Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/52565b-b8bd-4e95-89de-d32f8d875f98/1/mqbVtTKYiSyLPHAOnfreApPSG7Q.roa
File: mqbVtTKYiSyLPHAOnfreApPSG7Q.roa (raw, json)
Hash identifier: nECSy2Ptwcpn6Ybykb96Z8+ufPO/R6qdRdhDVxvIc+c=
Subject key identifier: 9A:A6:D5:B5:32:98:89:2C:8B:3C:70:0E:9D:FA:DE:02:93:D2:1B:B4
Certificate issuer: /CN=a9e0b6d13cd11f36114fa984033804941c82f143
Certificate serial: 01856DCAF31EE1C044F09615081A51E665F8
Authority key identifier: A9:E0:B6:D1:3C:D1:1F:36:11:4F:A9:84:03:38:04:94:1C:82:F1:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qeC20TzRHzYRT6mEAzgElByC8UM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/52565b-b8bd-4e95-89de-d32f8d875f98/1/mqbVtTKYiSyLPHAOnfreApPSG7Q.roa
Signing time: Sun 01 Jan 2023 14:44:54 +0000
ROA not before: Sun 01 Jan 2023 14:44:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208922
IP address blocks: 45.15.172.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 14:35:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:ca:f3:1e:e1:c0:44:f0:96:15:08:1a:51:e6:65:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a9e0b6d13cd11f36114fa984033804941c82f143
Validity
Not Before: Jan 1 14:44:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9aa6d5b53298892c8b3c700e9dfade0293d21bb4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:6d:6e:1a:19:db:ea:d9:0a:c9:75:c7:1f:4e:
96:0b:e0:38:8b:1f:e9:5d:84:5e:8b:1c:4e:ae:c6:
0f:ce:db:49:21:79:22:64:42:82:f5:25:9e:e3:ba:
7a:de:bd:f4:87:4a:00:0d:36:5d:88:61:0e:fb:e2:
ad:ff:37:78:f9:5e:63:66:c5:25:6d:c6:69:8f:f1:
bb:b5:d7:37:5f:38:e3:2e:db:70:bc:99:2a:31:54:
07:59:0a:aa:cc:37:00:b9:3f:e6:26:68:a3:93:83:
e4:59:d5:69:1c:65:43:d4:31:78:a3:98:f4:f2:1a:
26:fa:27:fc:26:7a:4e:aa:d8:dd:47:55:2f:47:ff:
8f:81:05:fa:84:f2:d0:50:a8:b5:83:ad:81:e4:88:
41:24:e6:07:7d:92:1a:d4:0e:0e:4c:77:21:a7:12:
5f:89:aa:48:8d:2c:d3:3b:e0:fa:da:1f:eb:02:fb:
fe:6f:0c:64:de:47:b0:3d:1c:70:77:8d:12:94:cb:
0f:57:b1:05:f9:cf:82:1e:7c:83:f7:64:79:dc:7e:
c8:54:12:49:8e:ab:18:e9:b0:7c:45:70:22:2c:70:
55:dd:7c:d9:c6:47:52:42:db:86:fc:25:46:d9:8b:
26:dd:1e:39:d1:8b:be:f1:23:24:fe:51:42:b5:63:
09:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:A6:D5:B5:32:98:89:2C:8B:3C:70:0E:9D:FA:DE:02:93:D2:1B:B4
X509v3 Authority Key Identifier:
keyid:A9:E0:B6:D1:3C:D1:1F:36:11:4F:A9:84:03:38:04:94:1C:82:F1:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qeC20TzRHzYRT6mEAzgElByC8UM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/52565b-b8bd-4e95-89de-d32f8d875f98/1/mqbVtTKYiSyLPHAOnfreApPSG7Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/52565b-b8bd-4e95-89de-d32f8d875f98/1/qeC20TzRHzYRT6mEAzgElByC8UM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.15.172.0/22
