Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/28e9cb-8ef3-482a-8ed1-2f50708ac57f/1/QSa19JHdA4YA7VkxlkvNULGkdOY.roa
File: QSa19JHdA4YA7VkxlkvNULGkdOY.roa (raw, json)
Hash identifier: nRNUc1f+IGmWpC+rjShjlWXNgwhrDjDLseImHYfcO/k=
Subject key identifier: 41:26:B5:F4:91:DD:03:86:00:ED:59:31:96:4B:CD:50:B1:A4:74:E6
Certificate issuer: /CN=08175e0a36c789d31420b33303fbc7324c7c574b
Certificate serial: 0186B73B0A5F0301BBCC3FC8F6777B66F289
Authority key identifier: 08:17:5E:0A:36:C7:89:D3:14:20:B3:33:03:FB:C7:32:4C:7C:57:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CBdeCjbHidMUILMzA_vHMkx8V0s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/28e9cb-8ef3-482a-8ed1-2f50708ac57f/1/QSa19JHdA4YA7VkxlkvNULGkdOY.roa
Signing time: Mon 06 Mar 2023 14:02:25 +0000
ROA not before: Mon 06 Mar 2023 14:02:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50304
IP address blocks: 2a01:6560:100::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:b7:3b:0a:5f:03:01:bb:cc:3f:c8:f6:77:7b:66:f2:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08175e0a36c789d31420b33303fbc7324c7c574b
Validity
Not Before: Mar 6 14:02:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4126b5f491dd038600ed5931964bcd50b1a474e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:44:18:3b:2e:61:eb:2f:b0:e6:49:db:cf:a8:
b0:d0:9f:f1:b9:98:44:37:1d:24:d0:23:59:d8:a0:
1e:ad:e8:f7:a4:05:cf:67:e7:65:54:58:04:44:71:
e6:0f:d7:a4:86:51:00:1f:39:e0:2d:58:87:5e:35:
ff:26:ba:cc:c5:fc:8f:1b:0e:3e:53:b4:5b:11:71:
fb:82:2b:90:6c:bd:18:bc:eb:a1:98:3d:4a:da:01:
67:4b:92:65:6e:de:ff:f8:ab:51:66:df:84:0d:74:
2c:23:07:22:b0:66:ab:cd:68:a5:94:32:7c:22:00:
49:99:42:ae:51:f7:cd:81:b2:a8:58:74:20:ac:e7:
f0:61:48:58:f0:db:77:64:d5:2f:6a:7e:ef:1d:89:
25:41:ad:7d:c6:89:fd:20:4a:25:c6:46:82:57:a7:
f2:df:9a:03:6e:d0:0c:64:16:cd:b4:16:c9:bf:dc:
a9:4c:53:d1:61:ca:63:d5:58:2d:77:74:92:83:df:
75:f3:27:b0:5f:61:94:8c:a3:9e:d7:85:ff:ef:50:
66:62:c9:0a:21:20:12:96:fa:bc:89:8f:d3:00:78:
9f:55:07:7c:5b:9f:c2:f8:7b:2c:27:81:66:4c:b3:
3b:d1:25:0d:8a:31:1d:96:e2:1c:eb:09:6b:3e:7c:
f2:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:26:B5:F4:91:DD:03:86:00:ED:59:31:96:4B:CD:50:B1:A4:74:E6
X509v3 Authority Key Identifier:
keyid:08:17:5E:0A:36:C7:89:D3:14:20:B3:33:03:FB:C7:32:4C:7C:57:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CBdeCjbHidMUILMzA_vHMkx8V0s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/28e9cb-8ef3-482a-8ed1-2f50708ac57f/1/QSa19JHdA4YA7VkxlkvNULGkdOY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/28e9cb-8ef3-482a-8ed1-2f50708ac57f/1/CBdeCjbHidMUILMzA_vHMkx8V0s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:6560:100::/48
