:ea:c7:
f4:65:bd:b5:a5:e7:be:19:67:46:27:b8:b2:5e:72:ad:7e:36:
4e:de:ac:da
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYxirhnofcrknbG+1RiIaENLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhiN2Y4MWE2ZTc4MmUyMTExODljNGYzNGU0NTliNDIyNmM3
NWY0YTYwHhcNMjMxMjEzMTAxNzA2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0MTUzMTMyMWM4MjgyOWM1NjcwMWU0MDAwN2E2MThmOGMwMmEwZGE3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhCHFoIOTgry6dhbbCYyXs/0SQqYW
Cf2/WFxMW4sGB2UDgBXBkBPd5dvHiuf3nm8m5uGz1HLkowcXmgjtFLpQUrh8izdt
Q2b36Jjj653goLZEkqbn1bzuurbm/NFGd3WFRvsAb0BAUWTC82MHQvOxJsLjZWhm
NPLL50/MbgX7acYZ2HsVVIPkAd3QFGVacj/bEOxI58eA3icFYOo5QJCvGAPc38XK
/jbGLwZnLdAVP+YcAwf/8qbM0M0t9x2YZL+FUV+rLgwxWJyIVcDyHGON2TZ18Qsi
91g20n4VPddzlwiPki2d4q9yBW7jywDEPRWWEZlNY4UIMdzLQfLPoQuvywIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEFTEyHIKCnFZwHkAAemGPjAKg2nMB8GA1UdIwQY
MBaAFIt/gabnguIRGJxPNORZtCJsdfSmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaTMtQnB1ZUM0aEVZbkU4MDVGbTBJbXgxOUtZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNi85YjYwZTUtZjk4Zi00YWM2LTk4YTUt
ZjJmNDI2ZWZlMDM5LzEvUVZNVEljZ29LY1ZuQWVRQUI2WVktTUFxRGFjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNi85YjYwZTUtZjk4Zi00YWM2LTk4YTUtZjJmNDI2ZWZlMDM5
LzEvaTMtQnB1ZUM0aEVZbkU4MDVGbTBJbXgxOUtZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBLYCsMA0G
CSqGSIb3DQEBCwUAA4IBAQAYyXiMfhZcBDdXiyY5TQhGtoQLWlzIWP74fD2Si3MY
QmqNGEFHWyL2pf+Lauz3W6Yk/i3s7PA0FGwIVvN10WpUGgIQEtVBgwDJ93b751Je
b5aS+Q99flM9cK2mCgpmGa8N6kOxWSGxMDoq6XEG0yLlrWztsQG+eanVY3ZWCcsY
EWWZcjP0oXIEhnOqkC+LTlFJRl70CTQ3JMA2F0hg7BTznIx6xaUPoxAkww9jzSZL
F9CvOEzt3tfA0NXIJP9ShodMwPlUq6Mwx8dEwzb0Nq88e6YRCS2SdMF/mf0x8qKw
yz8mlQKpv1w96sf0Zb21pee+GWdGJ7iyXnKtfjZO3qza
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:51 2024 by rpki-client on console-fra.rpki-client.org