Signature Algorithm: sha256WithRSAEncryption
7d:20:ef:be:cf:c2:61:20:30:66:ad:a7:e8:50:c6:c7:6a:51:
b3:a7:f7:a2:1a:e4:47:0f:a2:32:dc:bc:7c:b9:ca:2e:8f:6b:
49:3a:aa:4b:53:ad:f5:6e:7f:4b:01:27:a7:71:33:4e:f4:d3:
bc:8d:7a:ad:76:36:11:e2:95:f6:63:5f:17:4c:6c:5c:91:d6:
32:68:b5:f3:f2:44:76:8e:83:0a:6a:d3:81:38:ab:da:04:0b:
59:bf:a9:d1:f7:3f:86:83:f7:e6:5a:42:8a:bb:89:90:3f:82:
bb:c4:b6:f0:8b:c9:3c:5c:1e:73:7f:a8:f9:04:64:2c:de:ec:
56:5f:ca:dd:77:b8:e7:5d:9c:e5:b4:fa:72:2b:b6:69:bf:09:
cf:f7:3a:d0:1d:8e:bd:a8:e4:f0:05:0d:66:5b:03:3d:9d:e2:
7d:bf:d9:3b:58:b2:96:63:a2:a9:8b:7c:ec:24:58:ea:12:bd:
f4:f6:fa:04:ac:6f:77:f7:1a:0b:9a:98:4d:22:48:e8:ae:00:
8a:80:15:ec:f4:85:4c:b2:ee:61:c4:ef:5e:90:14:35:b5:5a:
8e:69:36:c9:53:a3:46:96:ff:30:4e:12:6c:5c:6a:52:3e:2a:
78:3d:6c:00:b6:a8:2a:24:de:f2:84:30:a9:86:f4:17:dd:5c:
7d:e5:9c:3b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVtyvMe4cBE8JYVCBpR5mX4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE5ZTBiNmQxM2NkMTFmMzYxMTRmYTk4NDAzMzgwNDk0MWM4
MmYxNDMwHhcNMjMwMTAxMTQ0NDU0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5YWE2ZDViNTMyOTg4OTJjOGIzYzcwMGU5ZGZhZGUwMjkzZDIxYmI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnm1uGhnb6tkKyXXHH06WC+A4ix/p
XYReixxOrsYPzttJIXkiZEKC9SWe47p63r30h0oADTZdiGEO++Kt/zd4+V5jZsUl
bcZpj/G7tdc3XzjjLttwvJkqMVQHWQqqzDcAuT/mJmijk4PkWdVpHGVD1DF4o5j0
8hom+if8JnpOqtjdR1UvR/+PgQX6hPLQUKi1g62B5IhBJOYHfZIa1A4OTHchpxJf
iapIjSzTO+D62h/rAvv+bwxk3kewPRxwd40SlMsPV7EF+c+CHnyD92R53H7IVBJJ
jqsY6bB8RXAiLHBV3XzZxkdSQtuG/CVG2Ysm3R450Yu+8SMk/lFCtWMJZwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJqm1bUymIksizxwDp363gKT0hu0MB8GA1UdIwQY
MBaAFKngttE80R82EU+phAM4BJQcgvFDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcWVDMjBUelJIellSVDZtRUF6Z0VsQnlDOFVNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi81MjU2NWItYjhiZC00ZTk1LTg5ZGUt
ZDMyZjhkODc1Zjk4LzEvbXFiVnRUS1lpU3lMUEhBT25mcmVBcFBTRzdRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYi81MjU2NWItYjhiZC00ZTk1LTg5ZGUtZDMyZjhkODc1Zjk4
LzEvcWVDMjBUelJIellSVDZtRUF6Z0VsQnlDOFVNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLQ+sMA0G
CSqGSIb3DQEBCwUAA4IBAQB9IO++z8JhIDBmrafoUMbHalGzp/eiGuRHD6Iy3Lx8
ucouj2tJOqpLU631bn9LASencTNO9NO8jXqtdjYR4pX2Y18XTGxckdYyaLXz8kR2
joMKatOBOKvaBAtZv6nR9z+Gg/fmWkKKu4mQP4K7xLbwi8k8XB5zf6j5BGQs3uxW
X8rdd7jnXZzltPpyK7ZpvwnP9zrQHY69qOTwBQ1mWwM9neJ9v9k7WLKWY6Kpi3zs
JFjqEr309voErG939xoLmphNIkjorgCKgBXs9IVMsu5hxO9ekBQ1tVqOaTbJU6NG
lv8wThJsXGpSPip4PWwAtqgqJN7yhDCphvQX3Vx95Zw7
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:39 2024 by rpki-client on console-fra.rpki-client.org