Signature Algorithm: sha256WithRSAEncryption
33:bc:d9:69:a5:f2:3a:f0:34:a1:05:c9:6e:b1:a2:fd:2f:74:
85:fc:dd:c5:7b:76:cb:a3:12:f7:61:6e:c9:02:9a:66:aa:ad:
7a:1c:ed:21:19:65:9d:6b:2c:d6:56:7a:c5:6c:03:3b:e8:63:
71:83:50:b1:d7:fa:99:00:96:7c:ab:e3:af:6d:6d:f1:93:72:
0f:71:b5:c8:2e:59:97:64:c9:4d:18:ff:d4:82:60:eb:25:b8:
8e:8e:23:45:12:bc:91:fe:5c:e7:ab:40:be:6f:10:1c:6b:4c:
67:2a:a6:45:fd:7c:bf:e6:53:80:14:f0:c3:1e:11:3e:0a:7b:
c3:f8:98:39:3c:0a:6c:4e:8b:f1:18:aa:5e:5c:a4:e1:da:3d:
97:cd:d6:50:ad:66:a9:b8:84:51:a7:16:7b:49:f8:aa:2b:46:
fd:02:c5:d2:a5:6d:4d:1d:a7:60:1d:3f:9c:66:bc:90:41:0b:
dd:52:4c:d8:fc:d9:24:ec:05:44:1c:d0:a7:2b:ff:31:a8:69:
5c:9a:4c:79:e9:2c:33:6e:5e:91:ad:90:6a:0d:1f:4c:09:b9:
d7:06:4b:23:60:6f:89:45:0f:32:38:d1:ee:dc:c4:b7:14:74:
aa:07:10:98:e9:71:06:96:94:c3:b9:8c:ee:3e:38:ba:b8:eb:
5c:20:ba:42
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYa3OwpfAwG7zD/I9nd7ZvKJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA4MTc1ZTBhMzZjNzg5ZDMxNDIwYjMzMzAzZmJjNzMyNGM3
YzU3NGIwHhcNMjMwMzA2MTQwMjI1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0MTI2YjVmNDkxZGQwMzg2MDBlZDU5MzE5NjRiY2Q1MGIxYTQ3NGU2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvEQYOy5h6y+w5knbz6iw0J/xuZhE
Nx0k0CNZ2KAerej3pAXPZ+dlVFgERHHmD9ekhlEAHzngLViHXjX/JrrMxfyPGw4+
U7RbEXH7giuQbL0YvOuhmD1K2gFnS5Jlbt7/+KtRZt+EDXQsIwcisGarzWillDJ8
IgBJmUKuUffNgbKoWHQgrOfwYUhY8Nt3ZNUvan7vHYklQa19xon9IEolxkaCV6fy
35oDbtAMZBbNtBbJv9ypTFPRYcpj1Vgtd3SSg9918yewX2GUjKOe14X/71BmYskK
ISASlvq8iY/TAHifVQd8W5/C+HssJ4FmTLM70SUNijEdluIc6wlrPnzygQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFEEmtfSR3QOGAO1ZMZZLzVCxpHTmMB8GA1UdIwQY
MBaAFAgXXgo2x4nTFCCzMwP7xzJMfFdLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ0JkZUNqYkhpZE1VSUxNekFfdkhNa3g4VjBzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC8yOGU5Y2ItOGVmMy00ODJhLThlZDEt
MmY1MDcwOGFjNTdmLzEvUVNhMTlKSGRBNFlBN1ZreGxrdk5VTEdrZE9ZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNC8yOGU5Y2ItOGVmMy00ODJhLThlZDEtMmY1MDcwOGFjNTdm
LzEvQ0JkZUNqYkhpZE1VSUxNekFfdkhNa3g4VjBzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgFlYAEA
MA0GCSqGSIb3DQEBCwUAA4IBAQAzvNlppfI68DShBclusaL9L3SF/N3Fe3bLoxL3
YW7JAppmqq16HO0hGWWdayzWVnrFbAM76GNxg1Cx1/qZAJZ8q+OvbW3xk3IPcbXI
LlmXZMlNGP/UgmDrJbiOjiNFEryR/lznq0C+bxAca0xnKqZF/Xy/5lOAFPDDHhE+
CnvD+Jg5PApsTovxGKpeXKTh2j2XzdZQrWapuIRRpxZ7SfiqK0b9AsXSpW1NHadg
HT+cZryQQQvdUkzY/Nkk7AVEHNCnK/8xqGlcmkx56Swzbl6RrZBqDR9MCbnXBksj
YG+JRQ8yONHu3MS3FHSqBxCY6XEGlpTDuYzuPji6uOtcILpC
-----END CERTIFICATE-----
Generated at Mon Jan 1 19:26:46 2024 by rpki-client on console-fra.rpki-client.org